|
2006-11-06
|
|
OpenEMR 2.8.1 - 'srcdir' Multiple Remote File Inclusions
|
4 |
WEB
|
the_day
|
|
2006-11-06
|
|
Agora 1.4 RC1 - 'MysqlfinderAdmin.php' Remote File Inclusion
|
4 |
WEB
|
the_day
|
|
2006-11-06
|
|
Cyberfolio 2.0 RC1 - 'av' Remote File Inclusion
|
3 |
WEB
|
the_day
|
|
2006-11-06
|
|
Soholaunch Pro 4.9 r36 - Remote File Inclusion
|
2 |
WEB
|
the_day
|
|
2006-11-05
|
|
Webdrivers Simple Forum - 'message_details.php' SQL Injection
|
3 |
WEB
|
Bl0od3r
|
|
2006-11-05
|
|
Ultimate PHP Board 2.0 - 'header_simple.php' File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-11-05
|
|
PHP Classifieds 7.1 - 'detail.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-11-05
|
|
Quick.CMS.Lite 0.3 - Cookie sLanguage Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-04
|
|
SazCart 1.5 - 'cart.php' Remote File Inclusion
|
4 |
WEB
|
IbnuSina
|
|
2006-11-04
|
|
phpDynaSite 3.2.2 - 'racine' Remote File Inclusion
|
4 |
WEB
|
DeltahackingTEAM
|
|
2006-11-04
|
|
PHPKIT 1.6.1R2 - 'search_user' SQL Injection
|
4 |
WEB
|
x23
|
|
2006-11-04
|
|
Drake CMS < 0.2.3 ALPHA rev.916 - Remote File Inclusion
|
3 |
WEB
|
GregStar
|
|
2006-11-04
|
|
MDPro 1.0.76 - 'Cookie PNSVlang' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-04
|
|
e107 < 0.75 - 'e107language_e107cookie' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-04
|
|
Ariadne 2.4 - store_config[code] Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2006-11-03
|
|
Creasito E-Commerce Content Manager - 'admin' Authentication Bypass
|
4 |
WEB
|
SlimTim10
|
|
2006-11-03
|
|
PostNuke 0.763 - 'PNSV lang' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-11-03
|
|
MODx CMS 0.9.2.1 - 'FCKeditor' Remote File Inclusion
|
4 |
WEB
|
nuffsaid
|
|
2006-11-02
|
|
FreeWebShop.org script 2.2.2 - Multiple Vulnerabilities
|
3 |
WEB
|
Spiked
|
|
2006-11-02
|
|
Article System 0.6 - 'volume.php' Remote File Inclusion
|
4 |
WEB
|
GregStar
|
|
2006-11-02
|
|
Lithium CMS 4.04c - '/classes/index.php' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-11-01
|
|
TikiWiki 1.9.5 Sirius - 'sort_mode' Information Disclosure
|
4 |
WEB
|
securfrog
|
|
2006-11-01
|
|
2BGal 3.0 - '/admin/configuration.inc.php' Local File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-11-01
|
|
Innovate Portal 2.0 - 'acp.php' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-11-01
|
|
Invision Power Board 2.1.7 - 'Debug' Remote Password Change
|
4 |
WEB
|
Rapigator
|
|
2006-10-31
|
|
T.G.S. CMS 0.1.7 - 'logout.php' SQL Injection
|
4 |
WEB
|
Kacper
|
|
2006-10-31
|
|
PwsPHP 1.1 - '/themes/fin.php' Remote File Inclusion
|
4 |
WEB
|
3l3ctric-Cracker
|
|
2006-10-31
|
|
GEPI 1.4.0 - '/gestion/savebackup.php' Remote File Inclusion
|
4 |
WEB
|
Sumit Siddharth
|
|
2006-10-31
|
|
P-Book 1.17 - 'pb_lang' Remote File Inclusion
|
4 |
WEB
|
Matdhule
|
|
2006-10-30
|
|
phpProfiles 2.1 Beta - Multiple Remote File Inclusions
|
3 |
WEB
|
v1per-haCker
|
|
2006-10-30
|
|
E Annu 1.0 - Authentication Bypass / SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-10-30
|
|
phpBB Spider Friendly Module 1.3.10 - Remote File Inclusion
|
5 |
WEB
|
Kacper
|
|
2006-10-30
|
|
Nitrotech 0.0.3a - Remote Code Execution
|
5 |
WEB
|
Kacper
|
|
2006-10-30
|
|
Techno Dreams Guestbook 1.0 - 'key' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-10-30
|
|
Techno Dreams Announcement - 'key' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-10-30
|
|
QnECMS 2.5.6 - 'adminfolderpath' Remote File Inclusion
|
4 |
WEB
|
K-159
|
|
2006-10-29
|
|
PHPMyRing 4.2.1 - 'cherche.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-10-29
|
|
Faq Administrator 2.1 - 'faq_reply.php' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2006-10-29
|
|
Netref 4 - 'cat_for_aff.php' Source Code Disclosure
|
4 |
WEB
|
ajann
|
|
2006-10-29
|
|
PHPEasyData Pro 2.2.2 - 'index.php' SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-10-29
|
|
MySource CMS 2.16.2 - 'init_mysource.php' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-29
|
|
Simple Website Software 0.99 - 'common.php' File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
Free File Hosting 1.1 - 'forgot_pass.php' File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-28
|
|
Free Image Hosting 1.0 - 'forgot_pass.php' File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-28
|
|
MiraksGalerie 2.62 - 'pcltar.lib.php' Remote File Inclusion
|
3 |
WEB
|
ajann
|
|
2006-10-28
|
|
Electronic Engineering Tool (EE TOOL) 0.4.1 - Remote File Inclusion
|
2 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
mp3SDS 3.0 - '/Core/core.inc.php' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
FreePBX 2.1.3 - 'upgrade.php' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-28
|
|
PHPMyDesk 1.0 Beta - 'viewticket.php' Local File Inclusion
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-10-28
|
|
PhpShop Core 0.9.0 RC1 - 'PS_BASE' File Inclusion
|
3 |
WEB
|
Cold Zero
|
|
2006-10-27
|
|
Hosting Controller 6.1 Hotfix 3.2 - Access
|
3 |
WEB
|
Soroush Dalili
|
|
2006-10-27
|
|
PHP League 0.82 - 'classement.php' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-10-27
|
|
Coppermine Photo Gallery 1.4.9 - SQL Injection
|
3 |
WEB
|
w4ck1ng
|
|
2006-10-27
|
|
N/X WCMS 4.1 - 'nxheader.inc.php' Remote File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-10-27
|
|
Light Blog Remote - Multiple Vulnerabilities
|
4 |
WEB
|
BlackHawk
|
|
2006-10-26
|
|
MiniBill 20061010 - 'menu_builder.php' File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-26
|
|
MiniBB 2.0.2 - 'bb_func_txt.php' Remote File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-10-26
|
|
ask_rave 0.9 PR - 'end.php?footfile' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2006-10-26
|
|
MPCS 1.0 - 'path' Remote File Inclusion
|
4 |
WEB
|
v1per-haCker
|
|
2006-10-25
|
|
PHP League 0.81 - 'config.php' Remote File Inclusion
|
4 |
WEB
|
ajann
|
|
2006-10-25
|
|
CommentIT - 'PathToComment' Remote File Inclusion
|
4 |
WEB
|
Cold Zero
|
|
2006-10-25
|
|
Imageview 5 - '/Cookie/index.php' Local/Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-25
|
|
TextPattern 1.19 - 'publish.php' Remote File Inclusion
|
4 |
WEB
|
Bithedz
|
|
2006-10-25
|
|
ArticleBeach Script 2.0 - 'index.php' Remote File Inclusion
|
3 |
WEB
|
Bithedz
|
|
2006-10-25
|
|
Discuz! 5.0.0 GBK - SQL Injection / Admin Credentials Disclosure
|
4 |
WEB
|
rgod
|
|
2006-10-24
|
|
JaxUltraBB 2.0 - Command Execution
|
4 |
WEB
|
BlackHawk
|
|
2006-10-24
|
|
Berty Forum 1.4 - 'index.php' Blind SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-10-24
|
|
UeberProject 1.0 - '/login/secure.php' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2006-10-24
|
|
CMS Faethon 2.0 - 'mainpath' Remote File Inclusion
|
4 |
WEB
|
r0ut3r
|
|
2006-10-24
|
|
Ascended Guestbook 1.0.0 - 'embedded.php' File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-24
|
|
InteliEditor 1.2.x - 'lib.editor.inc.php' Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2006-10-23
|
|
JumbaCMS 0.0.1 - '/includes/functions.php' Remote File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-10-23
|
|
Jaws 0.5.2 - '/include/JawsDB.php' Remote File Inclusion
|
4 |
WEB
|
Drago84
|
|
2006-10-23
|
|
MDweb 1.3 - 'chemin_appli' Remote File Inclusion
|
3 |
WEB
|
Drago84
|
|
2006-10-23
|
|
WiClear 0.10 - 'path' Remote File Inclusion
|
4 |
WEB
|
the master
|
|
2006-10-23
|
|
SourceForge 1.0.4 - 'database.php' Remote File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-10-23
|
|
OTSCMS 2.1.3 - Multiple Remote File Inclusions
|
3 |
WEB
|
GregStar
|
|
2006-10-23
|
|
Fully Modded phpBB 2021.4.40 - Multiple File Inclusions
|
4 |
WEB
|
020
|
|
2006-10-22
|
|
EZ-Ticket 0.0.1 - 'common.php' Remote File Inclusion
|
3 |
WEB
|
the master
|
|
2006-10-22
|
|
PHP-Nuke 7.9 - 'Encyclopedia' SQL Injection
|
3 |
WEB
|
Paisterist
|
|
2006-10-22
|
|
JaxUltraBB 2.0 - 'delete.php' Remote Auto Deface
|
3 |
WEB
|
Kacper
|
|
2006-10-22
|
|
SpeedBerg 1.2beta1 - 'SPEEDBERG_PATH' File Inclusion
|
3 |
WEB
|
k1tk4t
|
|
2006-10-22
|
|
Net_DNS 0.3 - '/DNS/RR.php' Remote File Inclusion
|
3 |
WEB
|
Drago84
|
|
2006-10-22
|
|
Mambo Module MambWeather 1.8.1 - Remote File Inclusion
|
3 |
WEB
|
h4ntu
|
|
2006-10-22
|
|
PGOSD - '/misc/function.php3' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-21
|
|
Trawler Web CMS 1.8.1 - Multiple Remote File Inclusions
|
3 |
WEB
|
k1tk4t
|
|
2006-10-21
|
|
Open Meetings Filing Application - Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-21
|
|
Virtual Law Office - 'phpc_root_path' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-10-21
|
|
kawf 1.0 - 'main.php' Remote File Inclusion
|
3 |
WEB
|
o0xxdark0o
|
|
2006-10-21
|
|
CASTOR 1.1.1 - '/lib/rs.php' Remote File Inclusion
|
2 |
WEB
|
Kw3[R]Ln
|
|
2006-10-21
|
|
RSSonate - 'xml2rss.php' Remote File Inclusion
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-10-20
|
|
WGCC 0.5.6b - 'quiz.php' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-10-20
|
|
Lou Portail 1.4.1 - 'admin_module.php' Remote File Inclusion
|
3 |
WEB
|
MP
|
|
2006-10-19
|
|
Power Phlogger 2.0.9 - 'config.inc.php3' File Inclusion
|
3 |
WEB
|
x_w0x
|
|
2006-10-19
|
|
Segue CMS 1.5.8 - 'themesdir' Remote File Inclusion
|
4 |
WEB
|
nuffsaid
|
|
2006-10-19
|
|
pandaBB - 'displayCategory' Remote File Inclusion
|
5 |
WEB
|
nukedclx
|
|
2006-10-19
|
|
PH Pexplorer 0.24 - 'explorer_load_lang.php' Local File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-19
|
|
EPNadmin 0.7 - 'constantes.inc.php' Remote File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-10-18
|
|
LoCal Calendar 1.1 - 'lcUser.php' Remote File Inclusion
|
4 |
WEB
|
o0xxdark0o
|
|
2006-10-18
|
|
YapBB 1.2 Beta2 - 'yapbb_session.php' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-10-18
|
|
PHP-Post 1.01 - 'template' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-10-18
|
|
Active Bulletin Board 1.1b2 - Remote User Pass Change
|
3 |
WEB
|
ajann
|
|
2006-10-18
|
|
PHP AMX 0.90 - '/plugins/main.php' Remote File Inclusion
|
4 |
WEB
|
MP
|
|
2006-10-18
|
|
PHPPowerCards 2.10 - 'txt.inc.php' Remote Code Execution
|
4 |
WEB
|
nuffsaid
|
|
2006-10-17
|
|
Brim 1.2.1 - 'renderer' Multiple Remote File Inclusions
|
4 |
WEB
|
mdx
|
|
2006-10-17
|
|
Easynews 4.4.1 - 'admin.php' Authentication Bypass
|
4 |
WEB
|
nuffsaid
|
|
2006-10-17
|
|
PHPmybibli 3.0.1 - Multiple Remote File Inclusions
|
4 |
WEB
|
the_day
|
|
2006-10-17
|
|
PHPRecipeBook 2.35 - 'g_rb_basedir' Remote File Inclusion
|
4 |
WEB
|
r0ut3r
|
|
2006-10-17
|
|
WSN Forum 1.3.4 - 'prestart.php' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-10-17
|
|
ALiCE-CMS 0.1 - 'CONFIG[local_root]' Remote File Inclusion
|
4 |
WEB
|
nuffsaid
|
|
2006-10-16
|
|
WoltLab Burning Book 1.1.2 - SQL Injection
|
4 |
WEB
|
ShAnKaR
|
|
2006-10-16
|
|
PHPMyManga 0.8.1 - 'template.php' Multiple File Inclusions
|
4 |
WEB
|
nuffsaid
|
|
2006-10-16
|
|
P-News 1.16 - Remote File Inclusion
|
4 |
WEB
|
vegas78
|
|
2006-10-16
|
|
Specimen Image Database - 'client.php' Remote File Inclusion
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-10-16
|
|
Boonex Dolphin 5.2 - 'index.php' Remote Code Execution
|
3 |
WEB
|
w4ck1ng
|
|
2006-10-16
|
|
Simplog 0.9.3.1 - 'comments.php' SQL Injection
|
5 |
WEB
|
w4ck1ng
|
|
2006-10-16
|
|
Comdev One Admin 4.1 - 'Adminfoot.php' Remote Code Execution
|
4 |
WEB
|
w4ck1ng
|
|
2006-10-16
|
|
Osprey 1.0 - 'GetRecord.php' Remote File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-10-16
|
|
OpenDock FullCore 4.4 - Remote File Inclusion
|
4 |
WEB
|
Matdhule
|
|
2006-10-15
|
|
webSPELL 4.01.01 - 'getsquad' SQL Injection
|
4 |
WEB
|
Kiba
|
|
2006-10-15
|
|
Def-Blog 1.0.3 - 'comadd.php' SQL Injection
|
4 |
WEB
|
SHiKaA
|
|
2006-10-15
|
|
DigitalHive 2.0 RC2 - 'base_include.php' Remote File Inclusion
|
4 |
WEB
|
SHiKaA
|
|
2006-10-15
|
|
phpBBFM 206-3-3 - 'phpbb_root_path' Remote File Inclusion
|
4 |
WEB
|
Kamalian
|
|
2006-10-15
|
|
phpBurningPortal 1.0.1 - 'lang_path' Remote File Inclusion
|
4 |
WEB
|
r0ut3r
|
|
2006-10-15
|
|
AROUNDMe 0.5.2 - 'templatePath' Remote File Inclusion
|
4 |
WEB
|
Kw3[R]Ln
|
