|
2011-08-02
|
|
CMSPro! 2.08 Cross Site Request Forgery (CSRF) Vulnerability
|
109 |
WEB
|
Xadpritox
|
|
2011-08-01
|
|
cFTP <= 0.1 (r80) Arbitrary File Upload
|
124 |
WEB
|
leviathan
|
|
2011-07-29
|
|
Joomla 1.5 com_virtuemart <= 1.1.7 Blind time-based SQL Injection (MSF)
|
197 |
WEB
|
TecR0c
|
|
2011-07-29
|
|
Braden Fleischer..SQL injection Vulnerability
|
89 |
WEB
|
k's0uR!
|
|
2011-07-28
|
|
Sagem 3304 Router PPPOE Password Retrieval
|
88 |
WEB
|
securititracker
|
|
2011-07-28
|
|
Cross-Site Request Forgery in SWAT (Samba Web Administration Tool)
|
105 |
WEB
|
Narendra Shinde
|
|
2011-07-25
|
|
ExtCalendar2 (Auth Bypass/Cookie) SQL Injection
|
120 |
WEB
|
Lagripe-Dz
|
|
2011-07-22
|
|
Joomla Component JE K2 Story Submit Local File Inclusion Vulnerability
|
98 |
WEB
|
v3n0m
|
|
2011-07-22
|
|
Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability 0-day
|
63 |
WEB
|
FB1H2S
|
|
2011-07-21
|
|
Appointment Booking Pro Joomla Component LFI Vulnerability
|
88 |
WEB
|
Don Tukulesto
|
|
2011-07-21
|
|
Oracle Sun GlassFish Enterprise Server Stored XSS Vulnerability
|
84 |
WEB
|
Sense of Security
|
|
2011-07-20
|
|
phpMyBackup v.0.4 beta Remote Backup DB Vulnerability
|
119 |
WEB
|
Angel Injection
|
|
2011-07-15
|
|
Inscribe Webmedia SQL Injection Vulnerability
|
187 |
WEB
|
Netrondoank
|
|
2011-07-15
|
|
PG eLMS Pro vDEC_2007_01 Multiple Blind SQL Injection Vulnerabilities
|
102 |
WEB
|
LiquidWorm
|
|
2011-07-15
|
|
PG eLMS Pro vDEC_2007_01 (contact_us.php) Multiple POST XSS Vulnerabilities
|
122 |
WEB
|
LiquidWorm
|
|
2011-07-15
|
|
SOBI2 2.9.3.2 Joomla! Component Blind SQL Injections
|
140 |
WEB
|
jdc
|
|
2011-07-14
|
|
Open Slaed CMS v1.2 Remote Arbitrary File Upload Exploit
|
83 |
WEB
|
eidelweiss
|
|
2011-07-14
|
|
Tugux CMS 1.2 Multiple vulnerability (BLIND sql & xss)
|
189 |
WEB
|
eidelweiss
|
|
2011-07-14
|
|
TCExam <=11.2.011 Multiple SQL Injection Vulnerabilities
|
104 |
WEB
|
LiquidWorm
|
|
2011-07-13
|
|
phpMyAdmin3 remote code execute php版本 exploit
|
126 |
WEB
|
oldjun
|
|
2011-07-13
|
|
Pandora FMS v3.2.1 Cross Site Request Forgery
|
164 |
WEB
|
Mehdi Boukazoula
|
|
2011-07-13
|
|
Tradingeye Multiple Vulnerabilities
|
99 |
WEB
|
$#4d0
|
|
2011-07-13
|
|
cPanel 11.x Privilege Escalation Exploit
|
194 |
WEB
|
ZxH-Lab's
|
|
2011-07-13
|
|
Xmap 1.2.11 Joomla Component Blind SQL Injection
|
126 |
WEB
|
jdc
|
|
2011-07-11
|
|
phpMyAdmin 3.x Swekey Remote Code Injection Exploit
|
80 |
WEB
|
Mango
|
|
2011-07-11
|
|
phpMyAdmin3 (pma3) Remote Code Execution Exploit
|
143 |
WEB
|
wofeiwo
|
|
2011-07-08
|
|
Emanage1.5.2(index.php)sql Injection Vulnerability
|
173 |
WEB
|
Angel Injection
|
|
2011-07-08
|
|
Activart SQL Injection Vulnerability
|
121 |
WEB
|
Kalashinkov3
|
|
2011-07-08
|
|
Alphabit Online SQL Injection Vulnerability
|
78 |
WEB
|
Kalashinkov3
|
|
2011-07-08
|
|
LuxCal Web Calendar v2.4.2 / v2.5.0 SQL Injection Vulnerability
|
91 |
WEB
|
kaMtiEz
|
|
2011-07-08
|
|
ManageEngine ServiceDesk <= 8.0.0.12 Database Disclosure Exploit
|
133 |
WEB
|
@ygoltsev
|
|
2011-07-07
|
|
aTube Catcher 2.3.570 Insecure Method
|
152 |
WEB
|
Diego Uscanga
|
|
2011-07-07
|
|
Joomla 1.6.3 CSRF Exploit
|
124 |
WEB
|
Luis Santana
|
|
2011-07-07
|
|
SGL.cms v0.6.8 (FCKeditor) Arbitrary Shell Upload - Multiple
|
115 |
WEB
|
KedAns-Dz
|
|
2011-07-07
|
|
XOOPS Remote Install System Vulnerability
|
126 |
WEB
|
Angel Injection
|
|
2011-07-07
|
|
WebExplorer 2.0c Remote File Upload Vulnerability
|
223 |
WEB
|
Angel Injection
|
|
2011-07-07
|
|
PHP-NUKE remote read config Vulnerability
|
213 |
WEB
|
Angel Injection
|
|
2011-07-06
|
|
Elite Gaming Ladders(standings.php)sql-i Vulnerability
|
197 |
WEB
|
Angel Injection
|
|
2011-07-06
|
|
PHPQuotes(category.php)sql-i Vulnerability
|
124 |
WEB
|
Angel Injection
|
|
2011-07-06
|
|
DmxReady Secure Document Library v1.2 SQL Injection
|
179 |
WEB
|
Bellatrix
|
|
2011-07-05
|
|
WeBid <= 1.0.2 (converter.php) Remote Code Execution Exploit
|
123 |
WEB
|
EgiX
|
|
2011-07-05
|
|
PhpFood CMS v2.00 SQL Injection Vulnerability
|
62 |
WEB
|
kaMtiEz
|
|
2011-07-05
|
|
PhpFood CMS v2.00 SQL Injection Vulnerability
|
186 |
WEB
|
Bellatrix
|
|
2011-07-05
|
|
DMXReady Account List Manager v1.2 SQL Injection Vulnerability
|
110 |
WEB
|
Bellatrix
|
|
2011-06-30
|
|
rgboard 4.2.1 SQL Injection Vulnerability
|
112 |
WEB
|
hamt0ry
|
|
2011-06-30
|
|
BlogIt <= 1.6.0 Php Code Injection Vulnerability
|
132 |
WEB
|
Ux0r
|
|
2011-06-28
|
|
'Pretty Link Like' WordPress Plugin 1.4.56 Multiple SQL Injection
|
130 |
WEB
|
MaKyOtOx
|
|
2011-06-28
|
|
Mambo CMS 4.6.5 Cross Site Scripting
|
224 |
WEB
|
yehg
|
|
2011-06-28
|
|
Joomla Component com_morfeoshow SQL Injection Vulnerability
|
201 |
WEB
|
Th3.xin0x
|
|
2011-06-27
|
|
CmsFromScratch 1.9.2 (FCKeditor) Arbitrary Shell Upload Exploit
|
118 |
WEB
|
KedAns-Dz
|
|
2011-06-27
|
|
EasyFlex (shop.php) Blind SQL Injection Vulnerability
|
104 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
disclaimer SQL Injection Vulnerability
|
167 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
Sheffield SQL Injection Vulnerability
|
216 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
Martijn Overweg Blind SQL-i Vulnerability
|
153 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
WebGozar(detail.php)Sql-i Vulnerability
|
171 |
WEB
|
Angel Injection
|
|
2011-06-27
|
|
eHub (cart.php) SQL Injection Vulnerability
|
174 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
Misronline SQL Injection Vulnerability
|
109 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
Quram Blins SQL-i Vulnerability
|
121 |
WEB
|
Kalashinkov3
|
|
2011-06-27
|
|
JoomlaXi Persistent XSS Vulnerability
|
91 |
WEB
|
Karthik R
|
|
2011-06-27
|
|
Wordpress Beer Recipes Plugin v.1.0 XSS
|
102 |
WEB
|
TheUzuki
|
|
2011-06-24
|
|
Avid International LLC<= SQL Injection Vulnerability
|
110 |
WEB
|
Caddy-Dz
|
|
2011-06-24
|
|
Ez sitebuilder <= Admin Auth Bypass Vulnerability
|
74 |
WEB
|
Caddy-Dz
|
|
2011-06-24
|
|
vBseo 3.1.0 (vbseo.php vbseourl) Remote Command Execution Exploit
|
118 |
WEB
|
Jose Luis Gongora Fernandez (a.k.a) JosS
|
|
2011-06-24
|
|
Joomla com_com_propiedades Multiple Vulnerabilities
|
195 |
WEB
|
z0mbyak
|
|
2011-06-24
|
|
Nodesforum 1.059 Remote File Inclusion Vulnerability
|
80 |
WEB
|
bd0rk
|
|
2011-06-24
|
|
2Point Solutions (cmspages.php) SQL Injection Vulnerability
|
86 |
WEB
|
Newbie Campuz
|
|
2011-06-24
|
|
Webcat Multiple Blind SQL Injection Vulnerabilities
|
99 |
WEB
|
w0rd
|
|
2011-06-24
|
|
ActivDesk 3.0 multiple security vulnerabilities
|
94 |
WEB
|
Brendan Coles
|
|
2011-06-24
|
|
ManageEngine Support Center Plus 7.8 build <= 7801 Directory Traversal Vulnerability
|
115 |
WEB
|
xistence
|
|
2011-06-24
|
|
ManageEngine Service Desk Plus 8.0 Directory Traversal Vulnerability
|
90 |
WEB
|
Keith Lee
|
|
2011-06-24
|
|
iSupport 1.8 SQL Injection Vulnerability
|
92 |
WEB
|
Brendan Coles
|
|
2011-06-24
|
|
BrewBlogger 2.3.2 Multiple Vulnerabilities
|
109 |
WEB
|
Brendan Coles
|
|
2011-06-24
|
|
Sitemagic CMS Directory Traversal
|
142 |
WEB
|
Andrea Bocchetti
|
|
2011-06-23
|
|
Same Team E-shop manager SQL Injection exploit
|
113 |
WEB
|
Number 7
|
|
2011-06-23
|
|
Cachelogic Expired Domains Script 1.0 Multiple Vulnerabilities
|
95 |
WEB
|
Brendan Coles
|
|
2011-06-22
|
|
IBM Web Application Firewall Bypass
|
110 |
WEB
|
Trustwave
|
|
2011-06-22
|
|
Sitemagic CMS 2010.04.17 Cross Site Scripting
|
141 |
WEB
|
LiquidWorm
|
|
2011-06-22
|
|
Blue Bison Script SQL Injection
|
143 |
WEB
|
HeRoTuRK
|
|
2011-06-22
|
|
EA Sports Cross Site Scripting
|
120 |
WEB
|
Juan Sacco
|
|
2011-06-22
|
|
iGiveTest 2.1.0 SQL Injection Vulnerability
|
117 |
WEB
|
Brendan Coles
|
|
2011-06-22
|
|
If-CMS 2.07 Pre-Auth Local File Inclusion Exploit
|
94 |
WEB
|
TecR0c
|
|
2011-06-21
|
|
ecshop最新版 (v272) 本地包含拿SHELL
|
121 |
WEB
|
expku
|
|
2011-06-21
|
|
0-Day WPtouch WordPress Plugin 1.9.27 URL redirection
|
229 |
WEB
|
MaKyOtOx
|
|
2011-06-21
|
|
Netclues Script SQL injection Vulnerability
|
115 |
WEB
|
HeRoTuRK
|
|
2011-06-21
|
|
Design & Developed by:websitesforless SQL Injection Vulnerabilites
|
172 |
WEB
|
N[-m0]
|
|
2011-06-21
|
|
KievShina Designs Sensitive Database Disclosure Vulnerability
|
340 |
WEB
|
Xecuti0n3r
|
|
2011-06-21
|
|
Time Warner Company Sensitive Database Disclosure Vulnerability
|
99 |
WEB
|
Xecuti0n3r
|
|
2011-06-21
|
|
EssentialSoft Sales Force Automation SQL Injection
|
125 |
WEB
|
Xecuti0n3r
|
|
2011-06-21
|
|
Firebug Firefox Extension Cross Context Scripting Vulnerability
|
96 |
WEB
|
5up3rh3i
|
|
2011-06-21
|
|
sxVideo 2.1.0 SQL Injection
|
153 |
WEB
|
HeRoTuRK
|
|
2011-06-21
|
|
N-13 News 4.0.1 Cross Site Scripting
|
180 |
WEB
|
htbridge
|
|
2011-06-21
|
|
Joomla Component (com_jresearch) Local File Inclusion
|
133 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
Nibbleblog v3.0 Multiple SQL Injection Vulnerabilites
|
166 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
ImmoPHP v1.1.1 Multiple (SQLi/XSS) Vulnerabilites
|
97 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
WeBid v1.0.2 Multiple Remote (CSRF) Vulnerabilities
|
124 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
AlegroCart <= 1.2.x Drown 0-Day Serving Exploit
|
126 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
Cotonti <=0.9.2 (page.php) Blind SQL Injection Vulnerability
|
110 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
Angora Guestbook v1.6 Multiple (FD/LFI) Vulnerabilities
|
192 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
AiCart 2.0 Multiple Vulnerabilities
|
106 |
WEB
|
takeshix
|
|
2011-06-21
|
|
Xoops v2.5.0 (Tiny_mce) File Upload Vulnerability
|
258 |
WEB
|
KedAns-Dz
|
|
2011-06-21
|
|
Hyperactive PC Admin Auth Bypass
|
203 |
WEB
|
Angel Injection
|
|
2011-06-21
|
|
Entrack: Internet Admin Auth Bypass
|
123 |
WEB
|
Angel Injection
|
|
2011-06-21
|
|
subrion <=XSRF/CSRF (Change Admin Password)
|
134 |
WEB
|
Caddy-Dz
|
|
2011-06-21
|
|
Joomla Component Calc Builder (id) Blind SQL Injection Vulnerability
|
134 |
WEB
|
Chip D3 Bi0s
|
|
2011-06-21
|
|
Burning Board 3.1.5 Full Path Disclosure
|
113 |
WEB
|
linc0ln.dll
|
|
2011-06-21
|
|
Joomla Component (com_team) SQL Injection Vulnerability
|
112 |
WEB
|
CoBRa_21
|
|
2011-06-21
|
|
A Cool Debate 1.0.3 Component Joomla Local File Inclusion
|
90 |
WEB
|
Chip D3 Bi0s
|
|
2011-06-17
|
|
German AD-Free Blog SQL Injection
|
144 |
WEB
|
Bl4ck.Viper
|
|
2011-06-17
|
|
Boybdream Shop SQL Injection
|
94 |
WEB
|
Bl4ck.Viper
|
|
2011-06-17
|
|
BeVivid WMS Blind SQL Injection
|
115 |
WEB
|
RoAd_KiLlEr
|
|
2011-06-17
|
|
Polymedia Ltd. SQL injection Vulnerability
|
155 |
WEB
|
CriminalCoder
|
|
2011-06-17
|
|
Catalog Builder - Ecommerce Software - Blind SQL Injection
|
104 |
WEB
|
takeshix
|
|
2011-06-16
|
|
PhpMyExplorer File upload Vulnerability
|
89 |
WEB
|
Angel Injection
|
|
2011-06-16
|
|
360ideas => SQL Injection
|
165 |
WEB
|
Ratchet
|
|
2011-06-16
|
|
Nodethirtythree =>SQL injection vulnerability
|
171 |
WEB
|
Sideswipe
|
|
2011-06-16
|
|
SVM Infotech.. SQL injection Vulnerability
|
112 |
WEB
|
k's0uR!
|
|
2011-06-16
|
|
IBM WebSphere Application Server 7.0.0.13 CSRF Vulnerability
|
169 |
WEB
|
Core Security
|
|
2011-06-16
|
|
Free Simple CMS 1.0 Multiple Vulnerabilities
|
109 |
WEB
|
High-Tech Bridge SA
|
|
2011-06-16
|
|
AMHSHOP 3.7.0 SQL Injection
|
127 |
WEB
|
Yassin Aboukir
|
|
2011-06-15
|
|
Core Security Technologies Advisory 2011.0203
|
213 |
WEB
|
coresecurity
|
|
2011-06-15
|
|
Infopublica Solutions SQL Injection
|
103 |
WEB
|
RoAd_KiLlEr
|
|
2011-06-15
|
|
vBulletin 3.x.x vBTube 1.2.9 Cross Site Scripting
|
114 |
WEB
|
Mr.ThieF
|
|
2011-06-15
|
|
WordPress Wysi Plugin Arbitrary File upload Vulnerability
|
119 |
WEB
|
Net.Edit0r
|
|
2011-06-15
|
|
4mation Technologies => SQL Injection
|
137 |
WEB
|
Ratchet
|
|
2011-06-15
|
|
PlanetComnet Admin Auth Bypass
|
114 |
WEB
|
CriminalCoder
|
