|
2010-02-17
|
|
intuitive - 'form.php' SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
Joomla! Component com_acprojects - SQL Injection
|
7 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
Joomla! Component com_acstartseite - SQL Injection
|
8 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-16
|
|
Limny 2.0 - Cross-Site Request Forgery (Create Admin User)
|
11 |
WEB
|
Luis Santana
|
|
2010-02-16
|
|
Limny 2.0 - Cross-Site Request Forgery (Change Email and Password)
|
9 |
WEB
|
Luis Santana
|
|
2010-02-16
|
|
SongForever.com Clone - Arbitrary File Upload
|
10 |
WEB
|
indoushka
|
|
2010-02-16
|
|
Mambo Component 'com_acnews' - 'id' SQL Injection
|
10 |
WEB
|
Zero Bits & Xzit3
|
|
2010-02-16
|
|
Pogodny CMS - SQL Injection
|
9 |
WEB
|
Ariko-Security
|
|
2010-02-15
|
|
microUpload - Arbitrary File Upload
|
11 |
WEB
|
Phenom
|
|
2010-02-15
|
|
Joomla! Component com_hdvideoshare - SQL Injection
|
11 |
WEB
|
snakespc
|
|
2010-02-15
|
|
Joomla! Component com_joomportfolio - Blind Injection
|
9 |
WEB
|
snakespc
|
|
2010-02-15
|
|
blog ink - Bypass Setting
|
9 |
WEB
|
indoushka
|
|
2010-02-15
|
|
CoffieNet CMS - Admin Bypass
|
8 |
WEB
|
indoushka
|
|
2010-02-15
|
|
Dodo Upload 1.3 - Arbitrary File Upload (Bypass)
|
8 |
WEB
|
indoushka
|
|
2010-02-15
|
|
WordPress Plugin Copperleaf Photolog 0.16 - SQL Injection
|
8 |
WEB
|
kaMtiEz
|
|
2010-02-15
|
|
superengine CMS (Custom Pack) - SQL Injection
|
9 |
WEB
|
10n1z3d
|
|
2010-02-15
|
|
Généré par KDPics 1.18 - Remote Add Admin
|
8 |
WEB
|
snakespc
|
|
2010-02-14
|
|
Katalog Stron Hurricane 1.3.5 - Remote File Inclusion / SQL Injection
|
9 |
WEB
|
kaMtiEz
|
|
2010-02-14
|
|
File Upload Manager 1.3 - Web Shell File Upload
|
8 |
WEB
|
ROOT_EGY
|
|
2010-02-14
|
|
Joomla! Component com_videos - SQL Injection
|
8 |
WEB
|
snakespc
|
|
2010-02-14
|
|
Joomla! Component Jw_allVideos - Arbitrary File Download
|
8 |
WEB
|
Pouya Daneshmand
|
|
2010-02-14
|
|
Mambo Component AkoGallery - SQL Injection
|
9 |
WEB
|
snakespc
|
|
2010-02-14
|
|
JTL-Shop 2 - 'druckansicht.php' SQL Injection
|
8 |
WEB
|
Lo$T
|
|
2010-02-14
|
|
ShortCMS 1.2.0 - SQL Injection
|
8 |
WEB
|
Thibow
|
|
2010-02-14
|
|
Calendarix 0.8.20071118 - SQL Injection
|
10 |
WEB
|
Thibow
|
|
2010-02-14
|
|
PHP PEAR 1.9.0 - Multiple Remote File Inclusions
|
9 |
WEB
|
eidelweiss
|
|
2010-02-13
|
|
WordPress Core 2.9 - Failure to Restrict URL Access
|
10 |
WEB
|
tmacuk
|
|
2010-02-13
|
|
InterTech Co 1.0 - SQL Injection
|
9 |
WEB
|
Red-D3v1L
|
|
2010-02-13
|
|
ZeusCMS 0.2 - Database Backup Dump / Local File Inclusion
|
9 |
WEB
|
ViRuSMaN
|
|
2010-02-13
|
|
WSN Guest 1.02 - 'orderlinks' SQL Injection
|
9 |
WEB
|
Gamoscu
|
|
2010-02-13
|
|
statcountex 3.1 - Multiple Vulnerabilities
|
9 |
WEB
|
Phenom
|
|
2010-02-13
|
|
MRW PHP Upload - Arbitrary File Upload
|
9 |
WEB
|
Phenom
|
|
2010-02-13
|
|
southburn Web - 'products.php' SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-13
|
|
Vito CMS - SQL Injection
|
9 |
WEB
|
hacker@sr.gov.yu
|
|
2010-02-12
|
|
daChooch - SQL Injection
|
8 |
WEB
|
snakespc
|
|
2010-02-12
|
|
CMS Made Simple 1.6.6 - Multiple Vulnerabilities
|
9 |
WEB
|
Beenu Arora
|
|
2010-02-12
|
|
Alqatari Group 1.0 - Blind SQL Injection
|
8 |
WEB
|
Red-D3v1L
|
|
2010-02-12
|
|
Izumi 1.1.0 - Multiple Local File Inclusion / Remote File Inclusions
|
10 |
WEB
|
cr4wl3r
|
|
2010-02-12
|
|
Infragistics WebHtmlEditor 7.1 - Multiple Vulnerabilities
|
9 |
WEB
|
SpeeDr00t
|
|
2010-02-11
|
|
Trade Manager Script - SQL Injection
|
9 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
apemCMS - SQL Injection
|
9 |
WEB
|
Ariko-Security
|
|
2010-02-11
|
|
Vacation Rental Script - SQL Injection
|
9 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
Video Games Rentals Script - SQL Injection
|
9 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
J.A.G (Just Another Guestbook) 1.14 - Database Disclosure
|
10 |
WEB
|
Phenom
|
|
2010-02-11
|
|
RSA - SecurID Cross-Site Scripting
|
10 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
X-Cart Pro 4.0.13 - SQL Injection
|
8 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
Cisco Collaboration Server 5 - Cross-Site Scripting / Source Code Disclosure
|
9 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
Books/eBooks Rental Software - SQL Injection
|
9 |
WEB
|
Don Tukulesto
|
|
2010-02-11
|
|
CD Rentals Script - SQL Injection
|
10 |
WEB
|
Don Tukulesto
|
|
2010-02-11
|
|
myPHP Guestbook 2.0.4 - Database Backup Dump
|
9 |
WEB
|
ViRuSMaN
|
|
2010-02-11
|
|
GameRoom Script - Authentication Bypass / Arbitrary File Upload
|
10 |
WEB
|
JIKO
|
|
2010-02-11
|
|
vBulletin 2.3.x - SQL Injection
|
10 |
WEB
|
ROOT_EGY
|
|
2010-02-11
|
|
vBulletin 3.0.0 - Cross-Site Scripting
|
9 |
WEB
|
ROOT_EGY
|
|
2010-02-11
|
|
vBulletin 3.5.2 - Cross-Site Scripting
|
9 |
WEB
|
ROOT_EGY
|
|
2010-02-11
|
|
Omnidocs - SQL Injection
|
9 |
WEB
|
thebluegenius
|
|
2010-02-10
|
|
ULoki Community Forum 2.1 - 'usercp.php' Cross-Site Scripting
|
9 |
WEB
|
Sioma Labs
|
|
2010-02-10
|
|
HASHE! Solutions - Multiple SQL Injections
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-10
|
|
eSmile Script - 'index.php' SQL Injection
|
11 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-09
|
|
osTicket 1.6 RC5 - Multiple Vulnerabilities
|
8 |
WEB
|
Nahuel Grisolia
|
|
2010-02-09
|
|
NewsLetter Tailor 0.2.0 - Remote File Inclusion
|
9 |
WEB
|
snakespc
|
|
2010-02-09
|
|
Limny 1.01 - Arbitrary File Upload
|
8 |
WEB
|
JIKO
|
|
2010-02-09
|
|
Fonts Site Script - Remote File Disclosure
|
8 |
WEB
|
JIKO
|
|
2010-02-09
|
|
Zomorrod CMS - SQL Injection
|
10 |
WEB
|
Pouya Daneshmand
|
|
2010-02-09
|
|
MOJO's IWms 7 - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
cp77fk4r
|
|
2010-02-09
|
|
Yes Solutions - Webapp SQL Injection
|
11 |
WEB
|
HackXBack
|
|
2010-02-09
|
|
NewsLetter Tailor - Authentication Bypass
|
10 |
WEB
|
ViRuSMaN
|
|
2010-02-09
|
|
NewsLetter Tailor - Database Backup Dump
|
9 |
WEB
|
ViRuSMaN
|
|
2010-02-09
|
|
CPA Site Solutions - Arbitrary File Upload
|
10 |
WEB
|
R3VAN_BASTARD
|
|
2010-02-09
|
|
fipsForum 2.6 - Remote Database Disclosure
|
8 |
WEB
|
ViRuSMaN
|
|
2010-02-08
|
|
Blue Dove - SQL Injection
|
9 |
WEB
|
HackXBack
|
|
2010-02-08
|
|
JaxCMS 1.0 - Local File Inclusion
|
9 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-02-07
|
|
TinyMCE WYSIWYG Editor - Multiple Vulnerabilities
|
9 |
WEB
|
mc2_s3lector
|
|
2010-02-07
|
|
Uiga Business Portal - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Sioma Labs
|
|
2010-02-07
|
|
Rostermain 1.1 - Authentication Bypass
|
8 |
WEB
|
cr4wl3r
|
|
2010-02-07
|
|
EncapsCMS 0.3.6 - 'config[path]' Remote File Inclusion
|
9 |
WEB
|
cr4wl3r
|
|
2010-02-07
|
|
Killmonster 2.1 - Authentication Bypass
|
9 |
WEB
|
cr4wl3r
|
|
2010-02-07
|
|
Croogo 1.2.1 - Multiple Cross-Site Request Forgery Vulnerabilities
|
9 |
WEB
|
Milos Zivanovic
|
|
2010-02-07
|
|
Joomla! Component com_productbook - SQL Injection
|
9 |
WEB
|
snakespc
|
|
2010-02-07
|
|
Belkatalog CMS - SQL Injection
|
9 |
WEB
|
anonymous
|
|
2010-02-07
|
|
Exponent CMS 0.96.3 - 'articlemodule' SQL Injection
|
9 |
WEB
|
T u R c O
|
|
2010-02-07
|
|
DA Mailing List System 2 - Multiple Vulnerabilities
|
9 |
WEB
|
Phenom
|
|
2010-02-07
|
|
Baal Systems 3.8 - Authentication Bypass
|
10 |
WEB
|
cr4wl3r
|
|
2010-02-07
|
|
Zen Tracking 2.2 - Authentication Bypass
|
9 |
WEB
|
cr4wl3r
|
|
2010-02-07
|
|
WSN Guest - Database Disclosure
|
9 |
WEB
|
HackXBack
|
|
2010-02-06
|
|
ShopEx Single 4.5.1 - Multiple Vulnerabilities
|
9 |
WEB
|
cp77fk4r
|
|
2010-02-06
|
|
odlican.net CMS 1.5 - Arbitrary File Upload
|
9 |
WEB
|
anonymous
|
|
2010-02-06
|
|
Arab Network Tech. (ANT) CMS - SQL Injection
|
9 |
WEB
|
Tr0y-x
|
|
2010-02-06
|
|
Joomla! Component com_photoblog - Blind SQL Injection
|
9 |
WEB
|
ALTBTA
|
|
2010-02-06
|
|
Open Bulletin Board - Multiple Blind SQL Injections
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-05
|
|
Audistats 1.3 - SQL Injection
|
9 |
WEB
|
kaMtiEz
|
|
2010-02-04
|
|
ManageEngine OpUtils 5 - 'Login.DO' SQL Injection
|
9 |
WEB
|
Asheesh Anaconda
|
|
2010-02-04
|
|
MASA2EL Music City 1.0 - SQL Injection
|
9 |
WEB
|
alnjm33
|
|
2010-02-03
|
|
myBusinessAdmin - 'content.php' Blind SQL Injection
|
8 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-03
|
|
cityadmin - 'links.php' Blind SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-03
|
|
RealAdmin - 'detail.php' Blind SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-03
|
|
Hipergate 4.0.12 - Multiple Vulnerabilities
|
9 |
WEB
|
Nahuel Grisolia
|
|
2010-02-03
|
|
PHP Car Rental-Script - Authentication Bypass
|
9 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-02-03
|
|
KubeLance 1.7.6 - Cross-Site Request Forgery (Add Admin)
|
10 |
WEB
|
Milos Zivanovic
|
|
2010-02-02
|
|
MobPartner Chat - Multiple SQL Injections
|
10 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-02
|
|
MYRE Classified - 'cat' SQL Injection
|
9 |
WEB
|
kaMtiEz
|
|
2010-02-02
|
|
Dlili Script - SQL Injection
|
10 |
WEB
|
Dr.DaShEr
|
|
2010-02-02
|
|
GCP 2.0 datasets provided as BioCASE Web services - Local File Inclusion
|
9 |
WEB
|
R3VAN_BASTARD
|
|
2010-02-01
|
|
Home Of AlegroCart 1.1 - Cross-Site Request Forgery (Change Administrator Password)
|
10 |
WEB
|
The.Morpheus
|
|
2010-02-01
|
|
RaakCMS - Multiple Vulnerabilities
|
11 |
WEB
|
Pouya Daneshmand
|
|
2010-02-01
|
|
Snif 1.5.2 - Any Filetype Download
|
9 |
WEB
|
Aodrulez
|
|
2010-02-01
|
|
Joomla! Component Yelp - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-02-01
|
|
Joomla! Component Job - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-02-01
|
|
Evernew Free Joke Script - 'viewjokes.php' SQL Injection
|
9 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-02-01
|
|
ShoutCMS - 'content.php' Blind SQL Injection
|
9 |
WEB
|
Zero Cold
|
|
2010-01-31
|
|
Saman Portal - SQL Injection
|
8 |
WEB
|
Pouya Daneshmand
|
|
2010-01-31
|
|
Maian Greetings 2.1 - Arbitrary File Upload
|
8 |
WEB
|
indoushka
|
|
2010-01-31
|
|
Creative SplashWorks-SplashSite - 'page.php' Blind SQL Injection
|
7 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-01-31
|
|
crownweb - 'page.cfm' SQL Injection
|
8 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-01-30
|
|
dotProject 2.1.3 - Cross-Site Scripting / Improper Permissions
|
8 |
WEB
|
h00die
|
|
2010-01-30
|
|
IPB (nv2) Awards < 1.1.0 - SQL Injection
|
9 |
WEB
|
fred777
|
|
2010-01-30
|
|
ThinkAdmin - 'page.php' SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-01-29
|
|
eWebeditor ASP Version - Multiple Vulnerabilities
|
9 |
WEB
|
anonymous
|
|
2010-01-30
|
|
Joomla! Component com_simplefaq - 'catid' Blind SQL Injection
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-01-30
|
|
Joomla! Component JE Event Calendar - SQL Injection
|
9 |
WEB
|
B-HUNT3|2
|
|
2010-01-30
|
|
phpunity.newsmanager - Local File Inclusion
|
8 |
WEB
|
kaMtiEz
|
|
2010-01-30
|
|
Joomla! Component com_dms 2.5.1 - SQL Injection
|
9 |
WEB
|
kaMtiEz
|
|
2010-01-29
|
|
Joomla! Component JE Quiz - 'eid' Blind SQL Injection
|
9 |
WEB
|
B-HUNT3|2
|
|
2010-01-29
|
|
Joomla! Component Jreservation - Blind SQL Injection
|
9 |
WEB
|
B-HUNT3|2
|
|
2010-01-29
|
|
PHP Product Catalog - Cross-Site Request Forgery (Change Administrator Password)
|
8 |
WEB
|
bi0
|
|
2010-01-28
|
|
Joomla! Component CCNewsLetter - Local File Inclusion
|
9 |
WEB
|
AtT4CKxT3rR0r1ST
|
