|
2011-06-23
|
|
Webcat - Multiple Blind SQL Injections
|
1 |
WEB
|
w0rd
|
|
2011-06-23
|
|
ActivDesk 3.0 - Multiple Vulnerabilities
|
0 |
WEB
|
Brendan Coles
|
|
2011-06-23
|
|
ManageEngine Support Center Plus 7.8 Build 7801 - Directory Traversal
|
1 |
WEB
|
xistence
|
|
2011-06-23
|
|
ManageEngine ServiceDesk Plus 8.0 - Directory Traversal
|
2 |
WEB
|
Keith Lee
|
|
2011-06-23
|
|
iSupport 1.8 - SQL Injection
|
2 |
WEB
|
Brendan Coles
|
|
2011-06-23
|
|
BrewBlogger 2.3.2 - Multiple Vulnerabilities
|
1 |
WEB
|
Brendan Coles
|
|
2011-06-22
|
|
Same Team E-shop manager - SQL Injection
|
2 |
WEB
|
Number 7
|
|
2011-06-22
|
|
Cachelogic Expired Domains Script 1.0 - Multiple Vulnerabilities
|
2 |
WEB
|
Brendan Coles
|
|
2011-06-21
|
|
iGiveTest 2.1.0 - SQL Injection
|
1 |
WEB
|
Brendan Coles
|
|
2011-06-21
|
|
WordPress Plugin WPtouch 1.9.27 - URL redirection
|
1 |
WEB
|
MaKyOtOx
|
|
2011-06-20
|
|
IF-CMS 2.07 - Local File Inclusion (Metasploit) (2)
|
2 |
WEB
|
TecR0c
|
|
2011-06-19
|
|
Joomla! Component com_calcbuilder - 'id' Blind SQL Injection
|
1 |
WEB
|
Chip d3 bi0s
|
|
2011-06-19
|
|
Burning Board 3.1.5 - Full Path Disclosure
|
1 |
WEB
|
linc0ln.dll
|
|
2011-06-19
|
|
Joomla! Component com_team - SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2011-06-18
|
|
Joomla! Component A Cool Debate 1.0.3 - Local File Inclusion
|
1 |
WEB
|
Chip d3 bi0s
|
|
2011-06-18
|
|
AiCart 2.0 - Multiple Vulnerabilities
|
0 |
WEB
|
takeshix
|
|
2011-06-17
|
|
WeBid 1.0.2 - Persistent Cross-Site Scripting (via SQL Injection)
|
1 |
WEB
|
Saif
|
|
2011-06-16
|
|
Catalog Builder eCommerce Software - Blind SQL Injection
|
1 |
WEB
|
takeshix
|
|
2011-06-15
|
|
IBM Websphere Application Server 7.0.0.13 - Cross-Site Request Forgery
|
1 |
WEB
|
Core Security
|
|
2011-06-15
|
|
Free Simple CMS 1.0 - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-06-15
|
|
AMHSHOP 3.7.0 - SQL Injection
|
2 |
WEB
|
Yassin Aboukir
|
|
2011-06-14
|
|
cubecart 2.0.7 - Multiple Vulnerabilities
|
1 |
WEB
|
Shamus
|
|
2011-06-13
|
|
Joomla! Component Scriptegrator 1.5 - Local File Inclusion
|
2 |
WEB
|
jdc
|
|
2011-06-13
|
|
Oracle HTTP Server - Cross-Site Scripting Header Injection
|
2 |
WEB
|
Yasser ABOUKIR
|
|
2011-06-11
|
|
SUBRION CMS - Multiple Vulnerabilities
|
0 |
WEB
|
Karthik R
|
|
2011-06-11
|
|
Technote 7.2 - Blind SQL Injection
|
1 |
WEB
|
BlueH4G
|
|
2011-06-11
|
|
Trend Micro Data Loss Prevention Virtual Appliance 5.5 - Directory Traversal
|
2 |
WEB
|
White Hat Consultores
|
|
2011-06-10
|
|
Tele Data Contact Management Server - Directory Traversal
|
1 |
WEB
|
AutoSec Tools
|
|
2011-06-10
|
|
Angora Guestbook 1.5 - Local File Inclusion
|
1 |
WEB
|
AutoSec Tools
|
|
2011-06-10
|
|
Pacer Edition CMS 2.1 - 'l' Local File Inclusion
|
2 |
WEB
|
LiquidWorm
|
|
2011-06-10
|
|
Pacer Edition CMS 2.1 - 'rm' Arbitrary File Deletion
|
2 |
WEB
|
LiquidWorm
|
|
2011-06-09
|
|
Polycom IP Phone - Web Interface Data Disclosure
|
1 |
WEB
|
Yakir Wizman
|
|
2011-06-09
|
|
Aastra IP Phone 9480i - Web Interface Data Disclosure
|
2 |
WEB
|
Yakir Wizman
|
|
2011-06-09
|
|
EquiPCS - SQL Injection
|
2 |
WEB
|
Sideswipe
|
|
2011-06-07
|
|
Dataface - Local File Inclusion
|
2 |
WEB
|
ITSecTeam
|
|
2011-06-04
|
|
WebSVN 2.3.2 - Unproper Metacharacters Escaping 'exec()' Remote Command Injection
|
2 |
WEB
|
rgod
|
|
2011-05-30
|
|
Guru JustAnswer Professional 1.25 - Multiple SQL Injections
|
2 |
WEB
|
v3n0m
|
|
2011-05-30
|
|
Belkin F5D7234-4 v5 G Wireless Router - Remote Hash Exposed
|
2 |
WEB
|
Aodrulez
|
|
2011-05-30
|
|
Easy Media Script - SQL Injection
|
2 |
WEB
|
Lagripe-Dz
|
|
2011-05-30
|
|
w-Agora Forum 4.2.1 - Arbitrary File Upload
|
1 |
WEB
|
Treasure Priyamal
|
|
2011-05-29
|
|
Invisionix Roaming System Remote metasys 0.2 - Local File Inclusion
|
2 |
WEB
|
Treasure Priyamal
|
|
2011-05-29
|
|
Puzzle Apps CMS 3.2 - Local File Inclusion
|
2 |
WEB
|
Treasure Priyamal
|
|
2011-05-29
|
|
Joomla! Component com_joomnik - SQL Injection
|
2 |
WEB
|
SOLVER
|
|
2011-05-28
|
|
Joomla! Component com_jmsfileseller - Local File Inclusion
|
2 |
WEB
|
Valentin
|
|
2011-05-28
|
|
Guru Penny Auction Pro 3.0 - Blind SQL Injection
|
2 |
WEB
|
v3n0m
|
|
2011-05-28
|
|
Duhok Forum 1.1 - SQL Injection
|
2 |
WEB
|
M.Jock3R
|
|
2011-05-27
|
|
cPanel < 11.25 - Cross-Site Request Forgery (Add User PHP Script)
|
2 |
WEB
|
ninjashell
|
|
2011-05-27
|
|
HB eCommerce - SQL Injection
|
2 |
WEB
|
takeshix
|
|
2011-05-26
|
|
Clipbucket 2.4 RC2 645 - SQL Injection
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-25
|
|
AWStats Totals 1.14 multisort - Remote Command Execution (Metasploit)
|
2 |
WEB
|
Metasploit
|
|
2011-05-25
|
|
eGroupWare 1.8.001.20110421 - Multiple Vulnerabilities
|
1 |
WEB
|
AutoSec Tools
|
|
2011-05-25
|
|
Extcalendar 2.0b2 - 'cal_search.php' SQL Injection
|
0 |
WEB
|
High-Tech Bridge SA
|
|
2011-05-25
|
|
i-doIT 0.9.9-4 - Local File Inclusion
|
0 |
WEB
|
AutoSec Tools
|
|
2011-05-25
|
|
Tickets 2.13 - SQL Injection
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-23
|
|
PHPortfolio - SQL Injection
|
1 |
WEB
|
lionaneesh
|
|
2011-05-23
|
|
vBulletin 4.0.x 4.1.2 - 'search.php' SQL Injection
|
2 |
WEB
|
D4rkB1t
|
|
2011-05-22
|
|
Tugux CMS 1.2 - Multiple Vulnerabilities
|
1 |
WEB
|
LiquidWorm
|
|
2011-05-21
|
|
E-Manage MySchool 7.02 - SQL Injection
|
2 |
WEB
|
az7rb
|
|
2011-05-20
|
|
PHP Captcha / Securimage 2.0.2 - Authentication Bypass
|
2 |
WEB
|
Sense of Security
|
|
2011-05-20
|
|
Zen Cart 1.3.9h - Multiple Vulnerabilities
|
2 |
WEB
|
Dr. Alberto Fontanella
|
|
2011-05-20
|
|
Ultimate PHP Board 2.2.7 - Broken Authentication and Session Management
|
2 |
WEB
|
i2sec
|
|
2011-05-18
|
|
Joomla! Component jDownloads 1.0 - Arbitrary File Upload
|
1 |
WEB
|
Al-Ghamdi
|
|
2011-05-17
|
|
Pligg CMS 1.1.4 - SQL Injection
|
2 |
WEB
|
Null-0x00
|
|
2011-05-17
|
|
WordPress Plugin Is-human 1.4.2 - Remote Command Execution
|
2 |
WEB
|
neworder
|
|
2011-05-16
|
|
Jcow 4.2.1 - Local File Inclusion
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-16
|
|
NoticeBoardPro 1.0 - Multiple Vulnerabilities
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-16
|
|
Vanilla Forum 2.0.17.9 - Local File Inclusion
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-16
|
|
MediaInSpot CMS - SQL Injection
|
2 |
WEB
|
Iolo Morganwg
|
|
2011-05-16
|
|
MediaInSpot CMS - Local File Inclusion (2)
|
1 |
WEB
|
wlhaan haker
|
|
2011-05-15
|
|
frame-oshop - SQL Injection
|
2 |
WEB
|
-SmoG-
|
|
2011-05-15
|
|
Joomla! Component com_question - SQL Injection
|
2 |
WEB
|
NeX HaCkEr
|
|
2011-05-14
|
|
osCommerce 2.3.1 - 'banner_manager.php' Arbitrary File Upload
|
2 |
WEB
|
Number 7
|
|
2011-05-14
|
|
WordPress Plugin EditorMonkey 2.5 - 'FCKeditor' Arbitrary File Upload
|
2 |
WEB
|
kaMtiEz
|
|
2011-05-12
|
|
Oracle GlassFish Server - Administration Console Authentication Bypass
|
2 |
WEB
|
Core Security
|
|
2011-05-10
|
|
Traidnt UP 2.0 - 'view.php' SQL Injection
|
2 |
WEB
|
ScOrPiOn
|
|
2011-05-09
|
|
Joomla! Component com_hello - SQL Injection
|
2 |
WEB
|
the_cyber_nuxbie
|
|
2011-05-09
|
|
Joomla! Component com_versioning - SQL Injection
|
2 |
WEB
|
the_cyber_nuxbie
|
|
2011-05-07
|
|
f-fileman 7.0 - Directory Traversal
|
2 |
WEB
|
Raffaele Forte
|
|
2011-05-06
|
|
VCalendar 1.1.5 - Cross-Site Request Forgery
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-05-06
|
|
phpThumb - 'phpThumbDebug' Information Disclosure
|
2 |
WEB
|
mook
|
|
2011-05-06
|
|
PHPDug 2.0.0 - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-05-04
|
|
Sothink DHTML Menu - SQL Injection
|
2 |
WEB
|
Caddy-Dz
|
|
2011-05-03
|
|
Time and Expense Management System - Multiple Vulnerabilities
|
2 |
WEB
|
AutoSec Tools
|
|
2011-05-03
|
|
Front Accounting 2.3.4 - Cross-Site Request Forgery
|
1 |
WEB
|
AutoSec Tools
|
|
2011-05-03
|
|
Horizon Web Builder - 'fshow.php' SQL Injection
|
1 |
WEB
|
Iolo Morganwg
|
|
2011-05-02
|
|
Travel411 - SQL Injection
|
2 |
WEB
|
Caddy-Dz
|
|
2011-05-02
|
|
Exponent CMS 2.0 Beta 1.1 - Cross-Site Request Forgery (Add Administrator Account)
|
2 |
WEB
|
outlaw.dll
|
|
2011-05-02
|
|
Parnian Opendata CMS - SQL Injection
|
2 |
WEB
|
Alexander
|
|
2011-04-29
|
|
SOOP Portal Raven 1.0b - SQL Injection
|
2 |
WEB
|
Evil-Thinker
|
|
2011-04-29
|
|
phpGraphy 0.9.13b - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-04-28
|
|
kusaba x 0.9.1 - Multiple Vulnerabilities
|
2 |
WEB
|
Emilio Pinna
|
|
2011-04-28
|
|
eyeos 1.9.0.2 - Persistent Cross-Site Scripting Using Image Files
|
1 |
WEB
|
Alberto Ortega
|
|
2011-04-27
|
|
Symphony CMS 2.1.2 - Blind SQL Injection
|
2 |
WEB
|
Wireghoul
|
|
2011-04-26
|
|
Quick.CMS 3.0 - Cross-Site Request Forgery
|
2 |
WEB
|
^Xecuti0N3r
|
|
2011-04-26
|
|
Snom IP Phone Web Interface < 8 - Multiple Vulnerabilities
|
2 |
WEB
|
Yakir Wizman
|
|
2011-04-26
|
|
WordPress Plugin SermonBrowser 0.43 - SQL Injection
|
1 |
WEB
|
Ma3sTr0-Dz
|
|
2011-04-25
|
|
phpmychat plus 1.93 - Multiple Vulnerabilities
|
1 |
WEB
|
AutoSec Tools
|
|
2011-04-25
|
|
OrangeHRM 2.6.3 - 'PluginController.php' Local File Inclusion
|
2 |
WEB
|
AutoSec Tools
|
|
2011-04-25
|
|
mySeatXT 0.1781 - SQL Injection
|
2 |
WEB
|
AutoSec Tools
|
|
2011-04-24
|
|
SoftMP3 - SQL Injection
|
1 |
WEB
|
mArTi
|
|
2011-04-22
|
|
WordPress Plugin Ajax Category Dropdown 0.1.5 - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-04-22
|
|
Realmarketing CMS - Multiple SQL Injections
|
2 |
WEB
|
^Xecuti0N3r
|
|
2011-04-22
|
|
4Images 1.7.9 - Multiple Vulnerabilities
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2011-04-22
|
|
DynMedia Pro Web CMS 4.0 - Local File Disclosure
|
2 |
WEB
|
Mbah_Semar
|
|
2011-04-22
|
|
Web2Project 2.3 - SQL Injection
|
2 |
WEB
|
AutoSec Tools
|
|
2011-04-22
|
|
Dolibarr ERP/CRM 3.0.0 - Multiple Vulnerabilities
|
2 |
WEB
|
AutoSec Tools
|
|
2011-04-22
|
|
ZenPhoto 1.4.0.3 - x-forwarded-for HTTP Header Persistent Cross-Site Scripting
|
1 |
WEB
|
Saif
|
|
2011-04-22
|
|
360 Web Manager 3.0 - Multiple Vulnerabilities
|
1 |
WEB
|
Ignacio Garrido
|
|
2011-04-22
|
|
First Escort Marketing CMS - Multiple SQL Injections Vulnerabilities
|
1 |
WEB
|
NoNameMT
|
|
2011-04-20
|
|
SocialCMS 1.0.2 - Multiple Cross-Site Request Forgery Vulnerabilities
|
2 |
WEB
|
vir0e5
|
|
2011-04-20
|
|
docuFORM Mercury WebApp 6.16a/5.20 - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
LiquidWorm
|
|
2011-04-20
|
|
Ultimate eShop - Error-Based SQL Injection
|
1 |
WEB
|
Romka
|
|
2011-04-19
|
|
dalbum 1.43 - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-04-17
|
|
osPHPSite - SQL Injection
|
2 |
WEB
|
vir0e5
|
|
2011-04-16
|
|
Shape Web Solutions CMS - SQL Injection
|
2 |
WEB
|
Ashiyane Digital Security Team
|
|
2011-04-16
|
|
Bedder CMS - Blind SQL Injection
|
2 |
WEB
|
^Xecuti0N3r
|
|
2011-04-16
|
|
Blue Hat - Sensitive Database Disclosure / SQL Injection
|
2 |
WEB
|
^Xecuti0N3r
|
|
2011-04-16
|
|
SoftXMLCMS - Arbitrary File Upload
|
2 |
WEB
|
Alexander
|
|
2011-04-15
|
|
SQL-Ledger 2.8.33 - (Authenticated) Local File Inclusion / Edit
|
2 |
WEB
|
bitform
|
|
2011-04-15
|
|
TextAds 2.08 Script - Cross-Site Scripting
|
2 |
WEB
|
Ashiyane Digital Security Team
|
|
2011-04-15
|
|
cPassMan 1.82 - Arbitrary File Download
|
2 |
WEB
|
Sense of Security
|
|
2011-04-14
|
|
EZ-Shop 1.02 - Lateral SQL Injection
|
2 |
WEB
|
Osirys
|
|
2011-04-13
|
|
TinyBB 1.4 - Blind SQL Injection / Full Path Disclosure
|
2 |
WEB
|
swami
|
|
2011-04-11
|
|
K-Links - Link Directory Script SQL Injection
|
2 |
WEB
|
R3d-D3V!L
|
|
2011-04-10
|
|
Point Market System 3.1x vBulletin plugin - SQL Injection
|
2 |
WEB
|
Net.Edit0r
|
