|
2006-09-21
|
|
Wili-CMS 0.1.1 - Remote File Inclusion / Cross-Site Scripting / Full Path Disclosure
|
4 |
WEB
|
HACKERS PAL
|
|
2006-09-21
|
|
SolidState 0.4 - Multiple Remote File Inclusions
|
4 |
WEB
|
Kacper
|
|
2006-09-21
|
|
ProgSys 0.156 - 'RR.php' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-09-21
|
|
phpQuestionnaire 3.12 - 'phpQRootDir' Remote File Inclusion
|
4 |
WEB
|
Solpot
|
|
2006-09-21
|
|
PHPartenaire 1.0 - 'dix.php3' Remote File Inclusion
|
4 |
WEB
|
DaDIsS
|
|
2006-09-21
|
|
pNews 1.1.0 - 'nbs' Remote File Inclusion
|
4 |
WEB
|
CvIr.System
|
|
2006-09-21
|
|
exV2 < 2.0.4.3 - 'sort' SQL Injection
|
4 |
WEB
|
rgod
|
|
2006-09-20
|
|
AllMyGuests 0.4.1 - 'cfg_serverpath' Remote File Inclusion
|
4 |
WEB
|
Br@Him
|
|
2006-09-20
|
|
PHP Blue Dragon CMS 2.9.1 - Cross-Site Scripting / SQL Injection Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-09-19
|
|
BCWB 0.99 - 'ROOT_PATH' Remote File Inclusion
|
3 |
WEB
|
ajann
|
|
2006-09-19
|
|
Digital WebShop 1.128 - Multiple Remote File Inclusions
|
4 |
WEB
|
ajann
|
|
2006-09-19
|
|
MyReview 1.9.4 - 'email' SQL Injection / Code Execution
|
4 |
WEB
|
STILPU
|
|
2006-09-19
|
|
Simple Discussion Board 0.1.0 - Remote File Inclusion
|
4 |
WEB
|
CeNGiZ-HaN
|
|
2006-09-19
|
|
Tekman Portal 1.0 - 'tr' SQL Injection
|
3 |
WEB
|
Fix TR
|
|
2006-09-19
|
|
more.groupware 0.74 - 'new_calendarid' SQL Injection
|
3 |
WEB
|
x128
|
|
2006-09-19
|
|
Pie Cart Pro - 'Inc_Dir' Remote File Inclusion
|
3 |
WEB
|
SnIpEr_SA
|
|
2006-09-19
|
|
Pie Cart Pro - 'Home_Path' Remote File Inclusion
|
2 |
WEB
|
Saudi Hackrz
|
|
2006-09-19
|
|
Exponent CMS 0.96.3 - 'view' Remote Command Execution
|
3 |
WEB
|
rgod
|
|
2006-09-18
|
|
PNPHPBB2 < 1.2g - 'phpbb_root_path' Remote File Inclusion
|
3 |
WEB
|
AzzCoder
|
|
2006-09-18
|
|
Alstrasoft e-Friends 4.85 - Remote Command Execution
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-09-17
|
|
CMtextS 1.0 - '/users_logins/admin.txt' Credentials Disclosure
|
3 |
WEB
|
Kacper
|
|
2006-09-17
|
|
Charon Cart 3.0 - 'Review.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-09-17
|
|
Techno Dreams Articles & Papers 2.0 - SQL Injection
|
4 |
WEB
|
ajann
|
|
2006-09-17
|
|
Techno Dreams FAQ Manager 1.0 - SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-09-17
|
|
Q-Shop 3.5 - 'browse.asp' SQL Injection
|
3 |
WEB
|
ajann
|
|
2006-09-17
|
|
MobilePublisherPHP 1.5 RC2 - Remote File Inclusion
|
4 |
WEB
|
Timq
|
|
2006-09-17
|
|
Zix Forum 1.12 - 'RepId' SQL Injection (2)
|
3 |
WEB
|
SlimTim10
|
|
2006-09-16
|
|
guanxiCRM Business Solution 0.9.1 - Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-16
|
|
UNAK-CMS 1.5 - 'dirroot' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-16
|
|
Mambo Component com_registration_detailed 4.1 - Remote File Inclusion
|
3 |
WEB
|
k1tk4t
|
|
2006-09-16
|
|
GNUTURK 2G - 't_id' SQL Injection
|
3 |
WEB
|
p2y
|
|
2006-09-16
|
|
aeDating 4.1 - dir[inc] Remote File Inclusion
|
3 |
WEB
|
NeXtMaN
|
|
2006-09-16
|
|
phpQuiz 0.1.2 - SQL Injection / Code Execution
|
3 |
WEB
|
simo64
|
|
2006-09-15
|
|
Coppermine Photo Gallery 1.2.2b (Nuke Addon) - Remote File Inclusion
|
3 |
WEB
|
3l3ctric-Cracker
|
|
2006-09-15
|
|
Site@School 2.4.02 - Arbitrary File Upload
|
3 |
WEB
|
simo64
|
|
2006-09-15
|
|
PHP DocWriter 0.3 - 'script' Remote File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-09-15
|
|
BolinOS 4.5.5 - 'gBRootPath' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-09-15
|
|
Haberx 1.02 < 1.1 - 'tr' SQL Injection
|
2 |
WEB
|
Fix TR
|
|
2006-09-15
|
|
Limbo CMS 1.0.4.2L - 'com_contact' Remote Code Execution
|
3 |
WEB
|
rgod
|
|
2006-09-15
|
|
PhotoPost 4.6 - 'PP_PATH' Remote File Inclusion
|
3 |
WEB
|
Saudi Hackrz
|
|
2006-09-14
|
|
TeamCal Pro 2.8.001 - 'app_root' Remote File Inclusion
|
4 |
WEB
|
PSYCH@
|
|
2006-09-14
|
|
Mambo Component com_serverstat 0.4.4 - Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-09-14
|
|
phpQuiz 0.1 - 'pagename' Remote File Inclusion
|
3 |
WEB
|
Solpot
|
|
2006-09-13
|
|
Newsscript 0.5 - Local/Remote File Inclusion
|
3 |
WEB
|
Daftrix Security
|
|
2006-09-13
|
|
KnowledgeBuilder 2.2 - 'visEdit_root' Remote File Inclusion
|
3 |
WEB
|
igi
|
|
2006-09-13
|
|
Magic News Pro 1.0.3 - 'script_path' Remote File Inclusion
|
4 |
WEB
|
Saudi Hackrz
|
|
2006-09-13
|
|
TualBLOG 1.0 - 'icerikno' SQL Injection
|
4 |
WEB
|
RMx
|
|
2006-09-13
|
|
Shadowed Portal 5.599 - 'root' Remote File Inclusion
|
3 |
WEB
|
mad_hacker
|
|
2006-09-13
|
|
Downstat 1.8 - 'art' Remote File Inclusion
|
4 |
WEB
|
SilenZ
|
|
2006-09-13
|
|
phpunity.postcard - 'gallery_path' Remote File Inclusion
|
3 |
WEB
|
Rivertam
|
|
2006-09-13
|
|
Quicksilver Forums 1.2.1 - Remote File Inclusion
|
4 |
WEB
|
mdx
|
|
2006-09-12
|
|
Telekorn Signkorn Guestbook 1.3 - 'dir_path' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-12
|
|
Vitrax Pre-modded 1.0.6-r3 - Remote File Inclusion
|
3 |
WEB
|
CeNGiZ-HaN
|
|
2006-09-12
|
|
webSPELL 4.01.01 - Database Backup Download
|
3 |
WEB
|
Trex
|
|
2006-09-12
|
|
Popper 1.41-r2 - 'form' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-12
|
|
p4CMS 1.05 - 'abs_pfad' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-12
|
|
phpBB XS 0.58 - 'functions.php' Remote File Inclusion
|
3 |
WEB
|
AzzCoder
|
|
2006-09-11
|
|
phpBB 2.0.21 - Poison Null Byte Remote File Upload
|
3 |
WEB
|
ShAnKaR
|
|
2006-09-11
|
|
PhpLinkExchange 1.0 - Include / Cross-Site Scripting
|
3 |
WEB
|
s3rv3r_hack3r
|
|
2006-09-11
|
|
WTools 0.0.1a - 'INCLUDE_PATH' Remote File Inclusion
|
3 |
WEB
|
ddoshomo
|
|
2006-09-11
|
|
OPENi-CMS 1.0.1beta - 'config' Remote File Inclusion
|
2 |
WEB
|
basher13
|
|
2006-09-11
|
|
MiniPort@l 0.1.5 Beta - 'skiny' Remote File Inclusion
|
3 |
WEB
|
Kacper
|
|
2006-09-10
|
|
mcGalleryPRO 2006 - 'path_to_folder' Remote File Inclusion
|
3 |
WEB
|
Solpot
|
|
2006-09-10
|
|
Open Bulletin Board 1.0.8 - 'ROOT_PATH' File Inclusion
|
4 |
WEB
|
Eddy_BAck0o
|
|
2006-09-10
|
|
PUMA 1.0 RC 2 - 'config.php' Remote File Inclusion
|
4 |
WEB
|
Philipp Niedziela
|
|
2006-09-09
|
|
Vivvo Article Manager 3.2 - 'classified_path' File Inclusion
|
4 |
WEB
|
MercilessTurk
|
|
2006-09-09
|
|
Vivvo Article Manager 3.2 - 'id' SQL Injection
|
4 |
WEB
|
MercilessTurk
|
|
2006-09-09
|
|
Socketwiz BookMarks 2.0 - 'root_dir' Remote File Inclusion
|
5 |
WEB
|
Kacper
|
|
2006-09-08
|
|
MyABraCaDaWeb 1.0.3 - 'base' Remote File Inclusion
|
4 |
WEB
|
ddoshomo
|
|
2006-09-08
|
|
CCleague Pro 1.0.1RC1 - 'cookie' Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-09-08
|
|
Somery 0.4.6 - 'skin_dir' Remote File Inclusion
|
5 |
WEB
|
basher13
|
|
2006-09-07
|
|
PhotoKorn Gallery 1.52 - 'dir_path' Remote File Inclusion
|
4 |
WEB
|
Saudi Hackrz
|
|
2006-09-07
|
|
WM-News 0.5 - Multiple Remote File Inclusions
|
3 |
WEB
|
ddoshomo
|
|
2006-09-07
|
|
News Evolution 3.0.3 - _NE[AbsPath] Remote File Inclusion
|
3 |
WEB
|
ddoshomo
|
|
2006-09-07
|
|
ACGV News 0.9.1 - 'header.php' Remote File Inclusion
|
3 |
WEB
|
ddoshomo
|
|
2006-09-07
|
|
PhpNews 1.0 - 'Include' Remote File Inclusion
|
3 |
WEB
|
the master
|
|
2006-09-07
|
|
DokuWiki 2006-03-09b - 'dwpage.php' System Disclosure
|
3 |
WEB
|
rgod
|
|
2006-09-07
|
|
DokuWiki 2006-03-09b - 'dwpage.php' Remote Code Execution
|
3 |
WEB
|
rgod
|
|
2006-09-07
|
|
Fire Soft Board RC 3 - 'racine' Remote File Inclusion
|
3 |
WEB
|
ddoshomo
|
|
2006-09-07
|
|
Web Server Creator 0.1 - 'l' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-09-07
|
|
SL_Site 1.0 - 'spaw_root' Remote File Inclusion
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-09-07
|
|
PayProCart 1146078425 - Multiple Remote File Inclusions
|
3 |
WEB
|
momo26
|
|
2006-09-06
|
|
Akarru 0.4.3.34 - 'bm_content' Remote File Inclusion
|
3 |
WEB
|
ddoshomo
|
|
2006-09-06
|
|
Beautifier 0.1 - 'Core.php' Remote File Inclusion
|
3 |
WEB
|
the master
|
|
2006-09-06
|
|
phpFullAnnu 5.1 - 'repmod' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-06
|
|
BinGo News 3.01 - 'bnrep' Remote File Inclusion
|
2 |
WEB
|
SHiKaA
|
|
2006-09-06
|
|
phpBB Shadow Premod 2.7.1 - Remote File Inclusion
|
3 |
WEB
|
Kw3[R]Ln
|
|
2006-09-05
|
|
PhpCommander 3.0 - 'upload' Remote Code Execution
|
3 |
WEB
|
Kacper
|
|
2006-09-05
|
|
Sponge News 2.2 - 'sndir' Remote File Inclusion
|
2 |
WEB
|
SHiKaA
|
|
2006-09-05
|
|
C-News 1.0.1 - 'path' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-05
|
|
ACGV News 0.9.1 - 'article.php' Remote File Inclusion
|
4 |
WEB
|
SHiKaA
|
|
2006-09-05
|
|
Zix Forum 1.12 - 'RepId' SQL Injection (1)
|
4 |
WEB
|
Chironex Fleckeri
|
|
2006-09-05
|
|
AnnonceV News Script 1.1 - 'page' Remote File Inclusion
|
4 |
WEB
|
Kurdish Security
|
|
2006-09-05
|
|
GrapAgenda 0.1 - 'page' Remote File Inclusion
|
4 |
WEB
|
Kurdish Security
|
|
2006-09-05
|
|
MySpeach 3.0.2 - 'my_ms[root]' Remote File Inclusion
|
5 |
WEB
|
SHiKaA
|
|
2006-09-04
|
|
SoftBB 0.1 - 'cmd' Remote Command Execution
|
4 |
WEB
|
DarkFig
|
|
2006-09-04
|
|
PHP Proxima 6 - completepack Remote Code Execution
|
4 |
WEB
|
Kacper
|
|
2006-09-04
|
|
pHNews alpha 1 - 'templates_dir' Remote Code Execution
|
5 |
WEB
|
Kacper
|
|
2006-09-04
|
|
TR Forum 2.0 - SQL Injection / Bypass Security Restriction
|
3 |
WEB
|
DarkFig
|
|
2006-09-04
|
|
SimpleBlog 2.3 - 'id' SQL Injection
|
3 |
WEB
|
Vipsta/MurderSkillz
|
|
2006-09-04
|
|
In-link 2.3.4 - 'ADODB_DIR' Remote File Inclusion
|
3 |
WEB
|
Saudi Hackrz
|
|
2006-09-03
|
|
Muratsoft Haber Portal 3.6 - 'tr' SQL Injection
|
3 |
WEB
|
ASIANEAGLE
|
|
2006-09-04
|
|
FlashChat 4.5.7 - 'aedating4CMS.php' Remote File Inclusion
|
4 |
WEB
|
NeXtMaN
|
|
2006-09-03
|
|
Yappa-ng 2.3.1 - 'admin_modules' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-03
|
|
PmWiki 2.1.19 - 'Zend_Hash_Del_Key_Or_Index' Remote Command Execution
|
3 |
WEB
|
rgod
|
|
2006-09-02
|
|
Dyncms Release 6 - 'x_admindir' Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-09-02
|
|
Annuaire 1Two 2.2 - SQL Injection
|
5 |
WEB
|
DarkFig
|
|
2006-09-02
|
|
TikiWiki 1.9 Sirius - 'jhot.php' Remote Command Execution
|
4 |
WEB
|
rgod
|
|
2006-09-01
|
|
icblogger 2.0 - 'YID' SQL Injection
|
4 |
WEB
|
Chironex Fleckeri
|
|
2006-09-01
|
|
MyBace Light - 'login_check.php' Remote File
|
4 |
WEB
|
Philipp Niedziela
|
|
2006-08-31
|
|
YACS CMS 6.6.1 - context[path_to_root] Remote File Inclusion
|
4 |
WEB
|
MATASANOS
|
|
2006-08-31
|
|
Pheap CMS 1.1 - 'lpref' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-08-30
|
|
Lanifex DMO 2.3b - '_incMgr' Remote File Inclusion
|
4 |
WEB
|
Kacper
|
|
2006-08-30
|
|
phpAtm 1.21 - 'include_location' Remote File Inclusion
|
4 |
WEB
|
KinSize
|
|
2006-08-29
|
|
PHPECard 2.1.4 - 'functions.php' Remote File Inclusion
|
3 |
WEB
|
LeAk
|
|
2006-08-29
|
|
ExBB Italiano 0.2 - exbb[home_path] Remote File Inclusion
|
3 |
WEB
|
SHiKaA
|
|
2006-08-29
|
|
MiniBill 1.22b - config[plugin_dir] Remote File Inclusion
|
3 |
WEB
|
the master
|
|
2006-08-29
|
|
PortailPHP mod_phpalbum 2.1.5 - 'chemin' Remote File Inclusion
|
3 |
WEB
|
Mehmet Ince
|
|
2006-08-29
|
|
phpGroupWare 0.9.16.010 - 'GLOBALS[]' Remote Code Execution
|
3 |
WEB
|
Kacper
|
|
2006-08-28
|
|
Web3news 0.95 - 'PHPSECURITYADMIN_PATH' Remote File Inclusion
|
4 |
WEB
|
SHiKaA
|
|
2006-08-28
|
|
e107 < 0.75 - GLOBALS Overwrite Remote Code Execution
|
4 |
WEB
|
rgod
|
|
2006-08-28
|
|
Cybuzu Garoon 2.1.0 - Multiple SQL Injections
|
4 |
WEB
|
Tan Chew Keong
|
|
2006-08-28
|
|
Cybozu Products - 'id' Arbitrary File Retrieval
|
5 |
WEB
|
Tan Chew Keong
|
|
2006-08-27
|
|
Ay System CMS 2.6 - 'main.php' Remote File Inclusion
|
4 |
WEB
|
SHiKaA
|
|
2006-08-27
|
|
CMS Frogss 0.4 - 'podpis' SQL Injection
|
4 |
WEB
|
Kacper
|
