|
2012-02-07
|
|
XRayCMS 1.1.1 SQL Injection Vulnerability
|
87 |
WEB
|
chap0
|
|
2012-02-07
|
|
Tube Ace(Adult PHP Tube Script) SQL Injection
|
125 |
WEB
|
Daniel Godoy
|
|
2012-02-07
|
|
BASE 1.4.5 (base_qry_main.php t_view) SQL Injection Vulnerability
|
78 |
WEB
|
a.kadir altan
|
|
2012-02-06
|
|
Tube Ace(Adult PHP Tube Script) SQL Injection
|
87 |
WEB
|
Daniel Godoy
|
|
2012-02-06
|
|
GAzie <= 5.20 Cross Site Request Forgery
|
91 |
WEB
|
Giuseppe D'Inverno
|
|
2012-02-03
|
|
Achievo v1.4.3 - Multiple Web Vulnerabilities
|
93 |
WEB
|
Vulnerability-Lab
|
|
2012-02-03
|
|
OSCommerce v3.0.2 - Persistent Cross Site Vulnerability
|
179 |
WEB
|
Vulnerability-Lab
|
|
2012-02-03
|
|
Apache Struts Multiple Persistent Cross-Site Scripting Vulnerabilities
|
221 |
WEB
|
SecPod Research
|
|
2012-02-03
|
|
Sphinix Mobile Web Server 3.1.2.47 Multiple Persistent XSS Vulnerabilities
|
99 |
WEB
|
SecPod Research
|
|
2012-02-02
|
|
MailEnable Webmail Cross-Site Scripting Vulnerability
|
101 |
WEB
|
Sajjad Pourali
|
|
2012-02-02
|
|
Webkit normalize bug for android 2.2 (CVE-2010-1759)
|
106 |
WEB
|
MJ Keith
|
|
2012-02-02
|
|
SiT! Support Incident Tracker 3.64 Multiple Vulnerabilities
|
89 |
WEB
|
High-Tech Bridge SA
|
|
2012-02-02
|
|
swDesk Multiple Vulnerabilities
|
99 |
WEB
|
Red Security TEAM
|
|
2011-12-13
|
|
Squiz Matrix - User Account Enumeration
|
89 |
WEB
|
Troy Rose
|
|
2011-12-12
|
|
Docebo LMS <= v4.0.4 (messages) Remote Code Execution
|
107 |
WEB
|
mr_me
|
|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
93 |
WEB
|
Don
|
|
2011-12-09
|
|
SantriaCMS SQL Injection Vulnerability
|
115 |
WEB
|
Troy
|
|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
100 |
WEB
|
Don
|
|
2011-12-08
|
|
SourceBans <= 1.4.8 SQL/LFI Injection
|
110 |
WEB
|
Havok
|
|
2011-12-08
|
|
SMF <= 2.0.1 SQL Injection, Privilege Escalation
|
115 |
WEB
|
The:Paradox
|
|
2011-12-08
|
|
Traq <= 2.3 Authentication Bypass / Remote Code Execution Exploit
|
95 |
WEB
|
EgiX
|
|
2011-12-08
|
|
phpBB MyPage Plugin SQL Injection
|
107 |
WEB
|
CrazyMouse
|
|
2011-12-08
|
|
Family Connections less.php Remote Command Execution
|
97 |
WEB
|
mr_me
|
|
2011-12-08
|
|
Php City Portal Script Software SQL Injection
|
131 |
WEB
|
Don
|
|
2011-12-07
|
|
AlstraSoft EPay Enterprise v4.0 Blind SQL Injection
|
197 |
WEB
|
Don
|
|
2011-12-07
|
|
PEC php calendars script SQL Injection
|
95 |
WEB
|
Mr.MLL
|
|
2011-12-07
|
|
Five Star Review Remote SQL Injection (recommend.php)
|
106 |
WEB
|
EthicalPractice
|
|
2011-12-07
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
88 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
Apache MyFaces information disclosure vulnerability
|
222 |
WEB
|
expku
|
|
2011-12-06
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
91 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
majalty (category.php) Blind SQL Injection Vulnerability
|
269 |
WEB
|
TH3.ONE
|
|
2011-12-05
|
|
Family Connections CMS v2.5.0-v2.7.1 (less.php) Remote Command Execution
|
95 |
WEB
|
mr_me
|
|
2011-12-05
|
|
WSN Classifieds v.6.2.12 and 6.2.18 Multiple Vulnerabilities
|
117 |
WEB
|
d3v1l
|
|
2011-12-05
|
|
Joomla Jobprofile Component (com_jobprofile) SQL Injection
|
104 |
WEB
|
kaMtiEz
|
|
2011-12-05
|
|
CLEVAR CMS Multiple Vulnerabilities
|
129 |
WEB
|
Mr.XHat
|
|
2011-12-05
|
|
Con-IMedia SQL inj: vulnerable
|
222 |
WEB
|
nGa Sa Lu
|
|
2011-12-02
|
|
Muster Render Farm Management System Arbitrary File Download
|
86 |
WEB
|
Nick Freeman
|
|
2011-12-01
|
|
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
|
203 |
WEB
|
EgiX
|
|
2011-11-29
|
|
Bypass the JQuery-Real-Person captcha plugin 0-day
|
137 |
WEB
|
Alberto_García_Illera
|
|
2011-11-28
|
|
Android 'content://' URI Multiple Information Disclosure Vulnerabilities
|
98 |
WEB
|
Thomas Cannon
|
|
2011-11-28
|
|
php video script SQL Injection Vulnerability
|
111 |
WEB
|
longrifle0x
|
|
2011-11-25
|
|
Zabbix <= 1.8.4 (popup.php) SQL Injection
|
96 |
WEB
|
Marcio Almeida
|
|
2011-11-25
|
|
LibLime Koha <= 4.2 Local File Inclusion Vulnerability
|
100 |
WEB
|
Akin Tosunlar
|
|
2011-11-25
|
|
Log1CMS 2.0 (ajax_create_folder.php) Remote Code Execution
|
146 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
|
94 |
WEB
|
EgiX
|
|
2011-11-25
|
|
A6-CMS(ACMS) 5.30 (ajax_create_folder.php) Remote Code Execution
|
154 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
icomex cms sql injection vulnerability
|
170 |
WEB
|
XaDaL
|
|
2011-11-23
|
|
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
|
104 |
WEB
|
Dante90
|
|
2011-11-18
|
|
Herberlin Bremsserver 3.0 Directory Traversal
|
72 |
WEB
|
AutoSec Tools
|
|
2011-11-17
|
|
SonicWALL Aventail SSL-VPN SQL Injection Vulnerability
|
104 |
WEB
|
Asheesh kumar
|
|
2011-11-17
|
|
FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution
|
72 |
WEB
|
EgiX
|
|
2011-11-16
|
|
QuiXplorer 2.3 <= Bugtraq File Upload Vulnerability
|
109 |
WEB
|
PCA
|
|
2011-11-15
|
|
Pixie CMS 1.01 - 1.04 Blind SQL Injections
|
98 |
WEB
|
Piranha
|
|
2011-11-15
|
|
WordPress AdRotate plugin <= 3.6.6 SQL Injection
|
112 |
WEB
|
Miroslav Stampar
|
|
2011-11-14
|
|
Tamweb CMS SQL Injection Vulnerability
|
175 |
WEB
|
Mr.XHat
|
|
2011-11-14
|
|
Wordpress Zingiri Plugin <= 2.2.3 (ajax_save_name.php) Remote Code Execution
|
96 |
WEB
|
EgiX
|
|
2011-11-14
|
|
CMS 4.x.x Zorder (SQL Injection Vul)
|
83 |
WEB
|
KraL BeNiM
|
|
2011-11-14
|
|
Support Incident Tracker <= 3.65 Remote Command Execution
|
101 |
WEB
|
juan vazquez
|
|
2011-11-10
|
|
LabWiki <= 1.1 Multiple Vulnerabilities
|
94 |
WEB
|
muuratsalo
|
|
2011-11-10
|
|
osCSS2 "_ID" parameter Local file inclusion
|
87 |
WEB
|
Stefan Schurtz
|
|
2011-11-10
|
|
ReadMore Systems, Incorporated (BQLi Injections)
|
113 |
WEB
|
KraL BeNiM
|
|
2011-11-10
|
|
Cover Vision Blind SQL Injection Vulnerbility
|
99 |
WEB
|
KraL BeNiM
|
|
2011-11-09
|
|
11in1 CMS v1.0.1 (do.php) CRLF Injection Vulnerability
|
103 |
WEB
|
LiquidWorm
|
|
2011-11-08
|
|
OrderSys <= 1.6.4 Sql Injection Vulnerabilities
|
89 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
LabStoRe <= 1.5.4 Sql Injection Vulnerabilities
|
89 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
WHMCS ( WHMCompleteSolution ) 3.x / 4.x Multiple Vulnerability
|
120 |
WEB
|
ZxH-Labs
|
|
2011-11-08
|
|
Readmore Systems Online Newspaper Publishing Sql Injection Vuln
|
87 |
WEB
|
4tt4ck3r
|
|
2011-11-07
|
|
Oracle NoSQL Directory Traversal
|
100 |
WEB
|
Charter
|
|
2011-11-07
|
|
OrderSys <= 1.6.4 SQL Injection
|
90 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
LabStoRe <= 1.5.4 SQL Injection
|
92 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
aidiCMS v3.55 (ajax_create_folder.php) Remote Code Execution
|
77 |
WEB
|
EgiX
|
|
2011-11-07
|
|
phpMyFAQ <= 2.7.0 (ajax_create_folder.php) Remote Code Execution
|
99 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Zenphoto <= 1.4.1.4 (ajax_create_folder.php) Remote Code Execution
|
107 |
WEB
|
EgiX
|
|
2011-11-07
|
|
WHMCS 3.x.x (clientarea.php) Local File Disclosure
|
115 |
WEB
|
red virus
|
|
2011-11-07
|
|
HP Data Protector Media Operations <= 6.20 Directory Traversal
|
76 |
WEB
|
Luigi Auriemma
|
|
2011-11-07
|
|
Advanced Poll 2.02 SQL Injection Vulnerability
|
100 |
WEB
|
Yassin Aboukir
|
|
2011-11-07
|
|
Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability
|
99 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Ajax File Manager File Upload Vulnerability
|
211 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wateen Isp wimax router login bypass
|
94 |
WEB
|
3xploits
|
|
2011-11-07
|
|
cmsmadesimple-1.8.2 File Upload Vulnerability
|
106 |
WEB
|
ITTIHACK
|
|
2011-11-07
|
|
LightNEasy 3.4.2 Multiple Vulnerabilities
|
97 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wordpress plugin FBConnect SQL-Inj
|
131 |
WEB
|
cyber-punk
|
|
2011-11-07
|
|
CaupoShop Pro (2.x/ <= 3.70) Local File Include Vulnerability
|
80 |
WEB
|
Rami Salama
|
|
2011-11-04
|
|
Web File Browser 0.4b14 File Download Vulnerability
|
120 |
WEB
|
Sangyun YOO
|
|
2011-11-04
|
|
Jara v1.6 Multiple Vulnerabilities
|
84 |
WEB
|
Or4nG.M4N
|
|
2011-11-04
|
|
CaupoShop Pro (2.x/ <= 3.70) Classic 3.01 Local File Include Vulnerability
|
88 |
WEB
|
Rami Salama
|
|
2011-11-03
|
|
SetSeed CMS 5.8.20 (loggedInUser) Remote SQL Injection Vulnerability
|
82 |
WEB
|
LiquidWorm
|
|
2011-11-03
|
|
BST - BestShopPro (nowosci.php) Multiple Vulnerabilities
|
96 |
WEB
|
CoBRa_21
|
|
2011-11-02
|
|
ZTE ZXDSL 831IIV7.5.0a_Z29_OV Multiple Vulnerabilities
|
309 |
WEB
|
mehdi boukazoula
|
|
2011-11-01
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution Vulnerability [0day]
|
319 |
WEB
|
Snake
|
|
2011-11-01
|
|
Dow Group Multiple Sql Injection Vulnerability
|
202 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
Intuitive Websites Sql Injection Vulnerability
|
104 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
jbShop - e107 v7 CMS plugin - SQL Injection vulnerability
|
96 |
WEB
|
Robert Cooper
|
|
2011-11-01
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
68 |
WEB
|
Paul Loftness
|
|
2011-11-01
|
|
Joomla Compenent com_hmcommunity Multiple Vulnerabilities
|
87 |
WEB
|
599eme Man
|
|
2011-11-01
|
|
Joomla Component Alameda (com_alameda) SQL Injection
|
85 |
WEB
|
kaMtiEz
|
|
2011-10-31
|
|
AtraSoft CMS SQL Injection Vulnerability
|
110 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Four Corner CMS SQL Injection Vulnerability
|
83 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
HighCMS <= (index.aspx) Buffer Overflow Vulnerability
|
106 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Market Town CMS SQL Injection Vulnerability
|
103 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Joomla mod_adsebse modules SQL Injection Vulnerability
|
85 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Component Joomla Multiple Blind Sql Injection
|
95 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities
|
107 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Component Joomla SQL Injection & Persistent XSS vulnerabilities
|
117 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
CMS MAXSITE Remote File Upload Vulnerability <= 1.10
|
142 |
WEB
|
HashoR
|
|
2011-10-31
|
|
jbShop - e107 v7 CMS Plugin - SQL Injection
|
111 |
WEB
|
Robert Cooper
|
|
2011-10-31
|
|
WordPress WP Glossary Plugin SQL Injection
|
99 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
102 |
WEB
|
Paul Loftness
|
|
2011-10-31
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution
|
115 |
WEB
|
Snake
|
|
2011-10-31
|
|
Joomla HM-Community (com_hmcommunity) Multiple Vulnerabilities
|
91 |
WEB
|
599eme Man
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Joomla Component Multiple Vulnerabilities
|
186 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities
|
92 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Joomla Component Multiple Vulnerabilities
|
110 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
PHP Photo Album <= (0.4.1.16) Multiple Disclosure Vulnerabilities
|
197 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Techfolio 1.0 Joomla Component SQL Injection Vulnerability
|
102 |
WEB
|
Chris Russell
|
|
2011-10-28
|
|
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
|
99 |
WEB
|
EgiX
|
|
2011-10-28
|
|
WordPress wptouch plugin SQL Injection Vulnerability
|
94 |
WEB
|
longrifle0x
|
|
2011-10-28
|
|
eFront <= 3.6.10 (build 11944) Multiple Security Vulnerabilities
|
100 |
WEB
|
EgiX
|
|
2011-10-27
|
|
Web Wiz Rich Text Editor 4.4 Remote File Upload
|
136 |
WEB
|
ZxH-Labs
|
|
2011-10-27
|
|
Online Subtitles Workshop XSS vulnerabilities
|
110 |
WEB
|
M.Jock3R
|
|
2011-10-26
|
|
Joomla YJ Contact us Component Local File Inclusion Vulnerability
|
129 |
WEB
|
MeGo
|
|
2011-10-26
|
|
SAP Management Console OSExecute Payload Execution
|
102 |
WEB
|
Chris John Riley
|
|
2011-10-26
|
|
phpLDAPadmin <= 1.2.1.1 (query_engine) Remote PHP Code Injection
|
123 |
WEB
|
TecR0c
|
|
2011-10-21
|
|
Cyclope Internet Filtering Proxy - Stored XSS Vuln
|
154 |
WEB
|
loneferret
|
|
2011-10-20
|
|
1024 CMS 1.1.0 Beta force_download.php Local File Inclusion
|
95 |
WEB
|
Sangyun YOO
|
