|
2012-02-24
|
|
The Uploader 2.0.4 (Eng/Ita) Remote File Upload Remote Code Execution
|
112 |
WEB
|
Danny Moules
|
|
2012-02-23
|
|
DFLabs PTK <= 1.0.5 Multiple Vulnerabilities (Steal Authentication Credentials)
|
102 |
WEB
|
Ivano Binetti
|
|
2012-02-23
|
|
D-Link DSL-2640B Authentication Bypass
|
86 |
WEB
|
Ivano Binetti
|
|
2012-02-23
|
|
WebcamXP and Webcam 7 Directory Traversal Vulnerability
|
115 |
WEB
|
Silent Dream
|
|
2012-02-23
|
|
Dlink DCS series CSRF Change Admin Password
|
111 |
WEB
|
rigan
|
|
2012-02-23
|
|
BRIM < 2.0.0 SQL Injection
|
98 |
WEB
|
ifnull
|
|
2012-02-23
|
|
ForkCMS 3.2.5 Multiple Vulnerabilities
|
107 |
WEB
|
Ivano Binetti
|
|
2012-02-23
|
|
Sagem F@ST 2604 CSRF Vulnerability (ADSL Router)
|
112 |
WEB
|
KinG Of PiraTeS
|
|
2012-02-23
|
|
Limesurvey (PHPSurveyor v.1.91+ stable) Blind SQL Injection
|
99 |
WEB
|
TorTukiTu
|
|
2012-02-23
|
|
VOXTRONIC Voxlog Professional 3.7.2.729 SQL Injection
|
318 |
WEB
|
J. Greil
|
|
2012-02-23
|
|
TestLink SQL Injection Vulnerabilities
|
117 |
WEB
|
Juan M. Natal
|
|
2012-02-23
|
|
Cisco Linksys WAG54GS (ADSL Router) change admin password
|
91 |
WEB
|
Ivano Binetti
|
|
2012-02-23
|
|
MySQLDumper v1.2x.x SQL Injection/Execute Vulnerability
|
144 |
WEB
|
KedAns-Dz
|
|
2012-02-23
|
|
Beats Website SQL Injection Vulnerability
|
106 |
WEB
|
system k1ller
|
|
2012-02-22
|
|
Cisco Linksys WAG54GS CSRF Change Admin Password
|
122 |
WEB
|
Ivano Binetti
|
|
2012-02-21
|
|
PlumeCMS <= 1.2.4 CSRF Vulnerability
|
86 |
WEB
|
Ivano Binetti
|
|
2012-02-21
|
|
D-Link DSL-2640B (ADSL Router) CSRF Vulnerability
|
134 |
WEB
|
Ivano Binetti
|
|
2012-02-21
|
|
Joomla com_etree Blind SQL-inj Vuln
|
104 |
WEB
|
Mach1ne
|
|
2012-02-20
|
|
SyndeoCMS <= 3.0 CSRF Vulnerability
|
81 |
WEB
|
Ivano Binetti
|
|
2012-02-20
|
|
4PSA CMS SQL Injection Vulnerabilities
|
73 |
WEB
|
BHG Security Center
|
|
2012-02-20
|
|
almnzm 2.4 <= CSRF Vulnerability (Add Admin)
|
183 |
WEB
|
HaNniBaL KsA
|
|
2012-02-20
|
|
Pandora FMS v4.0.1 - Local File Include Vulnerability
|
112 |
WEB
|
Vulnerability-Lab
|
|
2012-02-20
|
|
Mitra Iranian CMS Remote File Upload
|
119 |
WEB
|
Nitrojen90
|
|
2012-02-20
|
|
Joomla Component com_x-shop (idd) <= SQLi Vulnerability
|
87 |
WEB
|
KedAns-Dz
|
|
2012-02-20
|
|
Joomla Component (com_xcomp) <= Local File Inclusion Vulnerability
|
92 |
WEB
|
KedAns-Dz
|
|
2012-02-20
|
|
Joomla Component (com_xvs) <= Local File Inclusion Vulnerability
|
97 |
WEB
|
KedAns-Dz
|
|
2012-02-20
|
|
CDPI Software SQL Injection Vulnerability
|
107 |
WEB
|
ITTIHACK
|
|
2012-02-20
|
|
TopForm CMS SQL Injection Vulnerability
|
108 |
WEB
|
faza02
|
|
2012-02-20
|
|
Solgens SQLInjection Vulnerability
|
85 |
WEB
|
the_cyber_nuxbie
|
|
2012-02-20
|
|
Pirelli Discus DSL-DRGA112-07 Remote Change Password
|
93 |
WEB
|
Daniel Godoy
|
|
2012-02-20
|
|
Telerom CMS SQLi Vulnerability
|
85 |
WEB
|
ITTIHACK
|
|
2012-02-17
|
|
SocialCMS CSRF Vulnerability
|
108 |
WEB
|
Ivano Binetti
|
|
2012-02-17
|
|
LEPTON 1.1.3 SQL Injection / XSS / Local File Inclusion
|
185 |
WEB
|
expku
|
|
2012-02-17
|
|
BuyWebArt <<< SQL Injection Vulnerability
|
110 |
WEB
|
Infamous
|
|
2012-02-17
|
|
Fork CMS v.3.2.4 - Multiple Vulnerabilities
|
76 |
WEB
|
RandomStorm
|
|
2012-02-16
|
|
AHLANNET<<< SQL Injection Vulnerability
|
103 |
WEB
|
Infamous
|
|
2012-02-15
|
|
Chicago Tribune Cross Site Scripting
|
117 |
WEB
|
Janne Ahlberg
|
|
2012-02-15
|
|
Sonexis ConferenceManager Information Disclosure
|
150 |
WEB
|
Netragard
|
|
2012-02-13
|
|
PBBoard v2.1.4 <= Multiple Vulnerabilites
|
101 |
WEB
|
KedAns-Dz
|
|
2012-02-13
|
|
Razor CMS v1.2 <= Multiple File Disclosure Vulnerabilites
|
108 |
WEB
|
KedAns-Dz
|
|
2012-02-13
|
|
Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities
|
120 |
WEB
|
Vulnerability-Lab
|
|
2012-02-10
|
|
SimogeoFilemanager Upload File Vulnerability
|
336 |
WEB
|
hack`
|
|
2012-02-10
|
|
Pluck CMS 4.7 Multiple CSRF Vulnerabilities
|
108 |
WEB
|
Gordon Security
|
|
2012-02-09
|
|
D-Link ShareCenter Remote Code Execution
|
92 |
WEB
|
Roberto Paleari
|
|
2012-02-09
|
|
Tibetsystem OwnServer 1.0 Directory Traversal
|
205 |
WEB
|
Jason Ellison
|
|
2012-02-09
|
|
Cyberoam Central Console v2.00.2 - File Include Vulnerability
|
129 |
WEB
|
Vulnerability-Lab
|
|
2012-02-09
|
|
Ananta Gazelle CMS - Update Statement Sql injection
|
90 |
WEB
|
hackme
|
|
2012-02-08
|
|
Flyspray 0.9.9.6 CSRF Vulnerability
|
113 |
WEB
|
Vaibhav Gupta
|
|
2012-02-07
|
|
XRayCMS 1.1.1 SQL Injection Vulnerability
|
95 |
WEB
|
chap0
|
|
2012-02-07
|
|
Tube Ace(Adult PHP Tube Script) SQL Injection
|
133 |
WEB
|
Daniel Godoy
|
|
2012-02-07
|
|
BASE 1.4.5 (base_qry_main.php t_view) SQL Injection Vulnerability
|
85 |
WEB
|
a.kadir altan
|
|
2012-02-06
|
|
Tube Ace(Adult PHP Tube Script) SQL Injection
|
98 |
WEB
|
Daniel Godoy
|
|
2012-02-06
|
|
GAzie <= 5.20 Cross Site Request Forgery
|
97 |
WEB
|
Giuseppe D'Inverno
|
|
2012-02-03
|
|
Achievo v1.4.3 - Multiple Web Vulnerabilities
|
103 |
WEB
|
Vulnerability-Lab
|
|
2012-02-03
|
|
OSCommerce v3.0.2 - Persistent Cross Site Vulnerability
|
186 |
WEB
|
Vulnerability-Lab
|
|
2012-02-03
|
|
Apache Struts Multiple Persistent Cross-Site Scripting Vulnerabilities
|
230 |
WEB
|
SecPod Research
|
|
2012-02-03
|
|
Sphinix Mobile Web Server 3.1.2.47 Multiple Persistent XSS Vulnerabilities
|
105 |
WEB
|
SecPod Research
|
|
2012-02-02
|
|
MailEnable Webmail Cross-Site Scripting Vulnerability
|
109 |
WEB
|
Sajjad Pourali
|
|
2012-02-02
|
|
Webkit normalize bug for android 2.2 (CVE-2010-1759)
|
113 |
WEB
|
MJ Keith
|
|
2012-02-02
|
|
SiT! Support Incident Tracker 3.64 Multiple Vulnerabilities
|
94 |
WEB
|
High-Tech Bridge SA
|
|
2012-02-02
|
|
swDesk Multiple Vulnerabilities
|
108 |
WEB
|
Red Security TEAM
|
|
2011-12-13
|
|
Squiz Matrix - User Account Enumeration
|
94 |
WEB
|
Troy Rose
|
|
2011-12-12
|
|
Docebo LMS <= v4.0.4 (messages) Remote Code Execution
|
116 |
WEB
|
mr_me
|
|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
100 |
WEB
|
Don
|
|
2011-12-09
|
|
SantriaCMS SQL Injection Vulnerability
|
122 |
WEB
|
Troy
|
|
2011-12-09
|
|
QContacts 1.0.6 (Joomla component) SQL injection
|
107 |
WEB
|
Don
|
|
2011-12-08
|
|
SourceBans <= 1.4.8 SQL/LFI Injection
|
119 |
WEB
|
Havok
|
|
2011-12-08
|
|
SMF <= 2.0.1 SQL Injection, Privilege Escalation
|
121 |
WEB
|
The:Paradox
|
|
2011-12-08
|
|
Traq <= 2.3 Authentication Bypass / Remote Code Execution Exploit
|
102 |
WEB
|
EgiX
|
|
2011-12-08
|
|
phpBB MyPage Plugin SQL Injection
|
113 |
WEB
|
CrazyMouse
|
|
2011-12-08
|
|
Family Connections less.php Remote Command Execution
|
103 |
WEB
|
mr_me
|
|
2011-12-08
|
|
Php City Portal Script Software SQL Injection
|
141 |
WEB
|
Don
|
|
2011-12-07
|
|
AlstraSoft EPay Enterprise v4.0 Blind SQL Injection
|
202 |
WEB
|
Don
|
|
2011-12-07
|
|
PEC php calendars script SQL Injection
|
104 |
WEB
|
Mr.MLL
|
|
2011-12-07
|
|
Five Star Review Remote SQL Injection (recommend.php)
|
112 |
WEB
|
EthicalPractice
|
|
2011-12-07
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
92 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
Apache MyFaces information disclosure vulnerability
|
229 |
WEB
|
expku
|
|
2011-12-06
|
|
Meditate Web Content Editor 'username_input' SQL-Injection vulnerability
|
100 |
WEB
|
Stefan Schurtz
|
|
2011-12-06
|
|
majalty (category.php) Blind SQL Injection Vulnerability
|
275 |
WEB
|
TH3.ONE
|
|
2011-12-05
|
|
Family Connections CMS v2.5.0-v2.7.1 (less.php) Remote Command Execution
|
104 |
WEB
|
mr_me
|
|
2011-12-05
|
|
WSN Classifieds v.6.2.12 and 6.2.18 Multiple Vulnerabilities
|
125 |
WEB
|
d3v1l
|
|
2011-12-05
|
|
Joomla Jobprofile Component (com_jobprofile) SQL Injection
|
112 |
WEB
|
kaMtiEz
|
|
2011-12-05
|
|
CLEVAR CMS Multiple Vulnerabilities
|
135 |
WEB
|
Mr.XHat
|
|
2011-12-05
|
|
Con-IMedia SQL inj: vulnerable
|
228 |
WEB
|
nGa Sa Lu
|
|
2011-12-02
|
|
Muster Render Farm Management System Arbitrary File Download
|
91 |
WEB
|
Nick Freeman
|
|
2011-12-01
|
|
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
|
211 |
WEB
|
EgiX
|
|
2011-11-29
|
|
Bypass the JQuery-Real-Person captcha plugin 0-day
|
143 |
WEB
|
Alberto_García_Illera
|
|
2011-11-28
|
|
Android 'content://' URI Multiple Information Disclosure Vulnerabilities
|
106 |
WEB
|
Thomas Cannon
|
|
2011-11-28
|
|
php video script SQL Injection Vulnerability
|
117 |
WEB
|
longrifle0x
|
|
2011-11-25
|
|
Zabbix <= 1.8.4 (popup.php) SQL Injection
|
105 |
WEB
|
Marcio Almeida
|
|
2011-11-25
|
|
LibLime Koha <= 4.2 Local File Inclusion Vulnerability
|
107 |
WEB
|
Akin Tosunlar
|
|
2011-11-25
|
|
Log1CMS 2.0 (ajax_create_folder.php) Remote Code Execution
|
155 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
|
102 |
WEB
|
EgiX
|
|
2011-11-25
|
|
A6-CMS(ACMS) 5.30 (ajax_create_folder.php) Remote Code Execution
|
159 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
icomex cms sql injection vulnerability
|
177 |
WEB
|
XaDaL
|
|
2011-11-23
|
|
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
|
113 |
WEB
|
Dante90
|
|
2011-11-18
|
|
Herberlin Bremsserver 3.0 Directory Traversal
|
79 |
WEB
|
AutoSec Tools
|
|
2011-11-17
|
|
SonicWALL Aventail SSL-VPN SQL Injection Vulnerability
|
111 |
WEB
|
Asheesh kumar
|
|
2011-11-17
|
|
FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution
|
79 |
WEB
|
EgiX
|
|
2011-11-16
|
|
QuiXplorer 2.3 <= Bugtraq File Upload Vulnerability
|
118 |
WEB
|
PCA
|
|
2011-11-15
|
|
Pixie CMS 1.01 - 1.04 Blind SQL Injections
|
107 |
WEB
|
Piranha
|
|
2011-11-15
|
|
WordPress AdRotate plugin <= 3.6.6 SQL Injection
|
117 |
WEB
|
Miroslav Stampar
|
|
2011-11-14
|
|
Tamweb CMS SQL Injection Vulnerability
|
182 |
WEB
|
Mr.XHat
|
|
2011-11-14
|
|
Wordpress Zingiri Plugin <= 2.2.3 (ajax_save_name.php) Remote Code Execution
|
105 |
WEB
|
EgiX
|
|
2011-11-14
|
|
CMS 4.x.x Zorder (SQL Injection Vul)
|
91 |
WEB
|
KraL BeNiM
|
|
2011-11-14
|
|
Support Incident Tracker <= 3.65 Remote Command Execution
|
108 |
WEB
|
juan vazquez
|
|
2011-11-10
|
|
LabWiki <= 1.1 Multiple Vulnerabilities
|
100 |
WEB
|
muuratsalo
|
|
2011-11-10
|
|
osCSS2 "_ID" parameter Local file inclusion
|
95 |
WEB
|
Stefan Schurtz
|
|
2011-11-10
|
|
ReadMore Systems, Incorporated (BQLi Injections)
|
122 |
WEB
|
KraL BeNiM
|
|
2011-11-10
|
|
Cover Vision Blind SQL Injection Vulnerbility
|
108 |
WEB
|
KraL BeNiM
|
|
2011-11-09
|
|
11in1 CMS v1.0.1 (do.php) CRLF Injection Vulnerability
|
110 |
WEB
|
LiquidWorm
|
|
2011-11-08
|
|
OrderSys <= 1.6.4 Sql Injection Vulnerabilities
|
97 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
LabStoRe <= 1.5.4 Sql Injection Vulnerabilities
|
94 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
WHMCS ( WHMCompleteSolution ) 3.x / 4.x Multiple Vulnerability
|
125 |
WEB
|
ZxH-Labs
|
|
2011-11-08
|
|
Readmore Systems Online Newspaper Publishing Sql Injection Vuln
|
91 |
WEB
|
4tt4ck3r
|
|
2011-11-07
|
|
Oracle NoSQL Directory Traversal
|
105 |
WEB
|
Charter
|
|
2011-11-07
|
|
OrderSys <= 1.6.4 SQL Injection
|
99 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
LabStoRe <= 1.5.4 SQL Injection
|
100 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
aidiCMS v3.55 (ajax_create_folder.php) Remote Code Execution
|
84 |
WEB
|
EgiX
|
|
2011-11-07
|
|
phpMyFAQ <= 2.7.0 (ajax_create_folder.php) Remote Code Execution
|
106 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Zenphoto <= 1.4.1.4 (ajax_create_folder.php) Remote Code Execution
|
114 |
WEB
|
EgiX
|
|
2011-11-07
|
|
WHMCS 3.x.x (clientarea.php) Local File Disclosure
|
121 |
WEB
|
red virus
|
|
2011-11-07
|
|
HP Data Protector Media Operations <= 6.20 Directory Traversal
|
83 |
WEB
|
Luigi Auriemma
|
|
2011-11-07
|
|
Advanced Poll 2.02 SQL Injection Vulnerability
|
109 |
WEB
|
Yassin Aboukir
|
|
2011-11-07
|
|
Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability
|
109 |
WEB
|
EgiX
|
