|
2006-11-14
|
|
blogme 3.0 - Cross-Site Scripting / Authentication Bypass
|
10 |
WEB
|
Security Access Point
|
|
2006-11-14
|
|
NetVIOS 2.0 - 'page.asp' SQL Injection
|
11 |
WEB
|
ajann
|
|
2006-11-14
|
|
ASP Smiley 1.0 - 'default.asp' Authentication Bypass / SQL Injection
|
10 |
WEB
|
ajann
|
|
2006-11-14
|
|
PHPPeanuts 1.3 Beta - 'Inspect.php' Remote File Inclusion
|
9 |
WEB
|
Hidayat Sagita
|
|
2006-11-14
|
|
Aigaion 1.2.1 - 'DIR' Remote File Inclusion
|
10 |
WEB
|
navairum
|
|
2006-11-14
|
|
ContentNow 1.30 - Arbitrary File Upload / Cross-Site Scripting
|
10 |
WEB
|
Timq
|
|
2006-11-13
|
|
Phpjobscheduler 3.0 - 'installed_config_file' File Inclusion
|
10 |
WEB
|
Firewall
|
|
2006-11-13
|
|
Property Pro 1.0 - 'vir_Login.asp' Remote Authentication Bypass
|
10 |
WEB
|
ajann
|
|
2006-11-13
|
|
Estate Agent Manager 1.3 - 'default.asp' Authentication Bypass
|
10 |
WEB
|
ajann
|
|
2006-11-13
|
|
Online Event Registration 2.0 - 'save_profile.asp' Pass Change
|
10 |
WEB
|
ajann
|
|
2006-11-13
|
|
Quick.Cart 2.0 - '/actions_client/gallery.php' Local File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-11-13
|
|
ContentNow 1.30 - Local File Inclusion / Arbitrary File Upload/Delete
|
10 |
WEB
|
r0ut3r
|
|
2006-11-12
|
|
StoryStream 4.0 - 'baseDir' Remote File Inclusion
|
11 |
WEB
|
v1per-haCker
|
|
2006-11-12
|
|
CMSmelborp Beta - 'user_standard.php' Remote File Inclusion
|
11 |
WEB
|
DeltahackingTEAM
|
|
2006-11-12
|
|
UPublisher 1.0 - 'viewarticle.asp' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-12
|
|
USupport 1.0 - 'detail.asp' SQL Injection
|
13 |
WEB
|
ajann
|
|
2006-11-12
|
|
UStore 1.0 - 'detail.asp' SQL Injection
|
10 |
WEB
|
ajann
|
|
2006-11-12
|
|
ASPPortal 4.0.0 - 'default1.asp' SQL Injection
|
13 |
WEB
|
ajann
|
|
2006-11-12
|
|
Munch Pro 1.0 - 'switch.asp' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-12
|
|
Rama CMS 0.68 - Cookie: lang Local File Inclusion
|
9 |
WEB
|
Kacper
|
|
2006-11-12
|
|
PHPWind 5.0.1 - 'AdminUser' Blind SQL Injection
|
12 |
WEB
|
rgod
|
|
2006-11-11
|
|
PHPWCMS 1.2.6 - Cookie: wcs_user_lang Local File Inclusion
|
9 |
WEB
|
Kacper
|
|
2006-11-11
|
|
NuSchool 1.0 - 'CampusNewsDetails.asp' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuStore 1.0 - 'Products.asp' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuRems 1.0 - 'propertysdetails.asp' SQL Injection
|
11 |
WEB
|
ajann
|
|
2006-11-11
|
|
NuCommunity 1.0 - 'cl_CatListing.asp' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-10
|
|
WORK System E-Commerce 3.0.1 - Remote File Inclusion
|
10 |
WEB
|
SlimTim10
|
|
2006-11-10
|
|
BrewBlogger 1.3.1 - 'printLog.php' SQL Injection
|
10 |
WEB
|
Craig Heffner
|
|
2006-11-10
|
|
EncapsCMS 0.3.6 - '/core/core.php' Remote File Inclusion
|
9 |
WEB
|
Firewall
|
|
2006-11-09
|
|
PHPManta 1.0.2 - 'view-sourcecode.php' Local File Inclusion
|
8 |
WEB
|
ajann
|
|
2006-11-09
|
|
MyAlbum 3.02 - 'language.inc.php' Remote File Inclusion
|
8 |
WEB
|
Silahsiz Kuvvetler
|
|
2006-11-09
|
|
AspPired2Poll 1.0 - 'MoreInfo.asp' SQL Injection
|
8 |
WEB
|
ajann
|
|
2006-11-09
|
|
gtcatalog 0.9.1 - 'index.php' Remote File Inclusion
|
9 |
WEB
|
v1per-haCker
|
|
2006-11-09
|
|
LetterIt 2.0 - 'session.php' Remote File Inclusion
|
9 |
WEB
|
v1per-haCker
|
|
2006-11-08
|
|
DodosMail 2.0.1 - 'dodosmail.php' Remote File Inclusion
|
10 |
WEB
|
Cold Zero
|
|
2006-11-08
|
|
IrayoBlog 0.2.4 - '/inc/irayofuncs.php' Remote File Inclusion
|
10 |
WEB
|
DeltahackingTEAM
|
|
2006-11-08
|
|
vBlog / C12 0.1 - 'cfgProgDir' Remote File Inclusion
|
10 |
WEB
|
DeltahackingTEAM
|
|
2006-11-08
|
|
iPrimal Forums - '/admin/index.php' Remote File Inclusion
|
12 |
WEB
|
Bl0od3r
|
|
2006-11-07
|
|
PHPAdventure 1.1 - 'ad_main.php' Remote File Inclusion
|
10 |
WEB
|
HER0
|
|
2006-11-07
|
|
iWare Pro 5.0.4 - 'chat_panel.php' Remote Code Execution
|
11 |
WEB
|
nuffsaid
|
|
2006-11-06
|
|
PHPGiggle 12.08 - 'CFG_PHPGIGGLE_ROOT' File Inclusion
|
10 |
WEB
|
ajann
|
|
2006-11-06
|
|
iPrimal Forums - '/admin/index.php' Change User Password
|
10 |
WEB
|
Bl0od3r
|
|
2006-11-06
|
|
Article Script 1.6.3 - 'rss.php' SQL Injection
|
10 |
WEB
|
Liz0ziM
|
|
2006-11-06
|
|
OpenEMR 2.8.1 - 'srcdir' Multiple Remote File Inclusions
|
10 |
WEB
|
the_day
|
|
2006-11-06
|
|
Agora 1.4 RC1 - 'MysqlfinderAdmin.php' Remote File Inclusion
|
10 |
WEB
|
the_day
|
|
2006-11-06
|
|
Cyberfolio 2.0 RC1 - 'av' Remote File Inclusion
|
10 |
WEB
|
the_day
|
|
2006-11-06
|
|
Soholaunch Pro 4.9 r36 - Remote File Inclusion
|
9 |
WEB
|
the_day
|
|
2006-11-05
|
|
Webdrivers Simple Forum - 'message_details.php' SQL Injection
|
10 |
WEB
|
Bl0od3r
|
|
2006-11-05
|
|
Ultimate PHP Board 2.0 - 'header_simple.php' File Inclusion
|
9 |
WEB
|
Kacper
|
|
2006-11-05
|
|
PHP Classifieds 7.1 - 'detail.php' SQL Injection
|
9 |
WEB
|
ajann
|
|
2006-11-05
|
|
Quick.CMS.Lite 0.3 - Cookie sLanguage Local File Inclusion
|
9 |
WEB
|
Kacper
|
|
2006-11-04
|
|
SazCart 1.5 - 'cart.php' Remote File Inclusion
|
9 |
WEB
|
IbnuSina
|
|
2006-11-04
|
|
phpDynaSite 3.2.2 - 'racine' Remote File Inclusion
|
9 |
WEB
|
DeltahackingTEAM
|
|
2006-11-04
|
|
PHPKIT 1.6.1R2 - 'search_user' SQL Injection
|
10 |
WEB
|
x23
|
|
2006-11-04
|
|
Drake CMS < 0.2.3 ALPHA rev.916 - Remote File Inclusion
|
11 |
WEB
|
GregStar
|
|
2006-11-04
|
|
MDPro 1.0.76 - 'Cookie PNSVlang' Local File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-11-04
|
|
e107 < 0.75 - 'e107language_e107cookie' Local File Inclusion
|
11 |
WEB
|
Kacper
|
|
2006-11-04
|
|
Ariadne 2.4 - store_config[code] Remote File Inclusion
|
12 |
WEB
|
Mehmet Ince
|
|
2006-11-03
|
|
Creasito E-Commerce Content Manager - 'admin' Authentication Bypass
|
13 |
WEB
|
SlimTim10
|
|
2006-11-03
|
|
PostNuke 0.763 - 'PNSV lang' Remote Code Execution
|
10 |
WEB
|
Kacper
|
|
2006-11-03
|
|
MODx CMS 0.9.2.1 - 'FCKeditor' Remote File Inclusion
|
10 |
WEB
|
nuffsaid
|
|
2006-11-02
|
|
FreeWebShop.org script 2.2.2 - Multiple Vulnerabilities
|
9 |
WEB
|
Spiked
|
|
2006-11-02
|
|
Article System 0.6 - 'volume.php' Remote File Inclusion
|
11 |
WEB
|
GregStar
|
|
2006-11-02
|
|
Lithium CMS 4.04c - '/classes/index.php' Local File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-11-01
|
|
TikiWiki 1.9.5 Sirius - 'sort_mode' Information Disclosure
|
10 |
WEB
|
securfrog
|
|
2006-11-01
|
|
2BGal 3.0 - '/admin/configuration.inc.php' Local File Inclusion
|
10 |
WEB
|
Kw3[R]Ln
|
|
2006-11-01
|
|
Innovate Portal 2.0 - 'acp.php' Remote Code Execution
|
10 |
WEB
|
Kacper
|
|
2006-11-01
|
|
Invision Power Board 2.1.7 - 'Debug' Remote Password Change
|
10 |
WEB
|
Rapigator
|
|
2006-10-31
|
|
T.G.S. CMS 0.1.7 - 'logout.php' SQL Injection
|
10 |
WEB
|
Kacper
|
|
2006-10-31
|
|
PwsPHP 1.1 - '/themes/fin.php' Remote File Inclusion
|
10 |
WEB
|
3l3ctric-Cracker
|
|
2006-10-31
|
|
GEPI 1.4.0 - '/gestion/savebackup.php' Remote File Inclusion
|
11 |
WEB
|
Sumit Siddharth
|
|
2006-10-31
|
|
P-Book 1.17 - 'pb_lang' Remote File Inclusion
|
9 |
WEB
|
Matdhule
|
|
2006-10-30
|
|
phpProfiles 2.1 Beta - Multiple Remote File Inclusions
|
10 |
WEB
|
v1per-haCker
|
|
2006-10-30
|
|
E Annu 1.0 - Authentication Bypass / SQL Injection
|
10 |
WEB
|
ajann
|
|
2006-10-30
|
|
phpBB Spider Friendly Module 1.3.10 - Remote File Inclusion
|
11 |
WEB
|
Kacper
|
|
2006-10-30
|
|
Nitrotech 0.0.3a - Remote Code Execution
|
11 |
WEB
|
Kacper
|
|
2006-10-30
|
|
Techno Dreams Guestbook 1.0 - 'key' SQL Injection
|
10 |
WEB
|
ajann
|
|
2006-10-30
|
|
Techno Dreams Announcement - 'key' SQL Injection
|
11 |
WEB
|
ajann
|
|
2006-10-30
|
|
QnECMS 2.5.6 - 'adminfolderpath' Remote File Inclusion
|
10 |
WEB
|
K-159
|
|
2006-10-29
|
|
PHPMyRing 4.2.1 - 'cherche.php' SQL Injection
|
10 |
WEB
|
ajann
|
|
2006-10-29
|
|
Faq Administrator 2.1 - 'faq_reply.php' Remote File Inclusion
|
10 |
WEB
|
v1per-haCker
|
|
2006-10-29
|
|
Netref 4 - 'cat_for_aff.php' Source Code Disclosure
|
11 |
WEB
|
ajann
|
|
2006-10-29
|
|
PHPEasyData Pro 2.2.2 - 'index.php' SQL Injection
|
11 |
WEB
|
ajann
|
|
2006-10-29
|
|
MySource CMS 2.16.2 - 'init_mysource.php' Remote File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-10-29
|
|
Simple Website Software 0.99 - 'common.php' File Inclusion
|
10 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
Free File Hosting 1.1 - 'forgot_pass.php' File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-10-28
|
|
Free Image Hosting 1.0 - 'forgot_pass.php' File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-10-28
|
|
MiraksGalerie 2.62 - 'pcltar.lib.php' Remote File Inclusion
|
10 |
WEB
|
ajann
|
|
2006-10-28
|
|
Electronic Engineering Tool (EE TOOL) 0.4.1 - Remote File Inclusion
|
10 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
mp3SDS 3.0 - '/Core/core.inc.php' Remote File Inclusion
|
11 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
FreePBX 2.1.3 - 'upgrade.php' Remote File Inclusion
|
12 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
PHPMyDesk 1.0 Beta - 'viewticket.php' Local File Inclusion
|
10 |
WEB
|
Kw3[R]Ln
|
|
2006-10-28
|
|
PhpShop Core 0.9.0 RC1 - 'PS_BASE' File Inclusion
|
10 |
WEB
|
Cold Zero
|
|
2006-10-27
|
|
Hosting Controller 6.1 Hotfix 3.2 - Access
|
10 |
WEB
|
Soroush Dalili
|
|
2006-10-27
|
|
PHP League 0.82 - 'classement.php' SQL Injection
|
12 |
WEB
|
ajann
|
|
2006-10-27
|
|
Coppermine Photo Gallery 1.4.9 - SQL Injection
|
10 |
WEB
|
w4ck1ng
|
|
2006-10-27
|
|
N/X WCMS 4.1 - 'nxheader.inc.php' Remote File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-10-27
|
|
Light Blog Remote - Multiple Vulnerabilities
|
11 |
WEB
|
BlackHawk
|
|
2006-10-26
|
|
MiniBill 20061010 - 'menu_builder.php' File Inclusion
|
12 |
WEB
|
Mehmet Ince
|
|
2006-10-26
|
|
MiniBB 2.0.2 - 'bb_func_txt.php' Remote File Inclusion
|
10 |
WEB
|
Kacper
|
|
2006-10-26
|
|
ask_rave 0.9 PR - 'end.php?footfile' Remote File Inclusion
|
12 |
WEB
|
v1per-haCker
|
|
2006-10-26
|
|
MPCS 1.0 - 'path' Remote File Inclusion
|
10 |
WEB
|
v1per-haCker
|
|
2006-10-25
|
|
PHP League 0.81 - 'config.php' Remote File Inclusion
|
10 |
WEB
|
ajann
|
|
2006-10-25
|
|
CommentIT - 'PathToComment' Remote File Inclusion
|
12 |
WEB
|
Cold Zero
|
|
2006-10-25
|
|
Imageview 5 - '/Cookie/index.php' Local/Remote File Inclusion
|
11 |
WEB
|
Kacper
|
|
2006-10-25
|
|
TextPattern 1.19 - 'publish.php' Remote File Inclusion
|
13 |
WEB
|
Bithedz
|
|
2006-10-25
|
|
ArticleBeach Script 2.0 - 'index.php' Remote File Inclusion
|
11 |
WEB
|
Bithedz
|
|
2006-10-25
|
|
Discuz! 5.0.0 GBK - SQL Injection / Admin Credentials Disclosure
|
11 |
WEB
|
rgod
|
|
2006-10-24
|
|
JaxUltraBB 2.0 - Command Execution
|
12 |
WEB
|
BlackHawk
|
|
2006-10-24
|
|
Berty Forum 1.4 - 'index.php' Blind SQL Injection
|
14 |
WEB
|
ajann
|
|
2006-10-24
|
|
UeberProject 1.0 - '/login/secure.php' Remote File Inclusion
|
12 |
WEB
|
Mehmet Ince
|
|
2006-10-24
|
|
CMS Faethon 2.0 - 'mainpath' Remote File Inclusion
|
11 |
WEB
|
r0ut3r
|
|
2006-10-24
|
|
Ascended Guestbook 1.0.0 - 'embedded.php' File Inclusion
|
13 |
WEB
|
Kacper
|
|
2006-10-24
|
|
InteliEditor 1.2.x - 'lib.editor.inc.php' Remote File Inclusion
|
11 |
WEB
|
Mehmet Ince
|
|
2006-10-23
|
|
JumbaCMS 0.0.1 - '/includes/functions.php' Remote File Inclusion
|
10 |
WEB
|
Kw3[R]Ln
|
|
2006-10-23
|
|
Jaws 0.5.2 - '/include/JawsDB.php' Remote File Inclusion
|
11 |
WEB
|
Drago84
|
|
2006-10-23
|
|
MDweb 1.3 - 'chemin_appli' Remote File Inclusion
|
9 |
WEB
|
Drago84
|
|
2006-10-23
|
|
WiClear 0.10 - 'path' Remote File Inclusion
|
10 |
WEB
|
the master
|
|
2006-10-23
|
|
SourceForge 1.0.4 - 'database.php' Remote File Inclusion
|
10 |
WEB
|
Kw3[R]Ln
|
|
2006-10-23
|
|
OTSCMS 2.1.3 - Multiple Remote File Inclusions
|
10 |
WEB
|
GregStar
|
|
2006-10-23
|
|
Fully Modded phpBB 2021.4.40 - Multiple File Inclusions
|
10 |
WEB
|
020
|
|
2006-10-22
|
|
EZ-Ticket 0.0.1 - 'common.php' Remote File Inclusion
|
9 |
WEB
|
the master
|
|
2006-10-22
|
|
PHP-Nuke 7.9 - 'Encyclopedia' SQL Injection
|
10 |
WEB
|
Paisterist
|
|
2006-10-22
|
|
JaxUltraBB 2.0 - 'delete.php' Remote Auto Deface
|
10 |
WEB
|
Kacper
|
|
2006-10-22
|
|
SpeedBerg 1.2beta1 - 'SPEEDBERG_PATH' File Inclusion
|
10 |
WEB
|
k1tk4t
|
