|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
86 |
WEB
|
Don
|
|
2011-12-09
|
|
SantriaCMS SQL Injection Vulnerability
|
107 |
WEB
|
Troy
|
|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
94 |
WEB
|
Don
|
|
2011-12-08
|
|
SourceBans <= 1.4.8 SQL/LFI Injection
|
104 |
WEB
|
Havok
|
|
2011-12-08
|
|
SMF <= 2.0.1 SQL Injection, Privilege Escalation
|
110 |
WEB
|
The:Paradox
|
|
2011-12-08
|
|
Traq <= 2.3 Authentication Bypass / Remote Code Execution Exploit
|
91 |
WEB
|
EgiX
|
|
2011-12-08
|
|
phpBB MyPage Plugin SQL Injection
|
103 |
WEB
|
CrazyMouse
|
|
2011-12-08
|
|
Family Connections less.php Remote Command Execution
|
93 |
WEB
|
mr_me
|
|
2011-12-08
|
|
Php City Portal Script Software SQL Injection
|
127 |
WEB
|
Don
|
|
2011-12-07
|
|
AlstraSoft EPay Enterprise v4.0 Blind SQL Injection
|
193 |
WEB
|
Don
|
|
2011-12-07
|
|
PEC php calendars script SQL Injection
|
90 |
WEB
|
Mr.MLL
|
|
2011-12-07
|
|
Five Star Review Remote SQL Injection (recommend.php)
|
102 |
WEB
|
EthicalPractice
|
|
2011-12-07
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
84 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
Apache MyFaces information disclosure vulnerability
|
216 |
WEB
|
expku
|
|
2011-12-06
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
86 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
majalty (category.php) Blind SQL Injection Vulnerability
|
263 |
WEB
|
TH3.ONE
|
|
2011-12-05
|
|
Family Connections CMS v2.5.0-v2.7.1 (less.php) Remote Command Execution
|
89 |
WEB
|
mr_me
|
|
2011-12-05
|
|
WSN Classifieds v.6.2.12 and 6.2.18 Multiple Vulnerabilities
|
112 |
WEB
|
d3v1l
|
|
2011-12-05
|
|
Joomla Jobprofile Component (com_jobprofile) SQL Injection
|
99 |
WEB
|
kaMtiEz
|
|
2011-12-05
|
|
CLEVAR CMS Multiple Vulnerabilities
|
123 |
WEB
|
Mr.XHat
|
|
2011-12-05
|
|
Con-IMedia SQL inj: vulnerable
|
216 |
WEB
|
nGa Sa Lu
|
|
2011-12-02
|
|
Muster Render Farm Management System Arbitrary File Download
|
83 |
WEB
|
Nick Freeman
|
|
2011-12-01
|
|
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
|
198 |
WEB
|
EgiX
|
|
2011-11-29
|
|
Bypass the JQuery-Real-Person captcha plugin 0-day
|
132 |
WEB
|
Alberto_García_Illera
|
|
2011-11-28
|
|
Android 'content://' URI Multiple Information Disclosure Vulnerabilities
|
92 |
WEB
|
Thomas Cannon
|
|
2011-11-28
|
|
php video script SQL Injection Vulnerability
|
105 |
WEB
|
longrifle0x
|
|
2011-11-25
|
|
Zabbix <= 1.8.4 (popup.php) SQL Injection
|
92 |
WEB
|
Marcio Almeida
|
|
2011-11-25
|
|
LibLime Koha <= 4.2 Local File Inclusion Vulnerability
|
95 |
WEB
|
Akin Tosunlar
|
|
2011-11-25
|
|
Log1CMS 2.0 (ajax_create_folder.php) Remote Code Execution
|
141 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
|
90 |
WEB
|
EgiX
|
|
2011-11-25
|
|
A6-CMS(ACMS) 5.30 (ajax_create_folder.php) Remote Code Execution
|
147 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
icomex cms sql injection vulnerability
|
163 |
WEB
|
XaDaL
|
|
2011-11-23
|
|
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
|
98 |
WEB
|
Dante90
|
|
2011-11-18
|
|
Herberlin Bremsserver 3.0 Directory Traversal
|
67 |
WEB
|
AutoSec Tools
|
|
2011-11-17
|
|
SonicWALL Aventail SSL-VPN SQL Injection Vulnerability
|
100 |
WEB
|
Asheesh kumar
|
|
2011-11-17
|
|
FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution
|
67 |
WEB
|
EgiX
|
|
2011-11-16
|
|
QuiXplorer 2.3 <= Bugtraq File Upload Vulnerability
|
103 |
WEB
|
PCA
|
|
2011-11-15
|
|
Pixie CMS 1.01 - 1.04 Blind SQL Injections
|
94 |
WEB
|
Piranha
|
|
2011-11-15
|
|
WordPress AdRotate plugin <= 3.6.6 SQL Injection
|
104 |
WEB
|
Miroslav Stampar
|
|
2011-11-14
|
|
Tamweb CMS SQL Injection Vulnerability
|
170 |
WEB
|
Mr.XHat
|
|
2011-11-14
|
|
Wordpress Zingiri Plugin <= 2.2.3 (ajax_save_name.php) Remote Code Execution
|
91 |
WEB
|
EgiX
|
|
2011-11-14
|
|
CMS 4.x.x Zorder (SQL Injection Vul)
|
79 |
WEB
|
KraL BeNiM
|
|
2011-11-14
|
|
Support Incident Tracker <= 3.65 Remote Command Execution
|
95 |
WEB
|
juan vazquez
|
|
2011-11-10
|
|
LabWiki <= 1.1 Multiple Vulnerabilities
|
91 |
WEB
|
muuratsalo
|
|
2011-11-10
|
|
osCSS2 "_ID" parameter Local file inclusion
|
84 |
WEB
|
Stefan Schurtz
|
|
2011-11-10
|
|
ReadMore Systems, Incorporated (BQLi Injections)
|
108 |
WEB
|
KraL BeNiM
|
|
2011-11-10
|
|
Cover Vision Blind SQL Injection Vulnerbility
|
96 |
WEB
|
KraL BeNiM
|
|
2011-11-09
|
|
11in1 CMS v1.0.1 (do.php) CRLF Injection Vulnerability
|
100 |
WEB
|
LiquidWorm
|
|
2011-11-08
|
|
OrderSys <= 1.6.4 Sql Injection Vulnerabilities
|
83 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
LabStoRe <= 1.5.4 Sql Injection Vulnerabilities
|
83 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
WHMCS ( WHMCompleteSolution ) 3.x / 4.x Multiple Vulnerability
|
115 |
WEB
|
ZxH-Labs
|
|
2011-11-08
|
|
Readmore Systems Online Newspaper Publishing Sql Injection Vuln
|
80 |
WEB
|
4tt4ck3r
|
|
2011-11-07
|
|
Oracle NoSQL Directory Traversal
|
95 |
WEB
|
Charter
|
|
2011-11-07
|
|
OrderSys <= 1.6.4 SQL Injection
|
84 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
LabStoRe <= 1.5.4 SQL Injection
|
87 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
aidiCMS v3.55 (ajax_create_folder.php) Remote Code Execution
|
73 |
WEB
|
EgiX
|
|
2011-11-07
|
|
phpMyFAQ <= 2.7.0 (ajax_create_folder.php) Remote Code Execution
|
94 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Zenphoto <= 1.4.1.4 (ajax_create_folder.php) Remote Code Execution
|
102 |
WEB
|
EgiX
|
|
2011-11-07
|
|
WHMCS 3.x.x (clientarea.php) Local File Disclosure
|
111 |
WEB
|
red virus
|
|
2011-11-07
|
|
HP Data Protector Media Operations <= 6.20 Directory Traversal
|
71 |
WEB
|
Luigi Auriemma
|
|
2011-11-07
|
|
Advanced Poll 2.02 SQL Injection Vulnerability
|
95 |
WEB
|
Yassin Aboukir
|
|
2011-11-07
|
|
Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability
|
94 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Ajax File Manager File Upload Vulnerability
|
206 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wateen Isp wimax router login bypass
|
91 |
WEB
|
3xploits
|
|
2011-11-07
|
|
cmsmadesimple-1.8.2 File Upload Vulnerability
|
101 |
WEB
|
ITTIHACK
|
|
2011-11-07
|
|
LightNEasy 3.4.2 Multiple Vulnerabilities
|
93 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wordpress plugin FBConnect SQL-Inj
|
128 |
WEB
|
cyber-punk
|
|
2011-11-07
|
|
CaupoShop Pro (2.x/ <= 3.70) Local File Include Vulnerability
|
77 |
WEB
|
Rami Salama
|
|
2011-11-04
|
|
Web File Browser 0.4b14 File Download Vulnerability
|
115 |
WEB
|
Sangyun YOO
|
|
2011-11-04
|
|
Jara v1.6 Multiple Vulnerabilities
|
81 |
WEB
|
Or4nG.M4N
|
|
2011-11-04
|
|
CaupoShop Pro (2.x/ <= 3.70) Classic 3.01 Local File Include Vulnerability
|
86 |
WEB
|
Rami Salama
|
|
2011-11-03
|
|
SetSeed CMS 5.8.20 (loggedInUser) Remote SQL Injection Vulnerability
|
78 |
WEB
|
LiquidWorm
|
|
2011-11-03
|
|
BST - BestShopPro (nowosci.php) Multiple Vulnerabilities
|
93 |
WEB
|
CoBRa_21
|
|
2011-11-02
|
|
ZTE ZXDSL 831IIV7.5.0a_Z29_OV Multiple Vulnerabilities
|
304 |
WEB
|
mehdi boukazoula
|
|
2011-11-01
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution Vulnerability [0day]
|
314 |
WEB
|
Snake
|
|
2011-11-01
|
|
Dow Group Multiple Sql Injection Vulnerability
|
195 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
Intuitive Websites Sql Injection Vulnerability
|
99 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
jbShop - e107 v7 CMS plugin - SQL Injection vulnerability
|
90 |
WEB
|
Robert Cooper
|
|
2011-11-01
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
63 |
WEB
|
Paul Loftness
|
|
2011-11-01
|
|
Joomla Compenent com_hmcommunity Multiple Vulnerabilities
|
81 |
WEB
|
599eme Man
|
|
2011-11-01
|
|
Joomla Component Alameda (com_alameda) SQL Injection
|
78 |
WEB
|
kaMtiEz
|
|
2011-10-31
|
|
AtraSoft CMS SQL Injection Vulnerability
|
106 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Four Corner CMS SQL Injection Vulnerability
|
77 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
HighCMS <= (index.aspx) Buffer Overflow Vulnerability
|
100 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Market Town CMS SQL Injection Vulnerability
|
99 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Joomla mod_adsebse modules SQL Injection Vulnerability
|
77 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Component Joomla Multiple Blind Sql Injection
|
87 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities
|
102 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Component Joomla SQL Injection & Persistent XSS vulnerabilities
|
108 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
CMS MAXSITE Remote File Upload Vulnerability <= 1.10
|
137 |
WEB
|
HashoR
|
|
2011-10-31
|
|
jbShop - e107 v7 CMS Plugin - SQL Injection
|
105 |
WEB
|
Robert Cooper
|
|
2011-10-31
|
|
WordPress WP Glossary Plugin SQL Injection
|
93 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
97 |
WEB
|
Paul Loftness
|
|
2011-10-31
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution
|
108 |
WEB
|
Snake
|
|
2011-10-31
|
|
Joomla HM-Community (com_hmcommunity) Multiple Vulnerabilities
|
83 |
WEB
|
599eme Man
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Joomla Component Multiple Vulnerabilities
|
182 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities
|
90 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Joomla Component Multiple Vulnerabilities
|
105 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
PHP Photo Album <= (0.4.1.16) Multiple Disclosure Vulnerabilities
|
194 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Techfolio 1.0 Joomla Component SQL Injection Vulnerability
|
97 |
WEB
|
Chris Russell
|
|
2011-10-28
|
|
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
|
96 |
WEB
|
EgiX
|
|
2011-10-28
|
|
WordPress wptouch plugin SQL Injection Vulnerability
|
91 |
WEB
|
longrifle0x
|
|
2011-10-28
|
|
eFront <= 3.6.10 (build 11944) Multiple Security Vulnerabilities
|
96 |
WEB
|
EgiX
|
|
2011-10-27
|
|
Web Wiz Rich Text Editor 4.4 Remote File Upload
|
132 |
WEB
|
ZxH-Labs
|
|
2011-10-27
|
|
Online Subtitles Workshop XSS vulnerabilities
|
106 |
WEB
|
M.Jock3R
|
|
2011-10-26
|
|
Joomla YJ Contact us Component Local File Inclusion Vulnerability
|
124 |
WEB
|
MeGo
|
|
2011-10-26
|
|
SAP Management Console OSExecute Payload Execution
|
99 |
WEB
|
Chris John Riley
|
|
2011-10-26
|
|
phpLDAPadmin <= 1.2.1.1 (query_engine) Remote PHP Code Injection
|
118 |
WEB
|
TecR0c
|
|
2011-10-21
|
|
Cyclope Internet Filtering Proxy - Stored XSS Vuln
|
149 |
WEB
|
loneferret
|
|
2011-10-20
|
|
1024 CMS 1.1.0 Beta force_download.php Local File Inclusion
|
92 |
WEB
|
Sangyun YOO
|
|
2011-10-20
|
|
WHMCompleteSolution (cart.php) Local File Disclosure
|
101 |
WEB
|
Lagripe-Dz
|
|
2011-10-20
|
|
Openemr-4.1.0 SQL injection Vulnerability
|
108 |
WEB
|
I2sec-dae jin Oh
|
|
2011-10-20
|
|
Yet Another CMS 1.0 SQL Injection & XSS vulnerabilities
|
100 |
WEB
|
Stefan Schurtz
|
|
2011-10-20
|
|
Intelligent Technology Shop-Script 2.0.5 Remote File Disclosure
|
99 |
WEB
|
d3v1l r00t3r
|
|
2011-10-19
|
|
Dolphin <= 7.0.7 (member_menu_queries.php) Remote PHP Code Injection
|
100 |
WEB
|
EgiX
|
|
2011-10-19
|
|
Tap In Solutions Blind SQL Injection Vulnerability
|
96 |
WEB
|
poach3r
|
|
2011-10-19
|
|
NoNumber Framework Joomla! Plugin Multiple Vulnerabilities
|
243 |
WEB
|
jdc
|
|
2011-10-18
|
|
Gnuboard <= 4.33.02 tp.php PATH_INFO SQL Injection
|
159 |
WEB
|
flyh4t
|
|
2011-10-18
|
|
Dominant Creature BBG/RPG Browser Game Persistent XSS
|
88 |
WEB
|
M.Jock3R
|
|
2011-10-18
|
|
WordPress BackWPUp Plugin 2.1.4 Code Execution
|
96 |
WEB
|
Sense of Security
|
|
2011-10-17
|
|
WordPress wpsf-js plugin, SQL Injection
|
85 |
WEB
|
longrifle0x
|
|
2011-10-17
|
|
WordPress 2.0.3 Denial of Service Exploits
|
100 |
WEB
|
Angel Injection
|
|
2011-10-17
|
|
Ruubikcms v 1.1.0 (/extra/image.php) Local File Inclusion
|
118 |
WEB
|
Sangyun YOO
|
|
2011-10-17
|
|
WP Photo Album Plus <= 4.1.1 SQL Injection Vulnerability
|
95 |
WEB
|
Skraps
|
|
2011-10-17
|
|
WordPress Contact Form plugin <= 2.7.5 SQL Injection
|
110 |
WEB
|
Skraps
|
