|
2011-11-23
|
|
WordPress Plugin ClickDesk Live Support 2.0 - 'cdwidget' Cross-Site Scripting
|
27 |
WEB
|
Amir
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/admin/boxes.php?rowid' SQL Injection
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/user/info.php?id' SQL Injection
|
27 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/user/index.php' Multiple SQL Injections
|
23 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1 - Multiple Script URI Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-22
|
|
TA.CMS (TeachArabia) - 'lang' Traversal Local File Inclusion
|
25 |
WEB
|
CoBRa_21
|
|
2011-11-22
|
|
TA.CMS (TeachArabia) - 'index.php?id' SQL Injection
|
22 |
WEB
|
CoBRa_21
|
|
2011-11-21
|
|
WordPress Plugin Lanoba Social 1.0 - 'action' Cross-Site Scripting
|
23 |
WEB
|
Amir
|
|
2011-11-21
|
|
WordPress Plugin Adminimize 1.7.21 - 'page' Cross-Site Scripting
|
26 |
WEB
|
Am!r
|
|
2011-11-21
|
|
WordPress Plugin Advanced Text Widget 2.0 - 'page' Cross-Site Scripting
|
23 |
WEB
|
Amir
|
|
2011-11-21
|
|
WordPress Plugin Alert Before Your Post - 'name' Cross-Site Scripting
|
25 |
WEB
|
Am!r
|
|
2011-11-20
|
|
Digital Attic Foundation CMS - 'id' SQL Injection
|
22 |
WEB
|
tempe_mendoan
|
|
2015-03-10
|
|
GeniXCMS 0.0.1 - Multiple Vulnerabilities
|
21 |
WEB
|
LiquidWorm
|
|
2015-03-10
|
|
CodoForum 2.5.1 - Arbitrary File Download
|
25 |
WEB
|
Kacper Szurek
|
|
2011-11-17
|
|
WordPress Plugin Flexible Custom Post Type - 'id' Cross-Site Scripting
|
22 |
WEB
|
Am!r
|
|
2011-11-17
|
|
ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 - Cross-Site Scripting
|
24 |
WEB
|
James webb
|
|
2011-11-17
|
|
webERP 4.3.8 - '/reportwriter/FormMaker.php?ReportID' SQL Injection
|
25 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-17
|
|
webERP 4.3.8 - '/reportwriter/ReportMaker.php?reportid' SQL Injection
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-17
|
|
webERP 4.3.8 - Multiple Script URI Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-16
|
|
Webistry 1.6 - 'pid' SQL Injection
|
23 |
WEB
|
CoBRa_21
|
|
2011-11-13
|
|
Search Plugin for Hotaru CMS 1.4.2 - 'admin_index.php?site_name' Cross-Site Scripting
|
23 |
WEB
|
Gjoko Krstic
|
|
2015-03-06
|
|
PHP Betoffice (Betster) 1.0.4 - Authentication Bypass / SQL Injection
|
23 |
WEB
|
ZeQ3uL
|
|
2015-03-07
|
|
Elastix 2.x - Blind SQL Injection
|
22 |
WEB
|
Ahmed Aboul-Ela
|
|
2015-03-06
|
|
ProjectSend r561 - SQL Injection
|
24 |
WEB
|
ITAS Team
|
|
2011-11-14
|
|
Joomla! Component Content - 'year' SQL Injection
|
23 |
WEB
|
E.Shahmohamadi
|
|
2014-11-24
|
|
WordPress Plugin Download Manager 2.7.2 - Privilege Escalation
|
24 |
WEB
|
Kacper Szurek
|
|
2011-11-11
|
|
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
|
28 |
WEB
|
Jose Carlos de Arriba
|
|
2011-11-10
|
|
Joomla! Component com_alfcontact 1.9.3 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
Jose Carlos de Arriba
|
|
2011-11-09
|
|
AShop - Open Redirection / Cross-Site Scripting
|
21 |
WEB
|
Infoserve Security Team
|
|
2011-11-08
|
|
PBCS Technology - 'articlenav.php' SQL Injection
|
23 |
WEB
|
Kalashinkov3
|
|
2011-11-04
|
|
Centreon 2.3.1 - 'command_name' Remote Command Execution
|
19 |
WEB
|
Christophe de la Fuente
|
|
2011-11-07
|
|
Oracle NoSQL 11g 1.1.100 R2 - 'log' Directory Traversal
|
23 |
WEB
|
Buherátor
|
|
2011-11-07
|
|
Admin Bot - 'news.php' SQL Injection
|
21 |
WEB
|
baltazar
|
|
2011-11-07
|
|
SmartJobBoard - 'keywords' Cross-Site Scripting
|
22 |
WEB
|
Mr.PaPaRoSSe
|
|
2011-11-04
|
|
WordPress Theme Bonus 1.0 - 's' Cross-Site Scripting
|
24 |
WEB
|
3spi0n
|
|
2011-11-04
|
|
DreamBox DM800 - 'file' Local File Disclosure
|
25 |
WEB
|
Todor Donev
|
|
2011-11-03
|
|
CmyDocument - Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
demonalex
|
|
2011-11-03
|
|
S9Y Serendipity 1.5.5 - 'serendipity[filter][bp.ALT]' Cross-Site Scripting
|
24 |
WEB
|
Stefan Schurtz
|
|
2011-11-02
|
|
eFront 3.6.x - Multiple Cross-Site Scripting / SQL Injections
|
19 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-01
|
|
Symphony 2.2.3 - '/symphony/publish/comments?filter' SQL Injection
|
22 |
WEB
|
Mesut Timur
|
|
2011-11-01
|
|
Symphony 2.2.3 - '/symphony/publish/images?filter' Cross-Site Scripting
|
33 |
WEB
|
Mesut Timur
|
|
2011-11-01
|
|
eFront 3.6.10 Build 11944 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
Netsparker Advisories
|
|
2011-11-01
|
|
IBSng B1.34(T96) - 'str' Cross-Site Scripting
|
24 |
WEB
|
Isfahan
|
|
2011-11-01
|
|
Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities
|
24 |
WEB
|
Benjamin Kunz Mejri
|
|
2011-11-01
|
|
vBulletin 4.1.7 - Multiple Remote File Inclusions
|
20 |
WEB
|
indoushka
|
|
2011-11-01
|
|
Domain Shop - 'index.php' Cross-Site Scripting
|
21 |
WEB
|
Mr.PaPaRoSSe
|
|
2011-10-28
|
|
Plici Search 2.0.0.Stable.r.1878 - 'p48-search.html' Cross-Site Scripting
|
17 |
WEB
|
599eme Man
|
|
2011-10-28
|
|
SjXjV 2.3 - 'post.php' SQL Injection
|
25 |
WEB
|
599eme Man
|
|
2015-03-04
|
|
BEdita CMS 3.5.0 - Multiple Vulnerabilities
|
22 |
WEB
|
Edric Teo
|
|
2015-03-04
|
|
SolarWinds Orion Service - SQL Injection
|
18 |
WEB
|
Brandon Perry
|
|
2011-10-28
|
|
eFront 3.6.10 - 'professor.php' Script Multiple SQL Injections
|
17 |
WEB
|
Vulnerability Research Laboratory
|
|
2011-10-26
|
|
vTiger CRM 5.2.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities (2)
|
20 |
WEB
|
LiquidWorm
|
|
2011-10-25
|
|
Alsbtain Bulletin 1.5/1.6 - Multiple Local File Inclusions
|
17 |
WEB
|
Null H4ck3r
|
|
2011-10-24
|
|
InverseFlow 2.4 - Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
Amir Expl0its
|
|
2011-10-24
|
|
e107 0.7.24 - 'cmd' Remote Command Execution
|
20 |
WEB
|
Matt Bergin
|
|
2015-03-03
|
|
PHPMoAdmin - Unauthorized Remote Code Execution
|
21 |
WEB
|
@u0x
|
|
2011-10-20
|
|
Tine 2.0 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
High-Tech Bridge SA
|
|
2011-10-20
|
|
osCommerce - Arbitrary File Upload / File Disclosure
|
22 |
WEB
|
indoushka
|
|
2011-10-20
|
|
Innovate Portal 2.0 - 'cat' Cross-Site Scripting
|
18 |
WEB
|
Eyup CELIK
|
|
2011-10-19
|
|
Boonex Dolphin 6.1 - 'get_list.php' SQL Injection
|
18 |
WEB
|
Yuri Goltsev
|
|
2015-03-03
|
|
WordPress Plugin cp-multi-view-calendar 1.1.4 - SQL Injection
|
22 |
WEB
|
i0akiN SEC-LABORATORY
|
|
2015-03-03
|
|
WordPress Theme Photocrati 4.x - SQL Injection / Cross-Site Scripting
|
21 |
WEB
|
ayastar
|
|
2015-03-03
|
|
Sagem F@st 3304-V2 - Local File Inclusion
|
22 |
WEB
|
Loudiyi Mohamed
|
|
2011-10-18
|
|
Site@School 2.4.10 - '/index.php' Cross-Site Scripting / SQL Injection
|
17 |
WEB
|
Stefan Schurtz
|
|
2011-10-17
|
|
asgbookPHP 1.9 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
indoushka
|
|
2011-10-14
|
|
Xenon - 'id' Multiple SQL Injections
|
19 |
WEB
|
m3rciL3Ss
|
|
2011-10-13
|
|
WordPress Plugin Pretty Link 1.4.56 - Multiple Cross-Site Scripting Vulnerabilities
|
14 |
WEB
|
High-Tech Bridge SA
|
|
2015-03-02
|
|
vBulletin vBSEO 4.x - 'visitormessage.php' Remote Code Injection
|
19 |
WEB
|
Net.Edit0r
|
|
2015-02-28
|
|
GoAutoDial CE 2.0 - Arbitrary File Upload
|
17 |
WEB
|
R-73eN
|
|
2015-03-02
|
|
WordPress Plugin Calculated Fields Form 1.0.10 - SQL Injection
|
20 |
WEB
|
Ibrahim Raafat
|
|
2011-10-12
|
|
BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
High-Tech Bridge SA
|
|
2011-10-12
|
|
Joomla! Component com_sgicatalog 1.0 - 'id' SQL Injection
|
20 |
WEB
|
BHG Security Center
|
|
2011-10-11
|
|
SilverStripe CMS 2.4.5 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Stefan Schurtz
|
|
2011-10-02
|
|
ContaoCMS 2.10.1 - Cross-Site Scripting
|
16 |
WEB
|
Stefan Schurtz
|
|
2011-10-10
|
|
6KBBS 8.0 build 20101201 - Cross-Site Scripting / Information Disclosure
|
19 |
WEB
|
labs insight
|
|
2011-10-11
|
|
2Moons 1.4 - Multiple Remote File Inclusions
|
18 |
WEB
|
indoushka
|
|
2011-10-11
|
|
Joomla! Component com_shop - 'id' SQL Injection
|
17 |
WEB
|
CoBRa_21
|
|
2011-10-11
|
|
Joomla! Component com_br - 'state_id' SQL Injection
|
19 |
WEB
|
CoBRa_21
|
|
2011-10-11
|
|
Joomla! Component com_tree - 'key' SQL Injection
|
23 |
WEB
|
CoBRa_21
|
|
2011-10-10
|
|
Jaws 0.8.14 - Multiple Remote File Inclusions
|
16 |
WEB
|
indoushka
|
|
2011-10-09
|
|
Joomla! Component com_expedition - 'id' SQL Injection
|
21 |
WEB
|
BHG Security Center
|
|
2011-10-07
|
|
BuzzyWall 1.3.2 - 'resolute.php' Information Disclosure
|
18 |
WEB
|
cr4wl3r
|
|
2011-10-06
|
|
Active CMS 1.2 - 'mod' Cross-Site Scripting
|
20 |
WEB
|
Stefan Schurtz
|
|
2011-10-15
|
|
vTiger CRM 5.2 - 'onlyforuser' SQL Injection
|
16 |
WEB
|
Aung Khant
|
|
2011-10-04
|
|
vTiger CRM 5.2.1 - 'PHPrint.php' Multiple Cross-Site Scripting Vulnerabilities
|
16 |
WEB
|
Aung Khant
|
|
2011-10-04
|
|
vTiger CRM 5.2.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities (1)
|
19 |
WEB
|
Aung Khant
|
|
2015-03-01
|
|
Seagate Business NAS 2014.00319 - Remote Code Execution
|
17 |
WEB
|
OJ Reeves
|
|
2011-10-03
|
|
Phorum 5.2.18 - '/admin/index.php' Cross-Site Scripting
|
15 |
WEB
|
Stefan Schurtz
|
|
2011-10-03
|
|
Netvolution 2.5.8 - 'referer' Header SQL Injection
|
21 |
WEB
|
Patroklos Argyroudis
|
|
2011-10-01
|
|
ezCourses - 'admin.asp' Security Bypass
|
16 |
WEB
|
J.O
|
|
2011-10-02
|
|
SonicWALL Viewpoint 6.0 - 'scheduleID' SQL Injection
|
16 |
WEB
|
Rem0ve
|
|
2011-09-24
|
|
WordPress Theme Trending 0.1 - 'cpage' Cross-Site Scripting
|
20 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
ProjectForum 7.0.1 3038 - 'more' Object HTML Injection
|
21 |
WEB
|
Paul Davis
|
|
2011-09-30
|
|
WordPress Plugin WP Bannerize 2.8.7 - 'ajax_sorter.php' SQL Injection
|
19 |
WEB
|
Miroslav Stampar
|
|
2011-09-28
|
|
A2CMS - 'index.php' Local File Disclosure
|
16 |
WEB
|
St493r
|
|
2011-09-30
|
|
WordPress Theme RedLine 1.65 - 's' Cross-Site Scripting
|
17 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
WordPress Theme Black-LetterHead 1.5 - 'index.php' Cross-Site Scripting
|
17 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
WordPress Theme Morning Coffee 3.5 - 'index.php' Cross-Site Scripting
|
22 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Pixiv Custom Theme 2.1.5 - 'cpage' Cross-Site Scripting
|
15 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Web Minimalist 1.1 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Cover WP 1.6.5 - 's' Cross-Site Scripting
|
19 |
WEB
|
jabdah
|
|
2011-09-29
|
|
WordPress Theme EvoLve 1.2.5 - 's' Cross-Site Scripting
|
19 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Elegant Grunge 1.0.3 - 's' Cross-Site Scripting
|
18 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme F8 Lite 4.2.1 - 's' Cross-Site Scripting
|
15 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Hybrid 0.9 - 'cpage' Cross-Site Scripting
|
17 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Atahualpa 3.6.7 - 's' Cross-Site Scripting
|
17 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
Bitweaver 2.8.1 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Stefan Schurtz
|
|
2011-09-29
|
|
Joomla! < 1.7.0 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Aung Khant
|
|
2011-09-28
|
|
Traq 2.2 - Multiple SQL Injections / Cross-Site Scripting
|
19 |
WEB
|
High-Tech Bridge SA
|
|
2011-09-27
|
|
Vanira CMS - 'vtpidshow' SQL Injection
|
19 |
WEB
|
kurdish hackers team
|
|
2011-09-27
|
|
Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
MustLive
|
|
2011-09-26
|
|
Joomla! Component Biitatemplateshop - 'groups' SQL Injection
|
19 |
WEB
|
BHG Security Group
|
|
2011-09-26
|
|
S9Y Serendipity Freetag-plugin 3.23 - 'serendipity[tagview]' Cross-Site Scripting
|
19 |
WEB
|
Stefan Schurtz
|
|
2011-09-26
|
|
AdaptCMS 2.0.1 - Cross-Site Scripting / Information Disclosure
|
17 |
WEB
|
Stefan Schurtz
|
|
2011-09-26
|
|
WordPress Plugin BuddyPress 1.2.10 / WordPress Theme DEV Blogs Mu 1.2.6 (WordPress 3.1.4) - Regular
|
18 |
WEB
|
knull
|
|
2011-09-24
|
|
IceWarp Mail Server 10.3.2 server/webmail.php Soap Message Parsing - Arbitrary File Disclosure
|
19 |
WEB
|
David Kirkpatrick
|
|
2011-09-22
|
|
AWStats 6.95/7.0 - 'awredir.pl' Multiple Cross-Site Scripting Vulnerabilities
|
16 |
WEB
|
MustLive
|
|
2011-09-22
|
|
TWiki 5.0.2 SlideShowPlugin - Slide Show Pages URI Cross-Site Scripting
|
18 |
WEB
|
Mesut Timur
|
|
2011-09-22
|
|
TWiki 5.0.2 - '/bin/view/Main/Jump?newtopic' Cross-Site Scripting
|
19 |
WEB
|
Mesut Timur
|
|
2015-02-23
|
|
WordPress Plugin Easy Social Icons 1.2.2 - Cross-Site Request Forgery
|
20 |
WEB
|
Eric Flokstra
|
|
2015-02-23
|
|
phpBugTracker 1.6.0 - Multiple Vulnerabilities
|
16 |
WEB
|
Steffen Rösemann
|
|
2015-02-23
|
|
Zeuscart 4.0 - Multiple Vulnerabilities
|
19 |
WEB
|
Steffen Rösemann
|
|
2015-02-23
|
|
Zabbix 2.0.5 - Cleartext ldap_bind_Password Password Disclosure (Metasploit)
|
18 |
WEB
|
Pablo González
|
|
2015-02-23
|
|
Clipbucket 2.7 RC3 0.9 - Blind SQL Injection
|
19 |
WEB
|
CWH Underground
|
|
2015-02-23
|
|
WeBid 1.1.1 - Unrestricted Arbitrary File Upload
|
17 |
WEB
|
CWH Underground
|
