Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2010-11-11   E-Xoopport 3.1 - 'display.php?katid' SQL Injection 2 WEB Vis Intelligendi
2010-11-11   XT:Commerce < 3.04 SP2.1 - Cross-Site Scripting 2 WEB Philipp Niedziela
2010-11-11   Landesk - OS command Injection 1 WEB Aureliano Calvo
2010-11-10   eBlog 1.7 - Multiple SQL Injections 2 WEB Salvatore Fresta
2010-11-10   FCKEditor Core 2.x 2.4.3 - 'FileManager upload.php' Arbitrary File Upload 2 WEB grabz
2010-11-09   IBM OmniFind - Cross-Site Request Forgery 2 WEB Fatih Kilic
2010-11-09   osCommerce 2.2 - Cross-Site Request Forgery 2 WEB daandeveloper33
2010-11-09   Joomla! Component com_img - Local File Inclusion 2 WEB CoBRa_21
2010-11-09   Joomla! Component com_markt - SQL Injection 2 WEB CoBRa_21
2010-11-09   Joomla! Component btg_oglas - HTML / Cross-Site Scripting Injection 2 WEB CoBRa_21
2010-11-09   Joomla! Component JQuarks4s 1.0.0 - Blind SQL Injection 2 WEB Salvatore Fresta
2010-11-09   Woltlab Burning Board Userlocator 2.5 - SQL Injection 2 WEB Easy Laster
2010-11-08   Joomla! Component ProDesk 1.5 - Local File Inclusion 2 WEB d3v1l
2010-11-08   Seo Panel 2.1.0 - Critical File Disclosure 2 WEB MaXe
2010-11-08   Joomla! Component com_clanlist - SQL Injection 2 WEB CoBRa_21
2010-11-08   xt:Commerce Shopsoftware 3/4 - 'FCKeditor' Arbitrary File Upload 1 WEB Net.Edit0r
2010-11-08   Joomla! Component com_clan - SQL Injection 2 WEB AtT4CKxT3rR0r1ST
2010-11-08   Joomla! Component Cookex Agency CKForms - Local File Inclusion 1 WEB ALTBTA
2010-11-07   Punbb 1.3.4 - Multiple Full Path Disclosures 2 WEB SYSTEM_OVERIDE
2010-11-07   DeluxeBB 1.3 - Private Information Disclosure 2 WEB Vis Intelligendi
2010-11-07   ASPilot Pilot Cart 7.3 - Multiple Vulnerabilities 2 WEB Ariko-Security
2010-11-06   phpCow 2.1 - File Inclusion 2 WEB ViRuS_HiMa
2010-11-06   Joomla! Component com_forme 1.0.5 - Multiple Vulnerabilities 2 WEB jdc
2010-11-06   Zeeways Adserver - Multiple Vulnerabilities 2 WEB Valentin
2010-11-06   MassMirror Uploader - Remote File Inclusion 2 WEB ViciOuS
2010-11-06   Joomla! Component com_dcnews - Local File Inclusion 2 WEB Th3 RDX
2010-11-06   Joomla! Component com_connect - Local File Inclusion 2 WEB Th3 RDX
2010-11-05   Joomla! Component ccInvoices - SQL Injection 2 WEB FL0RiX
2010-11-04   JBI CMS - SQL Injection 2 WEB Cru3l.b0y
2010-11-04   MiniBB 2.5 - SQL Injection 2 WEB High-Tech Bridge SA
2010-11-04   JAF CMS 4.0 rc2 - Multiple Vulnerabilities 1 WEB High-Tech Bridge SA
2010-11-04   SweetRice 0.6.7 - Multiple Vulnerabilities 2 WEB High-Tech Bridge SA
2010-11-04   eoCMS 0.9.04 - Multiple Vulnerabilities 2 WEB High-Tech Bridge SA
2010-11-03   Zen Cart 1.3.9h - Local File Inclusion 2 WEB Salvatore Fresta
2010-11-03   digiSHOP 2.0.2 - SQL Injection 0 WEB Silic0n
2010-11-03   eLouai's Force Download Script - Arbitrary Local File Download 2 WEB v1R00Z
2010-11-02   Dolphin 7.0.3 - Multiple Vulnerabilities 1 WEB anT!-Tr0J4n
2010-11-02   Site2Nite Business eListings - SQL Injection 2 WEB L0rd CrusAd3r
2010-11-02   Digger Solutions NewsLetter Open Source - SQL Injection 2 WEB L0rd CrusAd3r
2010-11-02   Online Work Order System (OWOS) Professional Edition - Authentication Bypass 2 WEB L0rd CrusAd3r
2010-11-02   Comrie Software Pay Roll Time Sheet & Punch Card - Authentication Bypass 2 WEB L0rd CrusAd3r
2010-11-02   Site2Ntite Vacation Rental (VRBO) Listings - SQL Injection 2 WEB L0rd CrusAd3r
2010-11-02   Azaronline Design - SQL Injection 2 WEB XroGuE
2010-11-02   MetInfo 3.0 - 'FCKeditor' Arbitrary File Upload 1 WEB [sh3n]
2010-11-02   Webmedia Explorer 6.13.1 - Persistent Cross-Site Scripting 2 WEB High-Tech Bridge SA
2010-11-02   MemHT Portal 4.0.1 - Persistent Cross-Site Scripting 2 WEB High-Tech Bridge SA
2010-11-02   Kandidat CMS 1.4.2 - Persistent Cross-Site Scripting 2 WEB High-Tech Bridge SA
2010-11-01   douran portal 3.9.7.55 - Multiple Vulnerabilities 2 WEB ITSecTeam
2010-11-01   Collabtive 0.65 - SQL Injection 2 WEB Anatolia Security
2010-11-01   XAMPP 1.7.3 - Multiple Vulnerabilities 2 WEB TheLeader
2010-10-31   Auto CMS 1.8 - Remote Code Execution 2 WEB Giuseppe D'Inverno
2010-10-31   Joomla! Component Sponsor Wall 1.1 - SQL Injection 2 WEB FL0RiX
2010-10-31   Joomla! Component Pulse Infotech Flip Wall - SQL Injection 2 WEB FL0RiX
2010-10-31   MetInfo 3.0 - PHP Code Injection 2 WEB Beach
2010-10-31   MetInfo 2.0 - PHP Code Injection 1 WEB Beach
2010-10-30   Simpli Easy (AFC Simple) NewsLetter 4.2 - Cross-Site Scripting / Information Leakage 2 WEB p0deje
2010-10-30   Zoopeer 0.1/0.2 - 'FCKeditor' Arbitrary File Upload 2 WEB Net.Edit0r
2010-10-30   Joomla! Component com_jfuploader < 2.12 - Arbitrary File Upload 2 WEB Setr0nix
2010-10-29   mygamingladder MGL Combo System 7.5 - 'game.php' SQL Injection 2 WEB Easy Laster
2010-10-29   PHPKit 1.6.1 R2 - 'overview.php' SQL Injection 2 WEB Easy Laster
2010-10-28   Pub-Me CMS - Blind SQL Injection 2 WEB H4f
2010-10-28   TFTgallery 0.13.1 - Local File Inclusion 2 WEB Havok
2010-10-28   RoSPORA 1.5.0 - Remote PHP Code Injection 1 WEB EgiX
2010-10-27   mycart 2.0 - Multiple Vulnerabilities 2 WEB Salvatore Fresta
2010-10-27   ACC IMoveis 4.0 - SQL Injection 2 WEB EraGoN
2010-10-27   Alstrasoft e-Friends 4.96 - Multiple Vulnerabilities 2 WEB Salvatore Fresta
2010-10-27   BlogBird Platform - Multiple Cross-Site Scripting Vulnerabilities 2 WEB High-Tech Bridge SA
2010-10-27   Zomplog 3.9 - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities 2 WEB High-Tech Bridge SA
2010-10-27   NinkoBB 1.3RC5 - Cross-Site Scripting 2 WEB High-Tech Bridge SA
2010-10-27   Zomplog 3.9 - Cross-Site Request Forgery 2 WEB High-Tech Bridge SA
2010-10-27   BloofoxCMS Registration Plugin - SQL Injection 2 WEB High-Tech Bridge SA
2010-10-27   Energine CMS - SQL Injection 2 WEB High-Tech Bridge SA
2010-10-27   BloofoxCMS 0.3.5 - Information Disclosure 2 WEB High-Tech Bridge SA
2010-10-27   MyBB 1.6 - Full Path Disclosure 2 WEB High-Tech Bridge SA
2010-10-27   Novaboard 1.1.4 - Local File Inclusion 2 WEB High-Tech Bridge SA
2010-10-27   DZCP (deV!L_z Clanportal) 1.5.4 - Local File Inclusion 2 WEB High-Tech Bridge SA
2010-10-27   phpLiterAdmin 1.0 RC1 - Authentication Bypass 1 WEB High-Tech Bridge SA
2010-10-27   DBHcms 1.1.4 - 'dbhcms_user/SearchString' SQL Injection 1 WEB High-Tech Bridge SA
2010-10-26   BigACE 2.7.3 - Cross-Site Request Forgery (Change Admin Password) 2 WEB Sweet
2010-10-25   Plesk Small Business Manager 10.2.0 and Site Editor - Multiple Vulnerabilities 2 WEB David Hoyt
2010-10-25   Jamb - Cross-Site Request Forgery (Add a Post) 0 WEB Stoke
2010-10-24   DBHcms 1.1.4 - 'dbhcms_pid' SQL Injection 1 WEB ZonTa
2010-10-24   Pulse Pro 1.4.3 - Persistent Cross-Site Scripting 0 WEB Th3 RDX
2010-10-21   Squirrelcart PRO 3.0.0 - Blind SQL Injection 1 WEB Salvatore Fresta
2010-10-21   sNews CMS - Multiple Cross-Site Scripting Vulnerabilities 1 WEB High-Tech Bridge SA
2010-10-20   Oracle Sun Java System Web Server - HTTP Response Splitting 2 WEB Roberto Suggi Liverani
2010-10-19   phpCheckZ 1.1.0 - Blind SQL Injection 2 WEB Salvatore Fresta
2010-10-19   Event Ticket Portal Script Admin Password Change - Cross-Site Request Forgery 2 WEB KnocKout
2010-10-19   Travel Portal Script - Cross-Site Request Forgery (Admin Password Change) 2 WEB KnocKout
2010-10-18   Brooky CubeCart 2.0.1 - SQL Injection 2 WEB X_AviaTique_X
2010-10-18   GeekLog 1.7.0 - 'FCKeditor' Arbitrary File Upload 2 WEB Kubanezi AHG
2010-10-18   411cc - Multiple SQL Injections 2 WEB KnocKout
2010-10-17   Kisisel Radyo Script - Multiple Vulnerabilities 2 WEB FuRty
2010-10-17   Tastydir 1.2 (1216) - Multiple Vulnerabilities 2 WEB R
2010-10-17   WikiWebHelp 0.3.3 - Insecure Cookie Handling 2 WEB FuRty
2010-10-15   KCFinder 2.2 - Arbitrary File Upload 1 WEB saudi0hacker
2010-10-14   Xlrstats 2.0.1 - SQL Injection 1 WEB Sky4
2010-10-14   Data/File - upload and Management Arbitrary File Upload 1 WEB saudi0hacker
2010-10-13   Exponent CMS 0.97 - Multiple Vulnerabilities 1 WEB LiquidWorm
2010-10-12   Collabtive 0.65 - Multiple Vulnerabilities 1 WEB Anatolia Security
2010-10-12   WikiWebHelp 0.3.3 - Cross-Site Request Forgery 1 WEB Yoyahack
2010-10-12   AdaptCMS 2.0.1 Beta - Remote File Inclusion (Metasploit) 1 WEB v3n0m
2010-10-11   BaconMap 1.0 - Local File Disclosure 0 WEB John Leitch
2010-10-11   BaconMap 1.0 - SQL Injection 1 WEB John Leitch
2010-10-11   OrangeHRM 2.6.0.1 - Local File Inclusion 1 WEB ZonTa
2010-10-10   Site2Nite Auto e-Manager - SQL Injection 1 WEB KnocKout
2010-10-10   PHP-Fusion Mod Mg User Fotoalbum 1.0.1 - SQL Injection 1 WEB Easy Laster
2010-10-09   VideoDB 3.0.3 - Multiple Vulnerabilities 1 WEB Valentin
2010-10-09   Joomla! Component JS Calendar 1.5.1 - Multiple Vulnerabilities 1 WEB Salvatore Fresta
2010-10-09   Chipmunk Pwngame - Multiple SQL Injections 1 WEB KnocKout
2010-10-09   Joomla! Component Community Builder Enhanced (CBE) 1.4.8/1.4.9/1.4.10 - Local File Inclusion / Remot 1 WEB Delf Tonder
2010-10-08   Flex Timesheet - Authentication Bypass 1 WEB KnocKout
2010-10-08   xWeblog 2.2 - 'arsiv.asp?tarih' SQL Injection 1 WEB ZoRLu
2010-10-07   xWeblog 2.2 - 'oku.asp?makale_id' SQL Injection 1 WEB KnocKout
2010-10-07   Feindura File Manager 1.0(rc) - Arbitrary File Upload 1 WEB KnocKout
2010-10-05   Cag CMS 0.2 - Cross-Site Scripting / Blind SQL Injection 1 WEB Shamus
2010-10-05   SPAW Editor 2.0.8.1 - Local File Inclusion 2 WEB soorakh kos
2010-10-05   CuteNews - 'page' Local File Inclusion 1 WEB eidelweiss
2010-10-04   Uebimiau Webmail 3.2.0-2.0 - Local File Inclusion 3 WEB blake
2010-10-04   Aspect Ratio CMS - Blind SQL Injection 2 WEB Stephan Sattler
2010-10-04   DNET Live-Stats 0.8 - Local File Inclusion 2 WEB blake
2010-10-04   FAQMasterFlex 1.2 - SQL Injection 1 WEB cyb3r.anbu
2010-10-04   Cilem Haber 1.4.4 (Tr) - Database Disclosure 2 WEB ZoRLu
2010-10-03   Aprox CMS Engine 6.0 - Multiple Vulnerabilities 2 WEB Stephan Sattler
2010-10-03   TinyMCE MCFileManager 2.1.2 - Arbitrary File Upload 1 WEB Hackeri-AL