|
2010-07-02
|
|
Pointter Social Network - Local File Inclusion
|
9 |
WEB
|
Sid3^effects
|
|
2010-07-02
|
|
MooreAdvice - 'productlist.asp' SQL Injection
|
11 |
WEB
|
Th3 RDX
|
|
2010-07-02
|
|
VGM Forbin - 'article.asp' SQL Injection
|
9 |
WEB
|
Th3 RDX
|
|
2010-07-02
|
|
Bit Weaver 2.7 - Local File Inclusion
|
11 |
WEB
|
John Leitch
|
|
2010-07-02
|
|
iScripts EasyBiller - Cross-Site Scripting
|
9 |
WEB
|
Sangteamtham
|
|
2010-07-02
|
|
iScripts CyberMatch 1.0 - Blind SQL Injection
|
12 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
iScripts ReserveLogic 1.0 - SQL Injection
|
10 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
iScripts EasySnaps 2.0 - Multiple SQL Injections
|
9 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
Interscan Web Security 5.0 - Persistent Cross-Site Scripting
|
10 |
WEB
|
Ivan Huertas
|
|
2010-07-01
|
|
SIDA University System - SQL Injection
|
9 |
WEB
|
K053
|
|
2010-07-01
|
|
Joomla! Component com_dateconverter 0.1 - SQL Injection
|
10 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-01
|
|
Oxygen2PHP 1.1.3 - 'forumdisplay.php' Blind SQL Injection
|
9 |
WEB
|
Dante90
|
|
2010-07-01
|
|
Oxygen2PHP 1.1.3 - 'post.php' Blind SQL Injection
|
13 |
WEB
|
Dante90
|
|
2010-07-01
|
|
Setiran CMS - Blind SQL Injection
|
10 |
WEB
|
Th3 RDX
|
|
2010-07-01
|
|
NinkoBB - Cross-Site Request Forgery
|
11 |
WEB
|
ADEO Security
|
|
2010-06-30
|
|
Ubiquity Nanostation5 (Air OS) - Remote Command Execution
|
10 |
WEB
|
emgent
|
|
2010-06-30
|
|
Golf Club Site - SQL Injection
|
11 |
WEB
|
JaMbA
|
|
2010-06-30
|
|
Specialist Bed and Breakfast Website - SQL Injection
|
11 |
WEB
|
JaMbA
|
|
2010-06-30
|
|
Oxygen2PHP 1.1.3 - 'member.php' SQL Injection
|
11 |
WEB
|
Dante90
|
|
2010-06-30
|
|
webERP 3.11.4 - Multiple Vulnerabilities
|
11 |
WEB
|
ADEO Security
|
|
2010-06-30
|
|
Joomla! Component com_wmtpic 1.0 - SQL Injection
|
10 |
WEB
|
RoAd_KiLlEr
|
|
2010-06-30
|
|
Joomla! Component Joomanager - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-30
|
|
Joomla! Component Gamesbox 1.0.2 - 'id' SQL Injection
|
11 |
WEB
|
v3n0m
|
|
2010-06-30
|
|
ShopCartDx 4.30 - 'products.php' Blind SQL Injection
|
11 |
WEB
|
Dante90
|
|
2010-06-30
|
|
PHP-Nuke 8.0 - SQL Injection
|
9 |
WEB
|
Dante90
|
|
2010-06-29
|
|
WebDM CMS - SQL Injection
|
11 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-06-29
|
|
LIOOSYS CMS - 'news.php' SQL Injection
|
11 |
WEB
|
GlaDiaT0R
|
|
2010-06-29
|
|
CubeCart PHP 4.3.x - 'shipkey' SQL Injection
|
12 |
WEB
|
Core Security
|
|
2010-06-29
|
|
Gekko CMS - SQL Injection
|
11 |
WEB
|
[]0iZy5
|
|
2010-06-29
|
|
PageDirector CMS - 'result.php' SQL Injection
|
11 |
WEB
|
v3n0m
|
|
2010-06-29
|
|
Allomani Super MultiMedia 2.5 - Cross-Site Request Forgery (Add Admin)
|
10 |
WEB
|
G0D-F4Th3r
|
|
2010-06-29
|
|
Allomani E-Store 1.0 - Cross-Site Request Forgery (Add Admin) (1)
|
10 |
WEB
|
G0D-F4Th3r
|
|
2010-06-29
|
|
YPNinc PHP Realty Script - 'docID' SQL Injection
|
9 |
WEB
|
v3n0m
|
|
2010-06-29
|
|
YPNinc JokeScript - 'ypncat_id' SQL Injection
|
11 |
WEB
|
v3n0m
|
|
2010-06-29
|
|
PHPDirector 0.30 - 'videos.php' SQL Injection
|
9 |
WEB
|
Mr-AbdoX
|
|
2010-06-29
|
|
Ecomat CMS - SQL Injection
|
11 |
WEB
|
High-Tech Bridge SA
|
|
2010-06-28
|
|
Applicure dotDefender 4.01-3 - Persistent Cross-Site Scripting
|
11 |
WEB
|
EnableSecurity
|
|
2010-06-28
|
|
Subdreamer Pro 3.0.4 - CMS Upload
|
12 |
WEB
|
Battousai
|
|
2010-06-28
|
|
CMSQLite / CMySQLite 1.3 - Cross-Site Request Forgery
|
11 |
WEB
|
ADEO Security
|
|
2010-06-28
|
|
I-net Multi User Email Script - SQL Injection
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-28
|
|
Netartmedia iBoutique.MALL - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-28
|
|
PageDirector CMS - Multiple Vulnerabilities
|
9 |
WEB
|
Tr0y-x
|
|
2010-06-28
|
|
PTCPay GEN4 - 'buyupg.php' SQL Injection
|
9 |
WEB
|
Dark.Man
|
|
2010-06-28
|
|
iNet Online Community - Blind SQL Injection
|
8 |
WEB
|
JaMbA
|
|
2010-06-27
|
|
Swoopo Clone 2010 - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-27
|
|
I-Net MLM Script Engine - SQL Injection
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-27
|
|
i-netsolution Job Search Engine - SQL Injection
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-27
|
|
Bilder Upload Script Datei Upload 1.09 - Arbitrary File Upload
|
8 |
WEB
|
Mr.Benladen
|
|
2010-06-27
|
|
2DayBiz Photo Sharing Script - SQL Injection (2)
|
8 |
WEB
|
Easy Laster
|
|
2010-06-27
|
|
2DayBiz ybiz Freelance Script - SQL Injection
|
8 |
WEB
|
Easy Laster
|
|
2010-06-27
|
|
2DayBiz ybiz Polls Script - SQL Injection
|
9 |
WEB
|
Easy Laster
|
|
2010-06-27
|
|
2DayBiz Matrimonial Script - 'smartresult.php' SQL Injection
|
8 |
WEB
|
Easy Laster
|
|
2010-06-26
|
|
Speedy 1.0 - Arbitrary File Upload
|
8 |
WEB
|
ViRuS Qalaa
|
|
2010-06-26
|
|
Joomla! Component jesectionfinder - Local File Inclusion
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-26
|
|
Joomla! Component com_jejob - Local File Inclusion
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-26
|
|
Joomla! Component jeeventcalendar - Local File Inclusion
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-26
|
|
Joomla! Component JE Media Player - Local File Inclusion
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-26
|
|
Joomla! Component JE Awd Song - Persistent Cross-Site Scripting
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-26
|
|
PHP-Nuke 8.2 - Arbitrary File Upload
|
9 |
WEB
|
Net.Edit0r
|
|
2010-06-26
|
|
WordPress Plugin Cimy Counter - Full Path Disclosure / Redirector / Cross-Site Scripting / HTTP Resp
|
9 |
WEB
|
sebug
|
|
2010-06-26
|
|
Clicker CMS - Blind SQL Injection
|
8 |
WEB
|
hacker@sr.gov.yu
|
|
2010-06-26
|
|
Joomla! Component com_sef - Remote File Inclusion
|
9 |
WEB
|
Li0n-PaL
|
|
2010-06-25
|
|
Joomla! Component jesubmit 1.4 - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-25
|
|
snipe Gallery Script - SQL Injection
|
11 |
WEB
|
dev!l ghost
|
|
2010-06-25
|
|
2DayBiz B2B Portal Script - 'selling_buy_leads1.php' SQL Injection
|
11 |
WEB
|
r45c4l
|
|
2010-06-25
|
|
ARSC Really Simple Chat 3.3 - Remote File Inclusion / Cross-Site Scripting
|
11 |
WEB
|
Zer0 Thunder
|
|
2010-06-25
|
|
Allomani Songs & Clips 2.7.0 - Cross-Site Request Forgery (Add Admin)
|
11 |
WEB
|
G0D-F4Th3rG0D-F4Th3r
|
|
2010-06-25
|
|
2DayBiz - Multiple SQL Injections
|
11 |
WEB
|
Sangteamtham
|
|
2010-06-25
|
|
2DayBiz Matrimonial Script - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
Sangteamtham
|
|
2010-06-24
|
|
Big Forum - 'forum.php?id' SQL Injection
|
9 |
WEB
|
JaMbA
|
|
2010-06-24
|
|
Big Forum 5.2 - Arbitrary File Upload / Local File Inclusion
|
8 |
WEB
|
Zer0 Thunder
|
|
2010-06-24
|
|
PHPortal 1.2 - 'gunaysoft.php' Remote File Inclusion
|
8 |
WEB
|
Ma3sTr0-Dz
|
|
2010-06-24
|
|
2DayBiz B2B Portal Script - SQL Injection
|
9 |
WEB
|
JaMbA
|
|
2010-06-24
|
|
ActiveCollab 2.3.0 - Local File Inclusion / Directory Traversal
|
12 |
WEB
|
Jose Carlos de Arriba
|
|
2010-06-24
|
|
AbleDating script - SQL Injection
|
8 |
WEB
|
JaMbA
|
|
2010-06-24
|
|
2DayBiz Job Site Script - SQL Injection
|
8 |
WEB
|
Sangteamtham
|
|
2010-06-24
|
|
2DayBiz The Web Template Software - SQL Injection / Cross-Site Scripting
|
11 |
WEB
|
Sangteamtham
|
|
2010-06-24
|
|
2DayBiz Real Estate Portal - 'viewpropertydetails.php' SQL Injection
|
10 |
WEB
|
Sangteamtham
|
|
2010-06-24
|
|
2DayBiz Video Community Portal - 'user-profile.php' SQL Injection
|
10 |
WEB
|
Sangteamtham
|
|
2010-06-24
|
|
Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion (2)
|
10 |
WEB
|
MISTERFRIBO
|
|
2010-06-24
|
|
AdaptCMS 2.0.0 Beta - 'init.php' Remote File Inclusion
|
10 |
WEB
|
v3n0m
|
|
2010-06-24
|
|
2DayBiz Photo Sharing Script - SQL Injection (1)
|
10 |
WEB
|
JaMbA
|
|
2010-06-24
|
|
OpenEMR Electronic Medical Record Software 3.2 - Multiple Vulnerabilities
|
10 |
WEB
|
David Shaw
|
|
2010-06-23
|
|
2DayBiz Freelance Script - SQL Injection
|
11 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
2DayBiz Matrimonial Script - SQL Injection
|
12 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
Custom Business Card script - SQL Injection
|
10 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
2DayBiz MLM Script - SQL Injection
|
11 |
WEB
|
JaMbA
|
|
2010-06-23
|
|
Interscan Web Security 5.0 - Arbitrary File Upload / Privilege Escalation
|
8 |
WEB
|
Ivan Huertas
|
|
2010-06-23
|
|
Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download
|
9 |
WEB
|
Ivan Huertas
|
|
2010-06-23
|
|
PishBini Footbal - Cross-Site Scripting / SQL Injection
|
10 |
WEB
|
indoushka
|
|
2010-06-23
|
|
Software Index - Arbitrary File Upload
|
11 |
WEB
|
indoushka
|
|
2010-06-23
|
|
Joomla! Component JE Ajax Event Calendar 1.0.5 - SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-23
|
|
PreProject Multi-Vendor Shopping Malls - 'products.php?sid' SQL Injection
|
11 |
WEB
|
CoBRa_21
|
|
2010-06-23
|
|
Boat Classifieds - 'printdetail.asp?Id' SQL Injection
|
11 |
WEB
|
CoBRa_21
|
|
2010-06-22
|
|
K-Search - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Pre PHP Classifieds - SQL Injection
|
9 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Softbiz PHP FAQ Script - Blind SQL Injection
|
9 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Boat Classifieds - SQL Injection
|
9 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
PHP Event Calendar 1.5 - Multiple Vulnerabilities
|
10 |
WEB
|
cp77fk4r
|
|
2010-06-22
|
|
PreProject Multi-Vendor Shopping Malls - SQL Injection
|
9 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Softbiz Resource Repository Script - Blind SQL Injection
|
9 |
WEB
|
Sangteamtham
|
|
2010-06-22
|
|
Greeting card 1.1 - SQL Injection
|
8 |
WEB
|
Net.Edit0r
|
|
2010-06-22
|
|
Alpin CMS - 'e4700.asp?id' SQL Injection
|
8 |
WEB
|
CoBRa_21
|
|
2010-06-22
|
|
Joomla! Component Picasa2Gallery 1.2.8 - Local File Inclusion
|
8 |
WEB
|
kaMtiEz
|
|
2010-06-22
|
|
Cornerstone CMS - SQL Injection
|
8 |
WEB
|
Th3 RDX
|
|
2010-06-22
|
|
Joomla! Component com_ybggal 1.0 - 'catid' SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-06-22
|
|
Job Search Engine Script - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Social Community Script - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Top Sites Script - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Webring Script - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Hot or Not Picture Rating Script - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Classifieds Script - 'rate' SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Video Community portal - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Job Search Script - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
Online Classified System Script - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-22
|
|
The Uploader 2.0.4 - Remote File Disclosure
|
10 |
WEB
|
Xa7m3d
|
|
2010-06-21
|
|
Linker IMG 1.0 - Remote File Inclusion
|
10 |
WEB
|
Sn!pEr.S!Te Hacker
|
|
2010-06-21
|
|
Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities
|
12 |
WEB
|
jdc
|
|
2010-06-21
|
|
Alpin CMS 1.0 - SQL Injection
|
12 |
WEB
|
Th3 RDX
|
|
2010-06-21
|
|
PHPWCMS 1.4.5 r398 - Cross-Site Request Forgery
|
9 |
WEB
|
Jeremiah Talamantes
|
|
2010-06-21
|
|
myUPB 2.2.6 - Multiple Vulnerabilities
|
8 |
WEB
|
ALTBTA
|
|
2010-06-21
|
|
Joomla! Component com_jomestate - Remote File Inclusion
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Joomla! Component com_community - Persistent Cross-Site Scripting
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
G.CMS Generator - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Saffa Tunes CMS - 'news.php' SQL Injection
|
9 |
WEB
|
Th3 RDX
|
