|
2006-12-09
|
|
Request For Travel 1.0 - 'product' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-12-09
|
|
SpotLight CRM 1.0 - 'login.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-12-09
|
|
Fantastic News 2.1.4 - 'news.php' SQL Injection
|
4 |
WEB
|
Bl0od3r
|
|
2006-12-09
|
|
Gizzar 03162002 - 'index.php' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2006-12-09
|
|
mxBB Module Profile CP 0.91c - Remote File Inclusion
|
4 |
WEB
|
bd0rk
|
|
2006-12-09
|
|
TorrentFlux 2.2 - 'maketorrent.php' Remote Command Execution
|
4 |
WEB
|
r0ut3r
|
|
2006-12-09
|
|
TorrentFlux 2.2 - 'downloaddetails.php' Local File Disclosure
|
4 |
WEB
|
r0ut3r
|
|
2006-12-08
|
|
paFileDB 3.5.2/3.5.3 - Remote Authentication Bypass / SQL Injection
|
5 |
WEB
|
koray
|
|
2006-12-08
|
|
ThinkEdit 1.9.2 - 'render.php' Remote File Inclusion
|
4 |
WEB
|
r0ut3r
|
|
2006-12-08
|
|
CM68 News 12.02.06 - 'addpth' Remote File Inclusion
|
4 |
WEB
|
Paul Bakoyiannis
|
|
2006-12-08
|
|
Tucows Client Code Suite (CSS) 1.2.1015 - Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-07
|
|
J-OWAMP Web Interface 2.1b - 'link' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-06
|
|
Phorum 3.2.11 - 'common.php' Remote File Inclusion
|
4 |
WEB
|
Mr-m07
|
|
2006-12-04
|
|
CuteNews aj-fork 167f - 'cutepath' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2006-12-03
|
|
PHP-revista 1.1.2 - 'adodb' Multiple Remote File Inclusions
|
4 |
WEB
|
Cold Zero
|
|
2006-12-03
|
|
QuickCart 2.0 - 'categories.php' Local File Inclusion
|
4 |
WEB
|
r0ut3r
|
|
2006-12-03
|
|
Envolution 1.1.0 - 'PNSVlang' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-12-03
|
|
PHP Upload Center 2.0 - 'activate.php' File Inclusion
|
3 |
WEB
|
GregStar
|
|
2006-12-02
|
|
mxBB Module mx_tinies 1.3.0 - Remote File Inclusion
|
3 |
WEB
|
bd0rk
|
|
2006-12-02
|
|
awrate.com Message Board 1.0 - 'search.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-12-02
|
|
simple file manager 0.24a - Multiple Vulnerabilities
|
4 |
WEB
|
flame
|
|
2006-12-02
|
|
BBS E-Market Professional - Full Path Disclosure / File Inclusion
|
4 |
WEB
|
y3dips
|
|
2006-12-01
|
|
Ultimate HelpDesk - Cross-Site Scripting / Local File Disclosure
|
4 |
WEB
|
ajann
|
|
2006-12-01
|
|
ContentServ 4.x - '/admin/FileServer.php' File Disclosure
|
4 |
WEB
|
qobaiashi
|
|
2006-12-01
|
|
Invision Community Blog Mod 1.2.4 - SQL Injection
|
4 |
WEB
|
anonymous
|
|
2006-12-01
|
|
DZCP (deV!L_z Clanportal) 1.3.6 - Arbitrary File Upload
|
4 |
WEB
|
Tim Weber
|
|
2006-11-30
|
|
LDU 8.x - 'polls.php' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-30
|
|
S9Y Serendipity 1.0.3 - 'comment.php' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-30
|
|
phpGraphy 0.9.12 - Privilege Escalation / Commands Execution
|
3 |
WEB
|
rgod
|
|
2006-11-29
|
|
b2evolution 1.8.5 < 1.9b - 'import-mt.php' Remote File Inclusion
|
4 |
WEB
|
tarkus
|
|
2006-11-29
|
|
kubix 0.7 - Multiple Vulnerabilities
|
4 |
WEB
|
BlackHawk
|
|
2006-11-28
|
|
P-News 2.0 - 'user.txt' Remote Password Disclosure
|
3 |
WEB
|
Lu7k
|
|
2006-11-28
|
|
Discuz! 4.x - SQL Injection / Admin Credentials Disclosure
|
4 |
WEB
|
rgod
|
|
2006-11-26
|
|
SimpleBlog 2.3 - '/admin/edit.asp' SQL Injection
|
4 |
WEB
|
bolivar
|
|
2006-11-26
|
|
Mambo Component com_flyspray < 1.0.1 - Remote File Disclosure
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2006-11-26
|
|
Hacks List phpBB Mod 1.21 - SQL Injection
|
4 |
WEB
|
the master
|
|
2006-11-25
|
|
Exhibit Engine 1.22 - 'styles.php' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-25
|
|
ASP-Nuke Community 1.5 - Cookie Privilege Escalation
|
4 |
WEB
|
ajann
|
|
2006-11-25
|
|
Basic Forum 1.1 - 'edit.asp' SQL Injection
|
3 |
WEB
|
bolivar
|
|
2006-11-25
|
|
Sisfo Kampus 0.8 - Remote File Inclusion / Download
|
3 |
WEB
|
Wawan Firmansyah
|
|
2006-11-25
|
|
Liberum Help Desk 0.97.3 - SQL Injection
|
2 |
WEB
|
ajann
|
|
2006-11-24
|
|
Cahier de texte 2.0 - Database Backup / Source Disclosure
|
3 |
WEB
|
DarkFig
|
|
2006-11-24
|
|
PHP-Nuke NukeAI Module 3b - 'util.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
Woltlab Burning Board Lite 1.0.2 - Blind SQL Injection
|
3 |
WEB
|
rgod
|
|
2006-11-24
|
|
Woltlab Burning Board Lite 1.0.2 - 'decode_cookie()' SQL Injection
|
3 |
WEB
|
rgod
|
|
2006-11-23
|
|
PEGames - 'index.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
OWLLib 1.0 - 'OWLMemoryProperty.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
HSRS 1.0 - 'addcode.php' Remote File Inclusion
|
3 |
WEB
|
Cold Zero
|
|
2006-11-23
|
|
JiRos FAQ Manager 1.0 - 'index.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-23
|
|
Wallpaper Complete Website 1.0.09 - SQL Injection
|
3 |
WEB
|
GregStar
|
|
2006-11-23
|
|
Recipes Complete Website 1.1.14 - SQL Injection
|
3 |
WEB
|
GregStar
|
|
2006-11-23
|
|
Site News - 'centre.php' Remote File Inclusion
|
3 |
WEB
|
DaDIsS
|
|
2006-11-23
|
|
Messagerie Locale - 'centre.php' Remote File Inclusion
|
3 |
WEB
|
DaDIsS
|
|
2006-11-22
|
|
a-ConMan 3.2b - 'common.inc.php' Remote File Inclusion
|
3 |
WEB
|
Matdhule
|
|
2006-11-22
|
|
fipsForum 2.6 - 'default2.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-22
|
|
fipsGallery 1.5 - 'index1.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-22
|
|
FipsCMS 4.5 - 'index.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-21
|
|
phpPC 1.04 - Multiple Remote File Inclusions
|
4 |
WEB
|
iss4m
|
|
2006-11-21
|
|
Pearl Forums 2.4 - Multiple Remote File Inclusions
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2006-11-21
|
|
aBitWhizzy - 'abitwhizzy.php' Information Disclosure
|
4 |
WEB
|
Security Access Point
|
|
2006-11-21
|
|
ContentNow 1.39 - 'pageid' SQL Injection
|
4 |
WEB
|
Revenge
|
|
2006-11-21
|
|
Seditio 1.10 - avatarselect id SQL Injection
|
4 |
WEB
|
nukedx
|
|
2006-11-21
|
|
LDU 8.x - avatarselect id SQL Injection
|
4 |
WEB
|
nukedx
|
|
2006-11-21
|
|
e-Ark 1.0 - '/src/ark_inc.php' Remote File Inclusion
|
5 |
WEB
|
DeltahackingTEAM
|
|
2006-11-21
|
|
Photo Cart 3.9 - 'adminprint.php' Remote File Inclusion
|
4 |
WEB
|
irvian
|
|
2006-11-19
|
|
PHPQuickGallery 1.9 - 'textFile' Remote File Inclusion
|
4 |
WEB
|
Al7ejaz Hacker
|
|
2006-11-19
|
|
ASPNuke 0.80 - 'register.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-11-18
|
|
PHP Easy Downloader 1.5 - 'save.php' Remote Code Execution
|
4 |
WEB
|
nuffsaid
|
|
2006-11-18
|
|
PHPWebThings 1.5.2 - 'editor.php' Remote File Inclusion
|
3 |
WEB
|
nuffsaid
|
|
2006-11-18
|
|
Oxygen 1.1.3 (O2PHP Bulletin Board) - SQL Injection
|
3 |
WEB
|
DarkFig
|
|
2006-11-17
|
|
Dicshunary 0.1a - 'check_status.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-11-17
|
|
Joomla! Component MosReporter 0.9.3 - Remote File Inclusion
|
3 |
WEB
|
Crackers_Child
|
|
2006-11-17
|
|
mxBB Module calsnails 1.06 - 'mx_common.php' File Inclusion
|
3 |
WEB
|
bd0rk
|
|
2006-11-17
|
|
Powies MatchMaker 4.05 - 'matchdetail.php' SQL Injection
|
3 |
WEB
|
SHiKaA
|
|
2006-11-17
|
|
Powies pForum 1.29a - 'editpoll.php' SQL Injection
|
3 |
WEB
|
SHiKaA
|
|
2006-11-17
|
|
miniCWB 1.0.0 - 'contact.php' Local File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-11-17
|
|
DoSePa 1.0.4 - 'textview.php' Information Disclosure
|
3 |
WEB
|
Craig Heffner
|
|
2006-11-17
|
|
mg.applanix 1.3.1 - 'apx_root_path' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2006-11-16
|
|
HTTP Upload Tool - 'download.php' Information Disclosure
|
4 |
WEB
|
Craig Heffner
|
|
2006-11-16
|
|
Etomite CMS 0.6.1.2 - '/manager/index.php' Local File Inclusion
|
4 |
WEB
|
Revenge
|
|
2006-11-15
|
|
torrentflux 2.2 - Arbitrary File Create/ Execute/Delete
|
4 |
WEB
|
r0ut3r
|
|
2006-11-14
|
|
Hpecs Shopping Cart - Remote Authentication Bypass
|
4 |
WEB
|
Security Access Point
|
|
2006-11-14
|
|
blogme 3.0 - Cross-Site Scripting / Authentication Bypass
|
4 |
WEB
|
Security Access Point
|
|
2006-11-14
|
|
NetVIOS 2.0 - 'page.asp' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-11-14
|
|
ASP Smiley 1.0 - 'default.asp' Authentication Bypass / SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-11-14
|
|
PHPPeanuts 1.3 Beta - 'Inspect.php' Remote File Inclusion
|
2 |
WEB
|
Hidayat Sagita
|
|
2006-11-14
|
|
Aigaion 1.2.1 - 'DIR' Remote File Inclusion
|
3 |
WEB
|
navairum
|
|
2006-11-14
|
|
ContentNow 1.30 - Arbitrary File Upload / Cross-Site Scripting
|
3 |
WEB
|
Timq
|
|
2006-11-13
|
|
Phpjobscheduler 3.0 - 'installed_config_file' File Inclusion
|
3 |
WEB
|
Firewall
|
|
2006-11-13
|
|
Property Pro 1.0 - 'vir_Login.asp' Remote Authentication Bypass
|
3 |
WEB
|
ajann
|
|
2006-11-13
|
|
Estate Agent Manager 1.3 - 'default.asp' Authentication Bypass
|
3 |
WEB
|
ajann
|
|
2006-11-13
|
|
Online Event Registration 2.0 - 'save_profile.asp' Pass Change
|
3 |
WEB
|
ajann
|
|
2006-11-13
|
|
Quick.Cart 2.0 - '/actions_client/gallery.php' Local File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-11-13
|
|
ContentNow 1.30 - Local File Inclusion / Arbitrary File Upload/Delete
|
3 |
WEB
|
r0ut3r
|
|
2006-11-12
|
|
StoryStream 4.0 - 'baseDir' Remote File Inclusion
|
3 |
WEB
|
v1per-haCker
|
|
2006-11-12
|
|
CMSmelborp Beta - 'user_standard.php' Remote File Inclusion
|
3 |
WEB
|
DeltahackingTEAM
|
|
2006-11-12
|
|
UPublisher 1.0 - 'viewarticle.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-12
|
|
USupport 1.0 - 'detail.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-12
|
|
UStore 1.0 - 'detail.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-12
|
|
ASPPortal 4.0.0 - 'default1.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-12
|
|
Munch Pro 1.0 - 'switch.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-12
|
|
Rama CMS 0.68 - Cookie: lang Local File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-11-12
|
|
PHPWind 5.0.1 - 'AdminUser' Blind SQL Injection
|
3 |
WEB
|
rgod
|
|
2006-11-11
|
|
PHPWCMS 1.2.6 - Cookie: wcs_user_lang Local File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-11-11
|
|
NuSchool 1.0 - 'CampusNewsDetails.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuStore 1.0 - 'Products.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuRems 1.0 - 'propertysdetails.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuCommunity 1.0 - 'cl_CatListing.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-10
|
|
WORK System E-Commerce 3.0.1 - Remote File Inclusion
|
3 |
WEB
|
SlimTim10
|
|
2006-11-10
|
|
BrewBlogger 1.3.1 - 'printLog.php' SQL Injection
|
3 |
WEB
|
Craig Heffner
|
|
2006-11-10
|
|
EncapsCMS 0.3.6 - '/core/core.php' Remote File Inclusion
|
3 |
WEB
|
Firewall
|
|
2006-11-09
|
|
PHPManta 1.0.2 - 'view-sourcecode.php' Local File Inclusion
|
2 |
WEB
|
ajann
|
|
2006-11-09
|
|
MyAlbum 3.02 - 'language.inc.php' Remote File Inclusion
|
3 |
WEB
|
Silahsiz Kuvvetler
|
|
2006-11-09
|
|
AspPired2Poll 1.0 - 'MoreInfo.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-11-09
|
|
gtcatalog 0.9.1 - 'index.php' Remote File Inclusion
|
3 |
WEB
|
v1per-haCker
|
|
2006-11-09
|
|
LetterIt 2.0 - 'session.php' Remote File Inclusion
|
3 |
WEB
|
v1per-haCker
|
|
2006-11-08
|
|
DodosMail 2.0.1 - 'dodosmail.php' Remote File Inclusion
|
3 |
WEB
|
Cold Zero
|
|
2006-11-08
|
|
IrayoBlog 0.2.4 - '/inc/irayofuncs.php' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2006-11-08
|
|
vBlog / C12 0.1 - 'cfgProgDir' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2006-11-08
|
|
iPrimal Forums - '/admin/index.php' Remote File Inclusion
|
4 |
WEB
|
Bl0od3r
|
|
2006-11-07
|
|
PHPAdventure 1.1 - 'ad_main.php' Remote File Inclusion
|
3 |
WEB
|
HER0
|
|
2006-11-07
|
|
iWare Pro 5.0.4 - 'chat_panel.php' Remote Code Execution
|
4 |
WEB
|
nuffsaid
|
|
2006-11-06
|
|
PHPGiggle 12.08 - 'CFG_PHPGIGGLE_ROOT' File Inclusion
|
4 |
WEB
|
ajann
|
|
2006-11-06
|
|
iPrimal Forums - '/admin/index.php' Change User Password
|
4 |
WEB
|
Bl0od3r
|
|
2006-11-06
|
|
Article Script 1.6.3 - 'rss.php' SQL Injection
|
4 |
WEB
|
Liz0ziM
|
