|
2011-06-01
|
|
eFront Community++ <=XSRF (Add admin/change admin passwd)
|
126 |
WEB
|
Caddy-Dz
|
|
2011-06-01
|
|
eFront enterprise <=XSRF (Add admin/change admin passwd)
|
110 |
WEB
|
Caddy-Dz
|
|
2011-05-31
|
|
Callisto 821+ Cross Site Request Forgery / Cross Site Scripting
|
122 |
WEB
|
MustLive
|
|
2011-05-31
|
|
Forticlient SSL VPN Symlink Overwrite
|
325 |
WEB
|
expku
|
|
2011-05-31
|
|
TinyMCE AjaxFileManager Shell Upload
|
194 |
WEB
|
Dr Trojan
|
|
2011-05-31
|
|
Apache Archiva 1.3.4 Cross Site Request Forgery
|
120 |
WEB
|
expku
|
|
2011-05-31
|
|
Apache Archiva 1.3.4 Cross Site Scripting
|
101 |
WEB
|
expku
|
|
2011-05-31
|
|
SQL Injection Vulnerbility in Dreamzsop
|
135 |
WEB
|
lionaneesh
|
|
2011-05-31
|
|
PHP Inventory <= XSRF Vulnerabelity
|
107 |
WEB
|
Caddy-Dz
|
|
2011-05-31
|
|
ApPHP Shopping Cart <= XSRF (Change Admin Password)
|
144 |
WEB
|
Caddy-Dz
|
|
2011-05-31
|
|
Belkin G Wireless Router F5D7234-4 v5 Exploit
|
130 |
WEB
|
Aodrulez
|
|
2011-05-31
|
|
Easy Media Script SQL Injection Vulnerability
|
98 |
WEB
|
Lagripe-Dz
|
|
2011-05-31
|
|
w-Agora Forum 4.2.1 Arbitrary File Upload Exploit
|
105 |
WEB
|
Treasure Priyamal
|
|
2011-05-30
|
|
风讯(FoosunCMS) SetNextOptions.asp注入漏洞利用
|
137 |
WEB
|
expku
|
|
2011-05-30
|
|
Lil' HTTP Server 2.2 Cross Site Scripting
|
120 |
WEB
|
expku
|
|
2011-05-30
|
|
Apache Archiva 1.3.4 Cross Site Request Forgery
|
110 |
WEB
|
expku
|
|
2011-05-30
|
|
LilHTTP Source Code Disclosure/Download
|
119 |
WEB
|
Treasure Priyamal
|
|
2011-05-30
|
|
AIDeX Mini-Webserver 1.4 integrated Chat Javascript
|
128 |
WEB
|
wingthor
|
|
2011-05-30
|
|
WysGui <= 2.3 (FCKeditor) File Upload Code Execution (meta)
|
101 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
Bitweaver 2.x (FCKeditor) File Upload Code Execution (meta)
|
98 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
Cotonti <=0.9.2 Blind SQL Injection Vulnerability
|
104 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
FineArtPost <= SQL injection Vulnerabelity
|
77 |
WEB
|
Caddy-Dz
|
|
2011-05-30
|
|
Ishikatech <= SQL injection Vulnerabelity
|
133 |
WEB
|
Caddy-Dz
|
|
2011-05-30
|
|
Andabate.com SQL Injection Vulnerability
|
142 |
WEB
|
magret
|
|
2011-05-30
|
|
html_edit CMS <= 3.1.x Multiple (XSRF/CSRF) Vulnerabilites
|
94 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
AlegroCart <= 1.2.x (category_next) Blind SQL Injection Vulnerability
|
144 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
Cotonti <=0.9.2 Multiple Vulnerabilities
|
138 |
WEB
|
KedAns-Dz
|
|
2011-05-30
|
|
Invisionix Roaming System Remote metasys 0.2 LFI Vulnerability
|
149 |
WEB
|
Treasure Priyamal
|
|
2011-05-30
|
|
Puzzle Apps CMS 3.2 Local File Inclusion
|
170 |
WEB
|
Treasure Priyamal
|
|
2011-05-30
|
|
Joomla Component com_joomnik SQL Injection Vulnerability
|
160 |
WEB
|
SOLVER
|
|
2011-05-30
|
|
Joomla Component com_jmsfileseller Local File Inclusion Vulnerability
|
141 |
WEB
|
Valentin
|
|
2011-05-30
|
|
Guru Penny Auction Pro V3 Blind SQL Injection Vulnerability
|
146 |
WEB
|
v3n0m
|
|
2011-05-30
|
|
Duhok Forum 1.1 SQL Injection Vulnerability
|
129 |
WEB
|
M.Jock3R
|
|
2011-05-30
|
|
cPanel < 11.25 CSRF - Add User php Script
|
174 |
WEB
|
ninjashell
|
|
2011-05-30
|
|
HB Ecommerce SQL Injection Vulnerability
|
139 |
WEB
|
takeshix
|
|
2011-05-27
|
|
Clipbucket 2.4 RC2 645 SQL Injection Vulnerability
|
250 |
WEB
|
AutoSec Tools
|
|
2011-05-27
|
|
Design Extensions (Admin) Auth Bypass/File Upload
|
141 |
WEB
|
Kalashinkov3
|
|
2011-05-26
|
|
eGroupware 1.8.001.20110421 Multiple Vulnerabilities
|
149 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
ExtCalendar 2.0b2 (cal_search.php) SQL Injection Vulnerability
|
127 |
WEB
|
High-Tech Bridge SA
|
|
2011-05-26
|
|
i-doIT 0.9.9-4 LFI Vulnerability
|
110 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
Tickets 2.13 SQL Injection Vulnerability
|
130 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
Pixprod SQL Injection Vulnerability
|
142 |
WEB
|
Kalashinkov3
|
|
2011-05-25
|
|
HP System Management Homepage Cross Site Scripting
|
180 |
WEB
|
Secunia
|
|
2011-05-25
|
|
DH Softwares Auth Bypass Vulnerability
|
206 |
WEB
|
Kalashinkov3
|
|
2011-05-25
|
|
MidiCMS-WB (2011) Multiple Vulnerabilities
|
182 |
WEB
|
KedAns-Dz
|
|
2011-05-24
|
|
smart vision (newsdetail.php) SQL Injection Vulnerability
|
106 |
WEB
|
Net.Edit0r
|
|
2011-05-24
|
|
Ciphertek Systems(snapshots.php)&(detail.php)=>SQL Injection Vulnerability
|
140 |
WEB
|
eXeSoul
|
|
2011-05-24
|
|
Acuity CMS Vulnerable to Blind SQL Injection
|
159 |
WEB
|
p0pc0rn
|
|
2011-05-24
|
|
Pligg CMS v1.1.4 Multiple (XSRF/CSRF) Vulnerabilities
|
119 |
WEB
|
KedAns-Dz
|
|
2011-05-24
|
|
Homepages Admin (index.php)=>(Auth Bypass) Vulnerability
|
133 |
WEB
|
eXeSoul
|
|
2011-05-24
|
|
PEEL Open e-commerce systems Sensitive Database Disclosure Vulnerability
|
152 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
MODx Revolution 2.0.8-pl CMS XSRF Vulnerability (Add new user)
|
130 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
MyLittleForum 2.2.7 CMS XSRF Vulnerability (Add new user)
|
213 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
Textpattern 4.3.0 CMS XSRF Vulnerability (Change Admin's Password)
|
131 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
Joomla Component maplocator SQL Injection Vulnerability
|
151 |
WEB
|
Fl0riX
|
|
2011-05-24
|
|
PHPortfolio SQL Injection Vulnerbility
|
144 |
WEB
|
lionaneesh
|
|
2011-05-23
|
|
xtcModified <= 1.05 (FCKeditor) Multiple Vulnerabilities
|
138 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
Collabtive v065 Multiple (CSRF/XSRF) Vulnerabilities
|
140 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
ChromeMedia SQL Injection Vulnerability
|
156 |
WEB
|
Kalashinkov3
|
|
2011-05-23
|
|
werkform (index.php) <= SQL Injection Vulnerability
|
158 |
WEB
|
Caddy-Dz
|
|
2011-05-23
|
|
chillyCMS v1.2.x (CSRF/FD/RFI) Multiple Vulnerabilities
|
109 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
NucleusCMS v3.64 Multiple (CSRF) Vulnerabilities
|
135 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
Mathew Callingham Associatess 3.x.x Multiple Vulnerability
|
140 |
WEB
|
Net.Edit0r
|
|
2011-05-23
|
|
vBulletin 4.0.x => 4.1.2 (search.php) SQL Injection Vulnerability
|
159 |
WEB
|
D4rkB1t
|
|
2011-05-23
|
|
ZabetAgahi SQLInjection Vulnerability
|
148 |
WEB
|
3H34N
|
|
2011-05-23
|
|
PHP Captcha / Securimage 2.0.2 - Authentication Bypass - SO-11-007
|
152 |
WEB
|
Sense of Security
|
|
2011-05-23
|
|
E-Manage MySchool 7.02 SQL Injection Vulnerability
|
148 |
WEB
|
az7rb
|
|
2011-05-23
|
|
Zen Cart <= v1.3.9h Multiple Vulnerabilities
|
142 |
WEB
|
Alberto Fontanella
|
|
2011-05-23
|
|
Tugux CMS 1.2 Multiple Remote Vulnerabilities
|
198 |
WEB
|
LiquidWorm
|
|
2011-05-23
|
|
Ultimate PHP Board 2.2.7 Broken Authentication and Session Management
|
140 |
WEB
|
i2sec
|
|
2011-05-23
|
|
Easy Contact 0.1.2 WordPress Plugin Cross Site Scripting
|
140 |
WEB
|
Websecurity
|
|
2011-05-20
|
|
Rootage 1.0.0.4 Alpha Directory Traversal
|
132 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Room Juice 0.3.3 Cross Site Scripting
|
109 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Aphpkb 0.95.4 PHP Execution
|
152 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Trade Line Web <= Remote 'id' Funcs SQL-i Vulnerabilities
|
219 |
WEB
|
knockout
|
|
2011-05-19
|
|
TWiki 5.0.1 Cross Site Scripting
|
173 |
WEB
|
Netsparker Advisories
|
|
2011-05-19
|
|
99ko <= 0.4b Multiple (CSRF/XSRF) Vulnerabilities
|
365 |
WEB
|
KedAns-Dz
|
|
2011-05-19
|
|
ImmoPHP v1.1.1 Remote (CSRF) Multiple Vulnerabilities
|
141 |
WEB
|
KedAns-Dz
|
|
2011-05-19
|
|
Joomla jomEstate SQLi Vulnerability
|
129 |
WEB
|
Sid3^effects
|
|
2011-05-19
|
|
Joomla jomDirectory SQLi Vulnerability
|
307 |
WEB
|
Sid3^effects
|
|
2011-05-19
|
|
Google Chrome (res://mshtml.dll) Remote Exploit
|
155 |
WEB
|
Caddy-Dz
|
|
2011-05-19
|
|
InHouse CMS <= SQL Injection Vulnerability
|
137 |
WEB
|
Caddy-Dz
|
|
2011-05-19
|
|
Eshopland Shop Script Upload Shell Vulnerability
|
156 |
WEB
|
Al-Ghamdi
|
|
2011-05-19
|
|
Joomla 1.0 Component jDownloads Arbitrary File Upload Vulnerability
|
153 |
WEB
|
Al-Ghamdi
|
|
2011-05-18
|
|
PHP Calendar Basic 2.3 Cross Site Scripting
|
110 |
WEB
|
Kubelabs.com
|
|
2011-05-18
|
|
Mitel Audio And Web Conferencing 4.4.30 Cross Site Scripting
|
123 |
WEB
|
expku
|
|
2011-05-18
|
|
XtreamerPRO Media Player Directory Traversal / Authentication Bypass
|
131 |
WEB
|
Itzik Chen
|
|
2011-05-18
|
|
XMS Systems <= SQL Injection Vulnerability
|
130 |
WEB
|
Caddy-Dz
|
|
2011-05-18
|
|
Whitetail Quest <= SQL Injection Vulnerability
|
165 |
WEB
|
Caddy-Dz
|
|
2011-05-18
|
|
Pligg 1.1.4 SQL Injection Vulnerability
|
131 |
WEB
|
Null-0x00
|
|
2011-05-18
|
|
Is-human <=1.4.2 Wordpress Plugin Remote Command Execution Vulnerability
|
143 |
WEB
|
neworder
|
|
2011-05-17
|
|
随风分类信息管理程序注入漏洞
|
148 |
WEB
|
expku
|
|
2011-05-17
|
|
PG Auto Pro Classifieds Software Shell Upload
|
128 |
WEB
|
kaMtiEz
|
|
2011-05-17
|
|
Poken.com Cross Site Request Forgery
|
146 |
WEB
|
Z
|
|
2011-05-17
|
|
HTML2PDF 4.02 Cross Site Scripting
|
137 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
phpMyChat Plus 1.93 Local File Inclusion
|
141 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
VbsEdit v 5.1.3.0(.vbs) Buffer Overflow Vulnerability
|
141 |
WEB
|
anT!-Tr0J4n
|
|
2011-05-17
|
|
Profshop (cms_display.php)<= Blind SQL Injection Vulnerability
|
141 |
WEB
|
Caddy-Dz
|
|
2011-05-17
|
|
Glasstree <= SQL Injection Vulnerability
|
123 |
WEB
|
Caddy-Dz
|
|
2011-05-17
|
|
NoticeBoardPro 1.0 Multiple Vulnerabilities
|
209 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
Jcow 4.2.1 LFI Vulnerability
|
144 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
Vanilla Forum 2.0.17.9 LFI Vulnerability
|
150 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
frame-oshop SQL Injection Vulnerability
|
163 |
WEB
|
-SmoG-
|
|
2011-05-17
|
|
osCommerce 2.3.1 (banner_manager.php) Remote File Upload Vulnerability
|
124 |
WEB
|
Number 7
|
|
2011-05-17
|
|
Joomla Component com_question SQL Injection Vulnerability
|
131 |
WEB
|
NeX HaCkeR
|
|
2011-05-17
|
|
EditorMonkey WordPress plugin (FCKeditor) Arbitrary File Upload
|
119 |
WEB
|
kaMtiEz
|
|
2011-05-13
|
|
eyeOS Shell Upload / Cross Site Scripting
|
133 |
WEB
|
expku
|
|
2011-05-13
|
|
Pixel Army Solutions BLIND SQL-i Vulnerability
|
143 |
WEB
|
RoAd_KiLlEr
|
|
2011-05-13
|
|
Amigot (story.php) SQL Injection Vulnerability
|
134 |
WEB
|
Kalashinkov3
|
|
2011-05-13
|
|
Oracle GlassFish Server Administration Console Authentication Bypass
|
146 |
WEB
|
Core Security
|
|
2011-05-12
|
|
Calendarix 0.8.20080808 Cross Site Scripting / SQL Injection
|
139 |
WEB
|
expku
|
|
2011-05-12
|
|
onArcade v1.1.1 Game CSRF (Cross-Site Request Forgery) Vulnerability
|
150 |
WEB
|
Or4nG.M4n
|
|
2011-05-12
|
|
phpopentailorshop Multiple Vulnerabilities
|
124 |
WEB
|
Cyber-security
|
|
2011-05-12
|
|
Joomla GOLF SCORES SQLi Vulnerability
|
129 |
WEB
|
Sid3^effects
|
|
2011-05-11
|
|
seoPanel (v.2.2.1) Multiple CSRF Vulnerabilities
|
203 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
GuppY v4.6.14 (XSRF) Change Admin Account Settings
|
236 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
Joomla ftawa Component (com_ftawa) SQL Injection Vulnerability
|
129 |
WEB
|
ScOrPiOn
|
|
2011-05-11
|
|
FestOS <= 2.3c Multiple CSRF Vulnerabilities
|
139 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
poMMo Aardvark PR16.1 Cross Site Request Forgery / Cross Site Scripting
|
126 |
WEB
|
htbridge
|
|
2011-05-11
|
|
Wolf CMS 0.7.5 Cross Site Request Forgery
|
137 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
Google Store Cross Site Scripting
|
154 |
WEB
|
Ivan
|
|
2011-05-11
|
|
Traidnt UP (view.php) SQL Injection Vulnerability
|
126 |
WEB
|
ScOrPiOn
|
|
2011-05-10
|
|
KeyFax Response Management System 3.2.2.6 XSS / Information Disclosure
|
112 |
WEB
|
expku
|
|
2011-05-10
|
|
Amigot (story.php) SQL Injection Vulnerability
|
97 |
WEB
|
Kalashinkov3
|
|
2011-05-10
|
|
CVMH Solutions SQL Injection Vulnerability
|
278 |
WEB
|
Kalashinkov3
|
