|
2007-02-21
|
|
DBImageGallery 1.2.2 - 'donsimg_base_path' Remote File Inclusion
|
7 |
WEB
|
Denven
|
|
2007-02-21
|
|
Connectix Boards 0.7 - 'p_skin' Multiple Vulnerabilities
|
8 |
WEB
|
DarkFig
|
|
2007-02-21
|
|
webSPELL 4.01.02 - 'topic' SQL Injection
|
8 |
WEB
|
DNX
|
|
2007-02-20
|
|
SendStudio 2004.14 - 'ROOTDIR' Remote File Inclusion
|
7 |
WEB
|
K-159
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - HTTP Referers SQL Injection
|
8 |
WEB
|
krasza
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - 'INSERT' SQL Injection
|
7 |
WEB
|
krasza
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - 'INSERT' Blind SQL Injection (MySQL)
|
8 |
WEB
|
krasza
|
|
2007-02-20
|
|
Online Web Building 2.0 - 'id' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-20
|
|
NukeSentinel 2.5.05 - 'nukesentinel.php' File Disclosure
|
8 |
WEB
|
DarkFig
|
|
2007-02-20
|
|
NukeSentinel 2.5.05 - 'nsbypass.php' Blind SQL Injection
|
8 |
WEB
|
DarkFig
|
|
2007-02-20
|
|
Ultimate Fun Book 1.02 - 'function.php' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-02-19
|
|
PHP-Nuke Module Emporium 2.3.0 - SQL Injection
|
7 |
WEB
|
ajann
|
|
2007-02-18
|
|
Xpression News 1.0.1 - 'archives.php' Remote File Disclosure
|
8 |
WEB
|
r0ut3r
|
|
2007-02-18
|
|
S-Gastebuch 1.5.3 - 'gb_pfad' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-02-17
|
|
XLAtunes 0.1 - 'album' SQL Injection
|
9 |
WEB
|
Bl0od3r
|
|
2007-02-16
|
|
Vivvo Article Manager 3.4 - 'root' Local File Inclusion
|
8 |
WEB
|
Snip0r
|
|
2007-02-16
|
|
webSPELL 4.01.02 - 'showonly' Blind SQL Injection
|
9 |
WEB
|
DNX
|
|
2007-02-16
|
|
Htaccess Passwort Generator 1.1 - 'ht_pfad' Remote File Inclusion
|
9 |
WEB
|
kezzap66345
|
|
2007-02-16
|
|
VS-Link-Partner 2.1 - 'script_pfad' Remote File Inclusion
|
7 |
WEB
|
ajann
|
|
2007-02-16
|
|
VS-News-System 1.2.1 - 'newsordner' Remote File Inclusion
|
7 |
WEB
|
ajann
|
|
2007-02-16
|
|
Snitz Forums 2000 3.1 SR4 - 'pop_profile.asp' SQL Injection
|
9 |
WEB
|
Mehmet Ince
|
|
2007-02-15
|
|
Aktueldownload Haber scripti - 'id' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-15
|
|
CodeAvalanche News 1.x - 'CAT_ID' SQL Injection
|
9 |
WEB
|
beks
|
|
2007-02-15
|
|
nabopoll 1.2 - 'survey.inc.php?path' Remote File Inclusion
|
7 |
WEB
|
Cr@zy_King
|
|
2007-02-15
|
|
ZebraFeeds 1.0 - 'zf_path' Remote File Inclusion
|
7 |
WEB
|
ThE dE@Th
|
|
2007-02-15
|
|
Drupal < 4.7.6 - Post Comments Remote Command Execution
|
8 |
WEB
|
str0ke
|
|
2007-02-15
|
|
Drupal < 5.1 - Post Comments Remote Command Execution
|
8 |
WEB
|
str0ke
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - Arbitrary File Upload
|
8 |
WEB
|
DarkFig
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - 'Client-IP' SQL Injection
|
7 |
WEB
|
DarkFig
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - '/index.php' Local/Remote File Inclusion
|
7 |
WEB
|
DarkFig
|
|
2007-02-13
|
|
nabopoll 1.2 - Remote Unprotected Admin Section
|
7 |
WEB
|
sn0oPy
|
|
2007-02-13
|
|
PollMentor 2.0 - 'pollmentorres.asp?id' SQL Injection
|
8 |
WEB
|
SaO
|
|
2007-02-13
|
|
Advanced Poll 2.0.5-dev - Remote Code Execution
|
8 |
WEB
|
diwou
|
|
2007-02-13
|
|
PHPCC 4.2 Beta - 'nickpage.php?npid' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-13
|
|
Xaran CMS 2.0 - 'xarancms_haupt.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-13
|
|
AT Contenator 1.0 - 'Root_To_Script' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-02-12
|
|
philboard 1.14 - 'philboard_forum.asp' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-11
|
|
OPENi-CMS Site Protection Plugin - Remote File Inclusion
|
8 |
WEB
|
y3dips
|
|
2007-02-08
|
|
LushiWarPlaner 1.0 - 'register.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-08
|
|
LushiNews 1.01 - 'comments.php' SQL Injection
|
9 |
WEB
|
ajann
|
|
2007-02-08
|
|
LightRO CMS 1.0 - 'index.php?projectid' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-08
|
|
Site-Assistant 0990 - 'paths[version]' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-02-07
|
|
Maian Recipe 1.0 - 'path_to_folder' Remote File Inclusion
|
8 |
WEB
|
Denven
|
|
2007-02-07
|
|
otscms 2.1.5 - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
GregStar
|
|
2007-02-07
|
|
Advanced Poll 2.0.5-dev - Remote Admin Session Generator
|
8 |
WEB
|
diwou
|
|
2007-02-07
|
|
WebMatic 2.6 - 'index_album.php' Remote File Inclusion
|
8 |
WEB
|
MadNet
|
|
2007-02-07
|
|
AgerMenu 0.01 - 'top.inc.php?rootdir' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-02-06
|
|
Kisisel Site 2007 - 'tr' SQL Injection
|
8 |
WEB
|
cl24zy
|
|
2007-02-06
|
|
LightRO CMS 1.0 - 'inhalt.php' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-02-05
|
|
GGCMS 1.1.0 RC1 - Remote Code Execution
|
8 |
WEB
|
Kacper
|
|
2007-02-05
|
|
Categories hierarchy phpBB Mod 2.1.2 - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-05
|
|
SMA-DB 0.3.9 - 'settings.php' Remote File Inclusion
|
8 |
WEB
|
ThE dE@Th
|
|
2007-02-05
|
|
Geeklog 2 - 'BaseView.php' Remote File Inclusion
|
9 |
WEB
|
GoLd_M
|
|
2007-02-04
|
|
Flip 2.01 final - 'previewtheme.php?inc_path' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-02-03
|
|
KDPics 1.11 - 'exif.php?lib_path' Remote File Inclusion
|
8 |
WEB
|
AsTrex
|
|
2007-02-03
|
|
Woltlab Burning Board Lite 1.0.2pl3e - 'pms.php' SQL Injection
|
8 |
WEB
|
rgod
|
|
2007-02-03
|
|
Photo Galerie Standard 1.1 - 'view.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-02
|
|
phpBB++ Build 100 - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
phpBB ezBoard Converter 0.2 - 'ezconvert_dir' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
dB Masters Curium CMS 1.03 - 'c_id' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-02-02
|
|
F3Site 2.1 - Remote Code Execution
|
8 |
WEB
|
Kacper
|
|
2007-02-02
|
|
Flipper Poll 1.1.0 - 'poll.php?root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
EQdkp 1.3.1 - 'Referer Spoof' Remote Database Backup
|
8 |
WEB
|
Eight10
|
|
2007-02-02
|
|
CoD2: DreamStats 4.2 - 'index.php' Remote File Inclusion
|
8 |
WEB
|
ThE dE@Th
|
|
2007-02-01
|
|
Portail Web PHP 2.5.1 - 'includes.php' Remote File Inclusion
|
8 |
WEB
|
laurent gaffié
|
|
2007-02-01
|
|
WebBuilder 2.0 - 'StageLoader.php' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
Epistemon 1.0 - 'common.php?inc_path' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
phpEventMan 1.0.2 - 'level' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-02-01
|
|
SIPS 0.3.1 - 'box.inc.php' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cerulean Portal System 0.7b - Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Omegaboard 1.0beta4 - 'functions.php' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Hunkaray Duyuru Scripti - 'tr' SQL Injection
|
8 |
WEB
|
cl24zy
|
|
2007-01-31
|
|
JV2 Folder Gallery 3.0 - Remote File Inclusion
|
7 |
WEB
|
ThE dE@Th
|
|
2007-01-31
|
|
Extcalendar 2 - 'profile.php' Remote User Pass Change
|
8 |
WEB
|
ajann
|
|
2007-01-31
|
|
PHPMyRing 4.1.3b - 'fichier' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cadre PHP Framework - Remote File Inclusion
|
8 |
WEB
|
y3dips
|
|
2007-01-31
|
|
Hailboards 1.2.0 - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
phpBB Tweaked 3 - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
ExoPHPDesk 1.2.1 - 'faq.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-31
|
|
Fullaspsite Asp Hosting Sitesi - 'tr' SQL Injection
|
8 |
WEB
|
cl24zy
|
|
2007-01-31
|
|
Michelles L2J Dropcalc 4 - SQL Injection
|
8 |
WEB
|
Codebreak
|
|
2007-01-30
|
|
PHPBB2 MODificat 0.2.0 - 'functions.php' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-30
|
|
MyNews 4.2.2 - 'themefunc.php' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-01-30
|
|
CascadianFAQ 4.1 - 'index.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-30
|
|
PHPFootball 1.6 - Remote Database Disclosure
|
8 |
WEB
|
ajann
|
|
2007-01-30
|
|
Galeria Zdjec 3.0 - 'zd_numer.php' Local File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-01-29
|
|
Webfwlog 0.92 - 'debug.php' Remote File Disclosure
|
8 |
WEB
|
GoLd_M
|
|
2007-01-29
|
|
GuppY 4.5.16 - Remote Command Execution
|
8 |
WEB
|
rgod
|
|
2007-01-28
|
|
PHP Generic library & Framework - 'INCLUDE_PATH' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-28
|
|
xNews 1.3 - 'xNews.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-28
|
|
Foro Domus 2.10 - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-28
|
|
EclipseBB 0.5.0 Lite - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-27
|
|
PHPMyReports 3.0.11 - 'lib_head.php' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-01-27
|
|
chernobiLe Portal 1.0 - 'default.asp' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-27
|
|
Xt-Stats 2.4.0.b3 (server_base_dir) - Remote File Inclusion
|
8 |
WEB
|
ThE dE@Th
|
|
2007-01-27
|
|
ACGVannu 1.3 - 'index2.php' Remote User Pass Change
|
8 |
WEB
|
ajann
|
|
2007-01-27
|
|
Drunken:Golem Portal 0.5.1 Alpha 2 - Remote File Inclusion
|
8 |
WEB
|
MackRulZ
|
|
2007-01-27
|
|
ACGVclick 0.2.0 - 'path' Remote File Inclusion
|
8 |
WEB
|
ajann
|
|
2007-01-27
|
|
nsGalPHP - '/includes/config.inc.php?racineTBS' Remote File Inclusion
|
8 |
WEB
|
S.W.A.T.
|
|
2007-01-26
|
|
FD Script 1.3.2 - 'download.php' Remote File Disclosure
|
8 |
WEB
|
ajann
|
|
2007-01-26
|
|
AINS 0.02b - 'ains_main.php?ains_path' Remote File Inclusion
|
8 |
WEB
|
ThE dE@Th
|
|
2007-01-26
|
|
MyPHPcommander 2.0 - 'package.php' Remote File Inclusion
|
8 |
WEB
|
Cold Zero
|
|
2007-01-25
|
|
Virtual Path 1.0 - '/vp/configure.php' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-01-25
|
|
forum livre 1.0 - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
ajann
|
|
2007-01-25
|
|
Aztek Forum 4.0 - Multiple Vulnerabilities
|
8 |
WEB
|
DarkFig
|
|
2007-01-25
|
|
GPS CMS 1.2 - 'print.asp' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-25
|
|
makit Newsposter Script 3.0 - SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-24
|
|
Xero Portal - 'phpbb_root_path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-01-24
|
|
vhostadmin 0.1 - 'MODULES_DIR' Remote File Inclusion
|
7 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-24
|
|
ASP NEWS 3.0 - 'news_detail.asp' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-24
|
|
ASP EDGE 1.2b - 'user.asp' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-01-24
|
|
RPW 1.0.2 - 'config.php?sql_language' Remote File Inclusion
|
8 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
phpXD 0.3 - 'path' Remote File Inclusion
|
8 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
BBClone 0.31 - 'selectlang.php' Remote File Inclusion
|
7 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-23
|
|
Vote-Pro 4.0 - 'poll_frame.php?poll_id' Remote Code Execution
|
8 |
WEB
|
r0ut3r
|
|
2007-01-22
|
|
VisoHotlink 1.01 - 'functions.visohotlink.php' Remote File Inclusion
|
7 |
WEB
|
bd0rk
|
|
2007-01-21
|
|
Upload Service 1.0 - 'top.php?maindir' Remote File Inclusion
|
9 |
WEB
|
y3dips
|
|
2007-01-21
|
|
webSPELL 4.01.02 - 'gallery.php' Blind SQL Injection
|
9 |
WEB
|
r00t
|
|
2007-01-21
|
|
Mafia Scum Tools 2.0.0 - 'index.php?gen' Remote File Inclusion
|
8 |
WEB
|
DeltahackingTEAM
|
|
2007-01-21
|
|
WebChat 0.77 - 'defines.php?WEBCHATPATH' Remote File Inclusion
|
8 |
WEB
|
v1per-haCker
|
|
2007-01-20
|
|
MySpeach 2.1b - 'up.php' Remote File Inclusion
|
8 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-20
|
|
PHPIndexPage 1.0.1 - 'config.php' Remote File Inclusion
|
8 |
WEB
|
DeltahackingTEAM
|
|
2007-01-20
|
|
Neon Labs Website 3.2 - 'nl.php?g_strRootDir' Remote File Inclusion
|
8 |
WEB
|
3l3ctric-Cracker
|
|
2007-01-20
|
|
Bradabra 2.0.5 - '/include/includes.php' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-01-20
|
|
PHPSherpa - '/include/config.inc.php' Remote File Inclusion
|
9 |
WEB
|
3l3ctric-Cracker
|
