|
2007-02-13
|
|
nabopoll 1.2 - Remote Unprotected Admin Section
|
4 |
WEB
|
sn0oPy
|
|
2007-02-13
|
|
PollMentor 2.0 - 'pollmentorres.asp?id' SQL Injection
|
4 |
WEB
|
SaO
|
|
2007-02-13
|
|
Advanced Poll 2.0.5-dev - Remote Code Execution
|
4 |
WEB
|
diwou
|
|
2007-02-13
|
|
PHPCC 4.2 Beta - 'nickpage.php?npid' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-02-13
|
|
Xaran CMS 2.0 - 'xarancms_haupt.php' SQL Injection
|
3 |
WEB
|
ajann
|
|
2007-02-13
|
|
AT Contenator 1.0 - 'Root_To_Script' Remote File Inclusion
|
3 |
WEB
|
ajann
|
|
2007-02-12
|
|
philboard 1.14 - 'philboard_forum.asp' SQL Injection
|
3 |
WEB
|
Mehmet Ince
|
|
2007-02-11
|
|
OPENi-CMS Site Protection Plugin - Remote File Inclusion
|
4 |
WEB
|
y3dips
|
|
2007-02-08
|
|
LushiWarPlaner 1.0 - 'register.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-02-08
|
|
LushiNews 1.01 - 'comments.php' SQL Injection
|
3 |
WEB
|
ajann
|
|
2007-02-08
|
|
LightRO CMS 1.0 - 'index.php?projectid' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-02-08
|
|
Site-Assistant 0990 - 'paths[version]' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-02-07
|
|
Maian Recipe 1.0 - 'path_to_folder' Remote File Inclusion
|
4 |
WEB
|
Denven
|
|
2007-02-07
|
|
otscms 2.1.5 - SQL Injection / Cross-Site Scripting
|
3 |
WEB
|
GregStar
|
|
2007-02-07
|
|
Advanced Poll 2.0.5-dev - Remote Admin Session Generator
|
4 |
WEB
|
diwou
|
|
2007-02-07
|
|
WebMatic 2.6 - 'index_album.php' Remote File Inclusion
|
4 |
WEB
|
MadNet
|
|
2007-02-07
|
|
AgerMenu 0.01 - 'top.inc.php?rootdir' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-02-06
|
|
Kisisel Site 2007 - 'tr' SQL Injection
|
4 |
WEB
|
cl24zy
|
|
2007-02-06
|
|
LightRO CMS 1.0 - 'inhalt.php' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-02-05
|
|
GGCMS 1.1.0 RC1 - Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2007-02-05
|
|
Categories hierarchy phpBB Mod 2.1.2 - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-02-05
|
|
SMA-DB 0.3.9 - 'settings.php' Remote File Inclusion
|
4 |
WEB
|
ThE dE@Th
|
|
2007-02-05
|
|
Geeklog 2 - 'BaseView.php' Remote File Inclusion
|
5 |
WEB
|
GoLd_M
|
|
2007-02-04
|
|
Flip 2.01 final - 'previewtheme.php?inc_path' Remote File Inclusion
|
3 |
WEB
|
GoLd_M
|
|
2007-02-03
|
|
KDPics 1.11 - 'exif.php?lib_path' Remote File Inclusion
|
4 |
WEB
|
AsTrex
|
|
2007-02-03
|
|
Woltlab Burning Board Lite 1.0.2pl3e - 'pms.php' SQL Injection
|
4 |
WEB
|
rgod
|
|
2007-02-03
|
|
Photo Galerie Standard 1.1 - 'view.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-02-02
|
|
phpBB++ Build 100 - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
phpBB ezBoard Converter 0.2 - 'ezconvert_dir' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
dB Masters Curium CMS 1.03 - 'c_id' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-02-02
|
|
F3Site 2.1 - Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2007-02-02
|
|
Flipper Poll 1.1.0 - 'poll.php?root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
EQdkp 1.3.1 - 'Referer Spoof' Remote Database Backup
|
4 |
WEB
|
Eight10
|
|
2007-02-02
|
|
CoD2: DreamStats 4.2 - 'index.php' Remote File Inclusion
|
3 |
WEB
|
ThE dE@Th
|
|
2007-02-01
|
|
Portail Web PHP 2.5.1 - 'includes.php' Remote File Inclusion
|
4 |
WEB
|
laurent gaffié
|
|
2007-02-01
|
|
WebBuilder 2.0 - 'StageLoader.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
Epistemon 1.0 - 'common.php?inc_path' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
phpEventMan 1.0.2 - 'level' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2007-02-01
|
|
SIPS 0.3.1 - 'box.inc.php' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cerulean Portal System 0.7b - Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Omegaboard 1.0beta4 - 'functions.php' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Hunkaray Duyuru Scripti - 'tr' SQL Injection
|
3 |
WEB
|
cl24zy
|
|
2007-01-31
|
|
JV2 Folder Gallery 3.0 - Remote File Inclusion
|
2 |
WEB
|
ThE dE@Th
|
|
2007-01-31
|
|
Extcalendar 2 - 'profile.php' Remote User Pass Change
|
3 |
WEB
|
ajann
|
|
2007-01-31
|
|
PHPMyRing 4.1.3b - 'fichier' Remote File Inclusion
|
3 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cadre PHP Framework - Remote File Inclusion
|
3 |
WEB
|
y3dips
|
|
2007-01-31
|
|
Hailboards 1.2.0 - 'phpbb_root_path' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
phpBB Tweaked 3 - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
ExoPHPDesk 1.2.1 - 'faq.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-31
|
|
Fullaspsite Asp Hosting Sitesi - 'tr' SQL Injection
|
4 |
WEB
|
cl24zy
|
|
2007-01-31
|
|
Michelles L2J Dropcalc 4 - SQL Injection
|
4 |
WEB
|
Codebreak
|
|
2007-01-30
|
|
PHPBB2 MODificat 0.2.0 - 'functions.php' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-30
|
|
MyNews 4.2.2 - 'themefunc.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-30
|
|
CascadianFAQ 4.1 - 'index.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-30
|
|
PHPFootball 1.6 - Remote Database Disclosure
|
4 |
WEB
|
ajann
|
|
2007-01-30
|
|
Galeria Zdjec 3.0 - 'zd_numer.php' Local File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-01-29
|
|
Webfwlog 0.92 - 'debug.php' Remote File Disclosure
|
4 |
WEB
|
GoLd_M
|
|
2007-01-29
|
|
GuppY 4.5.16 - Remote Command Execution
|
4 |
WEB
|
rgod
|
|
2007-01-28
|
|
PHP Generic library & Framework - 'INCLUDE_PATH' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-28
|
|
xNews 1.3 - 'xNews.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-28
|
|
Foro Domus 2.10 - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-28
|
|
EclipseBB 0.5.0 Lite - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-27
|
|
PHPMyReports 3.0.11 - 'lib_head.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-27
|
|
chernobiLe Portal 1.0 - 'default.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-27
|
|
Xt-Stats 2.4.0.b3 (server_base_dir) - Remote File Inclusion
|
4 |
WEB
|
ThE dE@Th
|
|
2007-01-27
|
|
ACGVannu 1.3 - 'index2.php' Remote User Pass Change
|
3 |
WEB
|
ajann
|
|
2007-01-27
|
|
Drunken:Golem Portal 0.5.1 Alpha 2 - Remote File Inclusion
|
4 |
WEB
|
MackRulZ
|
|
2007-01-27
|
|
ACGVclick 0.2.0 - 'path' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-01-27
|
|
nsGalPHP - '/includes/config.inc.php?racineTBS' Remote File Inclusion
|
4 |
WEB
|
S.W.A.T.
|
|
2007-01-26
|
|
FD Script 1.3.2 - 'download.php' Remote File Disclosure
|
4 |
WEB
|
ajann
|
|
2007-01-26
|
|
AINS 0.02b - 'ains_main.php?ains_path' Remote File Inclusion
|
3 |
WEB
|
ThE dE@Th
|
|
2007-01-26
|
|
MyPHPcommander 2.0 - 'package.php' Remote File Inclusion
|
4 |
WEB
|
Cold Zero
|
|
2007-01-25
|
|
Virtual Path 1.0 - '/vp/configure.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-25
|
|
forum livre 1.0 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
ajann
|
|
2007-01-25
|
|
Aztek Forum 4.0 - Multiple Vulnerabilities
|
4 |
WEB
|
DarkFig
|
|
2007-01-25
|
|
GPS CMS 1.2 - 'print.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-25
|
|
makit Newsposter Script 3.0 - SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-24
|
|
Xero Portal - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-01-24
|
|
vhostadmin 0.1 - 'MODULES_DIR' Remote File Inclusion
|
3 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-24
|
|
ASP NEWS 3.0 - 'news_detail.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-24
|
|
ASP EDGE 1.2b - 'user.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-24
|
|
RPW 1.0.2 - 'config.php?sql_language' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
phpXD 0.3 - 'path' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
BBClone 0.31 - 'selectlang.php' Remote File Inclusion
|
3 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
Vote-Pro 4.0 - 'poll_frame.php?poll_id' Remote Code Execution
|
4 |
WEB
|
r0ut3r
|
|
2007-01-22
|
|
VisoHotlink 1.01 - 'functions.visohotlink.php' Remote File Inclusion
|
3 |
WEB
|
bd0rk
|
|
2007-01-21
|
|
Upload Service 1.0 - 'top.php?maindir' Remote File Inclusion
|
5 |
WEB
|
y3dips
|
|
2007-01-21
|
|
webSPELL 4.01.02 - 'gallery.php' Blind SQL Injection
|
4 |
WEB
|
r00t
|
|
2007-01-21
|
|
Mafia Scum Tools 2.0.0 - 'index.php?gen' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2007-01-21
|
|
WebChat 0.77 - 'defines.php?WEBCHATPATH' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2007-01-20
|
|
MySpeach 2.1b - 'up.php' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-20
|
|
PHPIndexPage 1.0.1 - 'config.php' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2007-01-20
|
|
Neon Labs Website 3.2 - 'nl.php?g_strRootDir' Remote File Inclusion
|
3 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-20
|
|
Bradabra 2.0.5 - '/include/includes.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-20
|
|
PHPSherpa - '/include/config.inc.php' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-18
|
|
phpBP RC3 (2.204) - SQL Injection / Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2007-01-18
|
|
ComVironment 4.0 - 'grab_globals.lib.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-17
|
|
Oreon 1.2.3 RC4 - '/lang/index.php' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-17
|
|
Uberghey 0.3.1 - 'FrontPage.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-17
|
|
Woltlab Burning Board 1.0.2/2.3.6 - 'search.php' SQL Injection (3)
|
3 |
WEB
|
666
|
|
2007-01-17
|
|
PHPMyphorum 1.5a - '/mep/frame.php' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2007-01-17
|
|
Woltlab Burning Board 1.0.2/2.3.6 - 'search.php' SQL Injection (2)
|
4 |
WEB
|
trew
|
|
2007-01-17
|
|
Woltlab Burning Board 1.0.2/2.3.6 - 'search.php' SQL Injection (1)
|
4 |
WEB
|
silent vapor
|
|
2007-01-17
|
|
MGB 0.5.4.5 - 'email.php?id' SQL Injection
|
3 |
WEB
|
SlimTim10
|
|
2007-01-15
|
|
Okul Web Otomasyon Sistemi 4.0.1 - SQL Injection
|
4 |
WEB
|
ilker Kandemir
|
|
2007-01-15
|
|
KGB 1.9 - 'sesskglogadmin.php' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2007-01-14
|
|
JV2 Folder Gallery 3.0 - 'download.php' Remote File Disclosure
|
4 |
WEB
|
PeTrO
|
|
2007-01-14
|
|
ThWboard 3.0b2.84-php5 - SQL Injection / Code Execution
|
4 |
WEB
|
rgod
|
|
2007-01-13
|
|
FdWeB Espace Membre 2.01 - 'path' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2007-01-13
|
|
DigiAffiliate 1.4 - 'id' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-12
|
|
Poplar Gedcom Viewer 2.0 - 'common.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-12
|
|
Mint Haber Sistemi 2.7 - 'duyuru.asp?id' SQL Injection
|
4 |
WEB
|
chernobiLe
|
|
2007-01-12
|
|
TLM CMS 1.1 - 'i-accueil.php?chemin' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-01-12
|
|
LunarPoll 1.0 - 'show.php?PollDir' Remote File Inclusion
|
4 |
WEB
|
ilker Kandemir
|
|
2007-01-12
|
|
sNews 1.5.30 - Remote Reset Admin Pass / Command Execution
|
4 |
WEB
|
rgod
|
|
2007-01-11
|
|
vp-asp shopping cart 6.09 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
ajann
|
|
2007-01-11
|
|
Article System 0.1 - 'INCLUDE_DIR' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-10
|
|
Jshop Server 1.3 - 'fieldValidation.php' Remote File Inclusion
|
4 |
WEB
|
irvian
|
|
2007-01-10
|
|
WordPress Core 2.0.6 - 'wp-trackback.php' SQL Injection
|
4 |
WEB
|
rgod
|
|
2007-01-09
|
|
Axiom Photo/News Gallery 0.8.6 - Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2007-01-09
|
|
uniForum 4 - 'wbsearch.aspx' SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-09
|
|
MOTIONBORG Web Real Estate 2.1 - SQL Injection
|
4 |
WEB
|
ajann
|
|
2007-01-09
|
|
PPC Search Engine 1.61 - 'INC' Multiple Remote File Inclusions
|
4 |
WEB
|
IbnuSina
|
|
2007-01-08
|
|
@lex Guestbook 4.0.2 - Remote Command Execution
|
4 |
WEB
|
DarkFig
|
|
2007-01-08
|
|
Magic Photo Storage Website - '_config[site_path]' File Inclusion
|
4 |
WEB
|
k1tk4t
|
