|
2010-06-24
|
|
Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion (2)
|
2 |
WEB
|
MISTERFRIBO
|
|
2010-06-24
|
|
AdaptCMS 2.0.0 Beta - 'init.php' Remote File Inclusion
|
1 |
WEB
|
v3n0m
|
|
2010-06-24
|
|
2DayBiz Photo Sharing Script - SQL Injection (1)
|
2 |
WEB
|
JaMbA
|
|
2010-06-24
|
|
OpenEMR Electronic Medical Record Software 3.2 - Multiple Vulnerabilities
|
2 |
WEB
|
David Shaw
|
|
2010-06-23
|
|
2DayBiz Freelance Script - SQL Injection
|
0 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
2DayBiz Matrimonial Script - SQL Injection
|
2 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
Custom Business Card script - SQL Injection
|
2 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
2DayBiz MLM Script - SQL Injection
|
2 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
Interscan Web Security 5.0 - Arbitrary File Upload / Privilege Escalation
|
2 |
WEB
|
Ivan Huertas
|
|
2010-06-23
|
|
Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download
|
1 |
WEB
|
Ivan Huertas
|
|
2010-06-23
|
|
PishBini Footbal - Cross-Site Scripting / SQL Injection
|
2 |
WEB
|
indoushka
|
|
2010-06-23
|
|
Software Index - Arbitrary File Upload
|
2 |
WEB
|
indoushka
|
|
2010-06-23
|
|
Joomla! Component JE Ajax Event Calendar 1.0.5 - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-23
|
|
PreProject Multi-Vendor Shopping Malls - 'products.php?sid' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2010-06-23
|
|
Boat Classifieds - 'printdetail.asp?Id' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2010-06-22
|
|
K-Search - SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Pre PHP Classifieds - SQL Injection
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Softbiz PHP FAQ Script - Blind SQL Injection
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Boat Classifieds - SQL Injection
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
PHP Event Calendar 1.5 - Multiple Vulnerabilities
|
1 |
WEB
|
cp77fk4r
|
|
2010-06-22
|
|
PreProject Multi-Vendor Shopping Malls - SQL Injection
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Softbiz Resource Repository Script - Blind SQL Injection
|
1 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Greeting card 1.1 - SQL Injection
|
1 |
WEB
|
Net.Edit0r
|
|
2010-06-22
|
|
Alpin CMS - 'e4700.asp?id' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2010-06-22
|
|
Joomla! Component Picasa2Gallery 1.2.8 - Local File Inclusion
|
1 |
WEB
|
kaMtiEz
|
|
2010-06-22
|
|
Cornerstone CMS - SQL Injection
|
1 |
WEB
|
Th3 RDX
|
|
2010-06-22
|
|
Joomla! Component com_ybggal 1.0 - 'catid' SQL Injection
|
1 |
WEB
|
v3n0m
|
|
2010-06-22
|
|
Job Search Engine Script - SQL Injection
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Social Community Script - SQL Injection
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Top Sites Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Webring Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Hot or Not Picture Rating Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Classifieds Script - 'rate' SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Video Community portal - SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Job Search Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Online Classified System Script - SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
The Uploader 2.0.4 - Remote File Disclosure
|
1 |
WEB
|
Xa7m3d
|
|
2010-06-21
|
|
Linker IMG 1.0 - Remote File Inclusion
|
1 |
WEB
|
Sn!pEr.S!Te Hacker
|
|
2010-06-21
|
|
Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
jdc
|
|
2010-06-21
|
|
Alpin CMS 1.0 - SQL Injection
|
0 |
WEB
|
Th3 RDX
|
|
2010-06-21
|
|
PHPWCMS 1.4.5 r398 - Cross-Site Request Forgery
|
1 |
WEB
|
Jeremiah Talamantes
|
|
2010-06-21
|
|
myUPB 2.2.6 - Multiple Vulnerabilities
|
1 |
WEB
|
ALTBTA
|
|
2010-06-21
|
|
Joomla! Component com_jomestate - Remote File Inclusion
|
1 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Joomla! Component com_community - Persistent Cross-Site Scripting
|
1 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
G.CMS Generator - SQL Injection
|
1 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Saffa Tunes CMS - 'news.php' SQL Injection
|
1 |
WEB
|
Th3 RDX
|
|
2010-06-20
|
|
Joomla! Component com_eportfolio - Arbitrary File Upload
|
1 |
WEB
|
Sid3^effects
|
|
2010-06-20
|
|
Shareasale Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
OroHYIP - SQL Injection
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
PHP Calendars Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
Overstock Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
iBoutique - 'page' SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
SimpleAssets - Authentication Bypass / Cross-Site Scripting
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-19
|
|
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
|
2 |
WEB
|
Luis Santana
|
|
2010-06-19
|
|
SnowCade 3.0 - SQL Injection
|
2 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Elite Gaming Ladders 3.5 - 'ladder[id]' SQL Injection
|
1 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Joomla! Component RSComments 1.0.0 - Persistent Cross-Site Scripting
|
1 |
WEB
|
jdc
|
|
2010-06-19
|
|
UK One Media CMS - 'id' Error-Based SQL Injection
|
1 |
WEB
|
LiquidWorm
|
|
2010-06-18
|
|
KubeLance 1.7.6 - 'profile.php' SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Shopping Cart Script with Affiliate Program - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Banner Management Script - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
MarketSaz - Arbitrary File Upload
|
1 |
WEB
|
NetQurd
|
|
2010-06-18
|
|
Joomla! Component com_listbingo 1.3 - Multiple Vulnerabilities
|
1 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities
|
1 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
|
1 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component com_joomdocs - Cross-Site Scripting
|
1 |
WEB
|
Sid3^effects
|
|
2010-06-18
|
|
Spring Framework - Arbitrary code Execution
|
2 |
WEB
|
Meder Kydyraliev
|
|
2010-06-17
|
|
PHP-Nuke Module print 6.0 - 'print&sid' SQL Injection
|
2 |
WEB
|
Gamoscu
|
|
2010-06-17
|
|
Havij 1.10 - Persistent Cross-Site Scripting
|
1 |
WEB
|
hexon
|
|
2010-06-17
|
|
Live CMS - SQL Injection
|
2 |
WEB
|
ahwak2000
|
|
2010-06-17
|
|
Planet 1.1 - Cross-Site Request Forgery (Add Admin)
|
2 |
WEB
|
G0D-F4Th3r
|
|
2010-06-17
|
|
Ananda Image Gallery - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
PenPals - Authentication Bypass
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Easy Travel Portal - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Pithcms 0.9.5 - Local File Inclusion
|
2 |
WEB
|
sh00t0ut
|
|
2010-06-17
|
|
DMSEasy 0.9.7 - 'FCKeditor' Arbitrary File Upload
|
1 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Real Estate - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-16
|
|
2DayBiz Online Classified System - SQL Injection / Cross-Site Scripting
|
2 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - 'FCKeditor' Arbitrary File Upload
|
2 |
WEB
|
eidelweiss
|
|
2010-06-16
|
|
PHPAuctionSystem - Arbitrary File Upload
|
2 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
AspTR EXtended - Cross-Site Request Forgery
|
2 |
WEB
|
FreWaL
|
|
2010-06-16
|
|
EZPX Photoblog 1.2 Beta - Remote File Inclusion
|
1 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - Remote File Inclusion
|
2 |
WEB
|
sh00t0ut
|
|
2010-06-15
|
|
IISWorks FileMan - fileman.mdb Remote User Database Disclosure
|
2 |
WEB
|
j0fer
|
|
2010-06-15
|
|
Acuity CMS 2.7.1 - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Restaurant Listing with Online Ordering - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Business Classified Listing - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
SAS Hotel Management System - 'notfound' SQL Injection
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Pre Job Board Pro - Authentication Bypass
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Smart ASP Survey - Cross-Site Scripting / SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-14
|
|
E-Book Store - SQL Injection
|
1 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Joke Website Script - SQL Injection / Cross-Site Scripting
|
2 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Daily Inspirational Quotes Script - SQL Injection
|
1 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Membership Site Script - SQL Injection
|
1 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Lyrics Script - SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
Valentin
|
|
2010-06-13
|
|
Pre Classified Listing - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Real-time ASP Calendar - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Calendar - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Document Library - SQL Injection
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Eyeland Studio Inc. - 'game.php' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'calbums' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'download.php' Local File Disclosure
|
1 |
WEB
|
mat
|
|
2010-06-13
|
|
Eyeland Studio Inc. - SQL Injection
|
0 |
WEB
|
Mr.P3rfekT
|
|
2010-06-13
|
|
UTStats - Cross-Site Scripting / SQL Injection / Full Path Disclosure
|
1 |
WEB
|
LuM Member
|
|
2010-06-13
|
|
PHPplanner PHP Planner 0.4 - Multiple Vulnerabilities
|
1 |
WEB
|
cp77fk4r
|
|
2010-06-12
|
|
Yamamah 1.0 - SQL Injection
|
1 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
Infront - SQL Injection
|
1 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
phpplanner - Cross-Site Scripting / SQL Injection
|
1 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
BDSMIS TraX with Payroll - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
Yamamah - 'news' SQL Injection / Source Code Disclosure
|
0 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
Collabtive 0.6.3 - Multiple Vulnerabilities
|
0 |
WEB
|
DNX
|
|
2010-06-12
|
|
BrightSuite Groupware - SQL Injection
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Web Visitor Analyst - Authentication Bypass
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Mass Mailer - Authentication Bypass
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Case Manager - Authentication Bypass
|
0 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin 2.2 - 'FCKeditor' Arbitrary File Upload
|
1 |
WEB
|
eidelweiss
|
|
2010-06-11
|
|
Parallels System Automation (PSA) - Local File Inclusion
|
1 |
WEB
|
Pouya Daneshmand
|
|
2010-06-11
|
|
ardeacore 2.2 - Remote File Inclusion
|
0 |
WEB
|
cr4wl3r
|
|
2010-06-11
|
|
Full Site for Restaurant - SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin - Multiple Vulnerabilities
|
1 |
WEB
|
hc0
|
|
2010-06-11
|
|
Site to Store Automobile - Motorcycle Boat SQL Injection
|
1 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Development Site Professional Liberal - Company Institutional SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Site for Real Estate - Brokers SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
E-PHP B2B Marketplace - Multiple Vulnerabilities
|
2 |
WEB
|
MizoZ
|
|
2010-06-10
|
|
Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection
|
2 |
WEB
|
L0rd CrusAd3r
|
