|
2007-10-29
|
|
MySpace Resource Script (MSRS) 1.21 - Remote File Inclusion
|
4 |
WEB
|
r00t@zapak.com
|
|
2007-10-28
|
|
teatro 1.6 - 'basePath' Remote File Inclusion
|
5 |
WEB
|
Alkomandoz Hacker
|
|
2007-10-28
|
|
Sige 0.1 - 'sige_init.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-10-28
|
|
FireConfig 0.5 - 'dl.php' Remote File Disclosure
|
4 |
WEB
|
GoLd_M
|
|
2007-10-28
|
|
emagiC CMS.Net 4.0 - 'emc.asp' SQL Injection
|
4 |
WEB
|
hak3r-b0y
|
|
2007-10-28
|
|
CaupoShop Pro 2.x - 'action' Remote File Inclusion
|
4 |
WEB
|
mozi
|
|
2007-10-28
|
|
JobSite Professional 2.0 - 'file.php' SQL Injection
|
4 |
WEB
|
ZynbER
|
|
2007-10-27
|
|
GoSamba 1.0.1 - 'INCLUDE_PATH' Multiple Remote File Inclusions
|
4 |
WEB
|
GoLd_M
|
|
2007-10-25
|
|
TikiWiki 1.9.8.1 - Local File Inclusion
|
5 |
WEB
|
L4teral
|
|
2007-10-23
|
|
PHP Image 1.2 - Multiple Remote File Inclusions
|
5 |
WEB
|
Civi
|
|
2007-10-23
|
|
PHP-Nuke platinum 7.6.b.5 - Remote File Inclusion
|
5 |
WEB
|
BiNgZa
|
|
2007-10-23
|
|
Flatnuke 3 - Remote Cookie Manipulation / Privilege Escalation
|
5 |
WEB
|
KiNgOfThEwOrLd
|
|
2007-10-23
|
|
Flatnuke 3 - Remote Command Execution / Privilege Escalation
|
5 |
WEB
|
KiNgOfThEwOrLd
|
|
2007-10-22
|
|
InstaGuide Weather Script 1.0 - 'index.php' Local File Inclusion
|
5 |
WEB
|
h4ck3r
|
|
2007-10-22
|
|
Simple PHP Blog (sPHPblog) 0.5.1 - Multiple Vulnerabilities
|
5 |
WEB
|
DarkFig
|
|
2007-10-22
|
|
TOWeLS 0.1 - 'scripture.php' Remote File Inclusion
|
6 |
WEB
|
GoLd_M
|
|
2007-10-22
|
|
Socketmail 2.2.8 - 'fnc-readmail3.php' Remote File Inclusion
|
6 |
WEB
|
BiNgZa
|
|
2007-10-21
|
|
PeopleAggregator 1.2pre6-release-53 - Multiple Remote File Inclusions
|
5 |
WEB
|
GoLd_M
|
|
2007-10-21
|
|
BBPortalS 2.0 - Blind SQL Injection
|
5 |
WEB
|
Max007
|
|
2007-10-21
|
|
PHP Project Management 0.8.10 - Multiple Local/Remote File Inclusions
|
5 |
WEB
|
GoLd_M
|
|
2007-10-20
|
|
Vanilla 1.1.3 - Blind SQL Injection
|
4 |
WEB
|
InATeam
|
|
2007-10-20
|
|
Simple Machines Forum (SMF) 1.1.3 - Blind SQL Injection
|
5 |
WEB
|
Michael Brooks
|
|
2007-10-19
|
|
ZZ FlashChat 3.1 - 'help.php' Local File Inclusion
|
5 |
WEB
|
d3hydr8
|
|
2007-10-18
|
|
awzMB 4.2 Beta 1 - Multiple Remote File Inclusions
|
5 |
WEB
|
S.W.A.T.
|
|
2007-10-17
|
|
LimeSurvey 1.52 - 'language.php' Remote File Inclusion
|
5 |
WEB
|
S.W.A.T.
|
|
2007-10-17
|
|
PHPDJ 0.5 - 'djpage.php' Remote File Inclusion
|
5 |
WEB
|
GoLd_M
|
|
2007-10-16
|
|
Okul Otomasyon Portal 2.0 - SQL Injection
|
5 |
WEB
|
dumenci
|
|
2007-10-16
|
|
Artmedic CMS 3.4 - 'index.php' Local File Inclusion
|
4 |
WEB
|
iNs
|
|
2007-10-15
|
|
doop CMS 1.3.7 - Local File Inclusion
|
5 |
WEB
|
vladii
|
|
2007-10-13
|
|
WWWISIS 7.1 - 'IsisScript' Local File Disclosure / Cross-Site Scripting
|
5 |
WEB
|
JosS
|
|
2007-10-13
|
|
KwsPHP 1.0 mg2 Module - SQL Injection
|
5 |
WEB
|
Mehmet Ince
|
|
2007-10-13
|
|
Softbiz Recipes Portal Script - SQL Injection
|
5 |
WEB
|
Khashayar Fereidani
|
|
2007-10-12
|
|
TikiWiki 1.9.8 - 'tiki-graph_formula.php' Command Execution
|
4 |
WEB
|
str0ke
|
|
2007-10-12
|
|
Joomla! Component com_colorlab 1.0 - Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-10-11
|
|
KwsPHP 1.0 Module Newsletter - SQL Injection
|
3 |
WEB
|
s4mi
|
|
2007-10-11
|
|
Joomla! Component Flash Uploader 2.5.1 - Remote File Inclusion
|
5 |
WEB
|
mdx
|
|
2007-10-11
|
|
PicoFlat CMS 0.4.14 - 'index.php' Remote File Inclusion
|
5 |
WEB
|
0in
|
|
2007-10-11
|
|
Pindorama 0.1 - 'client.php' Remote File Inclusion
|
5 |
WEB
|
S.W.A.T.
|
|
2007-10-11
|
|
WebDesktop 0.1 - Remote File Inclusion
|
5 |
WEB
|
S.W.A.T.
|
|
2007-10-10
|
|
PHP-Stats 0.1.9.2 - Multiple Vulnerabilities
|
3 |
WEB
|
EgiX
|
|
2007-10-10
|
|
nuseo PHP enterprise 1.6 - Remote File Inclusion
|
4 |
WEB
|
BiNgZa
|
|
2007-10-10
|
|
cpDynaLinks 1.02 - 'category.php' SQL Injection
|
4 |
WEB
|
ka0x
|
|
2007-10-10
|
|
Drupal 5.2 - PHP Zend Hash ation Vector
|
3 |
WEB
|
ShAnKaR
|
|
2007-10-10
|
|
TikiWiki 1.9.8 - Remote PHP Injection
|
3 |
WEB
|
ShAnKaR
|
|
2007-10-10
|
|
Joomla! Component JContentSubscription 1.5.8 - Multiple Remote File Inclusions
|
3 |
WEB
|
NoGe
|
|
2007-10-10
|
|
Joomla! Component mp3 allopass 1.0 - Remote File Inclusion
|
3 |
WEB
|
NoGe
|
|
2007-10-09
|
|
LightBlog 8.4.1.1 - Remote Code Execution
|
4 |
WEB
|
BlackHawk
|
|
2007-10-08
|
|
Softbiz Jobs & Recruitment - SQL Injection
|
5 |
WEB
|
Khashayar Fereidani
|
|
2007-10-08
|
|
LiveAlbum 0.9.0 - 'common.php' Remote File Inclusion
|
5 |
WEB
|
S.W.A.T.
|
|
2007-10-08
|
|
xKiosk 3.0.1i - 'xkurl.php?PEARPATH' Remote File Inclusion
|
5 |
WEB
|
h4ck3r
|
|
2007-10-08
|
|
PHP Homepage M 1.0 - 'galerie.php' SQL Injection
|
5 |
WEB
|
[PHCN] Mahjong
|
|
2007-10-08
|
|
TorrentTrader Classic 1.07 - Multiple Vulnerabilities
|
5 |
WEB
|
HACKERS PAL
|
|
2007-10-08
|
|
Joomla! Component mosmedialite451 - Remote File Inclusion
|
5 |
WEB
|
k1n9k0ng
|
|
2007-10-07
|
|
Joomla! Component wmtportfolio 1.0 - Remote File Inclusion
|
5 |
WEB
|
NoGe
|
|
2007-10-07
|
|
Joomla! Component Flash Image Gallery - Remote File Inclusion
|
4 |
WEB
|
Mehmet Ince
|
|
2007-10-07
|
|
idmos-phoenix CMS - 'aural.php' Remote File Inclusion
|
5 |
WEB
|
HACKERS PAL
|
|
2007-10-07
|
|
Verlihub Control Panel 1.7.x - Local File Inclusion
|
5 |
WEB
|
TEAMELITE
|
|
2007-10-06
|
|
SkaDate Online 5.0/6.0 - Remote File Disclosure
|
5 |
WEB
|
SnIpEr_SA
|
|
2007-10-06
|
|
Picturesolution 2.1 - 'config.php?path' Remote File Inclusion
|
5 |
WEB
|
Mogatil
|
|
2007-10-06
|
|
CMS Creamotion - 'securite.php' Remote File Inclusion
|
5 |
WEB
|
HACKERS PAL
|
|
2007-10-06
|
|
Else If CMS 0.6 - Multiple Vulnerabilities
|
4 |
WEB
|
HACKERS PAL
|
|
2007-10-06
|
|
Joomla! Component panoramic 1.0 - Remote File Inclusion
|
4 |
WEB
|
NoGe
|
|
2007-10-05
|
|
Furkan Tastan Blog - SQL Injection
|
5 |
WEB
|
CyberGhost
|
|
2007-10-05
|
|
Trionic Cite CMS 1.2rev9 - Remote File Inclusion
|
5 |
WEB
|
GoLd_M
|
|
2007-10-04
|
|
Ossigeno CMS 2.2a3 - 'footer.php' Remote File Inclusion
|
5 |
WEB
|
Nice Name Crew
|
|
2007-10-04
|
|
Web Template Management System 1.3 - SQL Injection
|
5 |
WEB
|
bius
|
|
2007-10-02
|
|
Poppawid 2.7 - 'form' Remote File Inclusion
|
5 |
WEB
|
0in
|
|
2007-10-02
|
|
MultiCart 1.0 - Blind SQL Injection
|
5 |
WEB
|
k1tk4t
|
|
2007-10-01
|
|
PHP wcms XT 0.0.7 - Multiple Remote File Inclusions
|
5 |
WEB
|
kezzap66345
|
|
2007-10-01
|
|
Segue CMS 1.8.4 - 'index.php' Remote File Inclusion
|
5 |
WEB
|
kezzap66345
|
|
2007-10-01
|
|
PHP-Fusion module Expanded Calendar 2.x - SQL Injection
|
5 |
WEB
|
Matrix86
|
|
2007-10-01
|
|
actSite 1.991 Beta - 'base.php' Remote File Inclusion
|
5 |
WEB
|
DNX
|
|
2007-10-01
|
|
actSite 1.56 - 'news.php' Local File Inclusion
|
5 |
WEB
|
DNX
|
|
2007-09-30
|
|
phpBB Mod OpenID 0.2.0 - 'BBStore.php' Remote File Inclusion
|
5 |
WEB
|
Mehmet Ince
|
|
2007-09-29
|
|
mxBB Module mx_glance 2.3.3 - Remote File Inclusion
|
5 |
WEB
|
bd0rk
|
|
2007-09-29
|
|
Mambo Component Mambads 1.5 - SQL Injection
|
5 |
WEB
|
Sniper456
|
|
2007-09-29
|
|
MD-Pro 1.0.76 - SQL Injection
|
5 |
WEB
|
undefined1_
|
|
2007-09-28
|
|
Zomplog 3.8.1 - Arbitrary File Upload
|
5 |
WEB
|
InATeam
|
|
2007-09-28
|
|
public media manager 1.3 - Remote File Inclusion
|
5 |
WEB
|
0in
|
|
2007-09-28
|
|
PhFiTo 1.3.0 - 'SRC_PATH' Remote File Inclusion
|
5 |
WEB
|
w0cker
|
|
2007-09-27
|
|
Integramod Nederland 1.4.2 - Remote File Inclusion
|
5 |
WEB
|
Mehmet Ince
|
|
2007-09-27
|
|
Chupix CMS 0.2.3 - 'repertoire' Remote File Inclusion
|
5 |
WEB
|
0in
|
|
2007-09-27
|
|
lustig.cms Beta 2.5 - 'forum.php?view' Remote File Inclusion
|
5 |
WEB
|
GoLd_M
|
|
2007-09-26
|
|
ActiveKB KnowledgeBase 2.x - 'catId' SQL Injection
|
5 |
WEB
|
Luna-Tic/XTErner
|
|
2007-09-26
|
|
Novus 1.0 - 'notas.asp?nota_id' SQL Injection
|
5 |
WEB
|
ka0x
|
|
2007-09-26
|
|
Softbiz Classifieds PLUS - 'id' SQL Injection
|
4 |
WEB
|
Khashayar Fereidani
|
|
2007-09-26
|
|
FrontAccounting 1.13 - Remote File Inclusion
|
5 |
WEB
|
kezzap66345
|
|
2007-09-24
|
|
sk.log 0.5.3 - 'skin_url' Remote File Inclusion
|
5 |
WEB
|
w0cker
|
|
2007-09-24
|
|
DFD Cart 1.1 - Multiple Remote File Inclusions
|
4 |
WEB
|
BiNgZa
|
|
2007-09-23
|
|
phpFullAnnu (PFA) 6.0 - SQL Injection
|
4 |
WEB
|
IHTeam
|
|
2007-09-23
|
|
helplink 0.1.0 - 'show.php' Remote File Inclusion
|
4 |
WEB
|
GoLd_M
|
|
2007-09-23
|
|
PHP-Nuke addon Nuke Mobile Entartainment 1.0 - Local File Inclusion
|
3 |
WEB
|
h4ck3r
|
|
2007-09-23
|
|
Wordsmith 1.1b - 'config.inc.php?_path' Remote File Inclusion
|
4 |
WEB
|
ShockShadow
|
|
2007-09-22
|
|
Black Lily 2007 - 'products.php?class' SQL Injection
|
4 |
WEB
|
VerY-SecReT
|
|
2007-09-22
|
|
ClanSphere 2007.4 - 'cat_id' SQL Injection
|
4 |
WEB
|
IHTeam
|
|
2007-09-21
|
|
CMS Made Simple 1.2 - Remote Code Execution
|
3 |
WEB
|
irk4z
|
|
2007-09-21
|
|
iziContents rc6 - Local/Remote File Inclusion
|
3 |
WEB
|
irk4z
|
|
2007-09-21
|
|
Joomla! Component com_slideshow - Remote File Inclusion
|
4 |
WEB
|
ShockShadow
|
|
2007-09-21
|
|
neuron news 1.0 - 'index.php?q' Local File Inclusion
|
4 |
WEB
|
Dj7xpl
|
|
2007-09-20
|
|
Flip 3.0 - Remote Password Hash Disclosure
|
4 |
WEB
|
undefined1_
|
|
2007-09-20
|
|
Flip 3.0 - Remote Admin Creation
|
5 |
WEB
|
undefined1_
|
|
2007-09-20
|
|
phpBB Plus 1.53 - 'phpbb_root_path' Remote File Inclusion
|
5 |
WEB
|
Mehrad
|
|
2007-09-19
|
|
OneCMS 2.4 - 'abc' SQL Injection
|
5 |
WEB
|
str0ke
|
|
2007-09-19
|
|
Streamline PHP Media Server 1.0-beta4 - Remote File Inclusion
|
5 |
WEB
|
BiNgZa
|
|
2007-09-18
|
|
phpBB Mod Ktauber.com StylesDemo - Blind SQL Injection
|
5 |
WEB
|
nexen
|
|
2007-09-18
|
|
modifyform - 'modifyform.html' Remote File Inclusion
|
5 |
WEB
|
mozi
|
|
2007-09-18
|
|
KwsPHP 1.0 sondages Module - SQL Injection
|
5 |
WEB
|
Houssamix
|
|
2007-09-18
|
|
phpsyncml 0.1.2 - Remote File Inclusion
|
5 |
WEB
|
S.W.A.T.
|
|
2007-09-17
|
|
Shop-Script FREE 2.0 - Remote Command Execution
|
5 |
WEB
|
InATeam
|
|
2007-09-16
|
|
Omnistar Article Manager Software - 'article.php' SQL Injection
|
5 |
WEB
|
Cold Zero
|
|
2007-09-16
|
|
SimpCMS - 'keyword' SQL Injection
|
4 |
WEB
|
Cold Zero
|
|
2007-09-16
|
|
Joomla! Component joom12pic 1.0 - Remote File Inclusion
|
5 |
WEB
|
Morgan
|
|
2007-09-15
|
|
Joomla! Component flash fun! 1.0 - Remote File Inclusion
|
5 |
WEB
|
Morgan
|
|
2007-09-15
|
|
KwsPHP 1.0 stats Module - SQL Injection
|
5 |
WEB
|
s4mi
|
|
2007-09-15
|
|
KwsPHP 1.0 Member_Space Module - SQL Injection
|
5 |
WEB
|
s4mi
|
|
2007-09-15
|
|
KwsPHP 1.0 - 'login.php' SQL Injection
|
5 |
WEB
|
s4mi
|
|
2007-09-15
|
|
Chupix CMS 0.2.3 - 'download.php' Remote File Disclosure
|
5 |
WEB
|
GoLd_M
|
|
2007-09-14
|
|
Gelato - 'index.php?post' SQL Injection
|
5 |
WEB
|
s0cratex
|
|
2007-09-14
|
|
JBlog 1.0 - 'index.php?id' SQL Injection
|
5 |
WEB
|
s4mi
|
|
2007-09-14
|
|
PHP Webquest 2.5 - 'id_actividad' SQL Injection
|
5 |
WEB
|
D4real_TeaM
|
|
2007-09-14
|
|
phpFFL 1.24 - 'PHPFFL_FILE_ROOT' Remote File Inclusion
|
5 |
WEB
|
Dj7xpl
|
|
2007-09-14
|
|
Ajax File Browser 3b - 'settings.inc.php?approot' Remote File Inclusion
|
5 |
WEB
|
arfis project
|
|
2007-09-13
|
|
GForge < 4.6b2 - 'skill_delete' SQL Injection
|
5 |
WEB
|
Sumit Siddharth
|
|
2007-09-13
|
|
Joomla! Component Joomlaradio 5.0 - Remote File Inclusion
|
5 |
WEB
|
Morgan
|
|
2007-09-13
|
|
KwsPHP Module jeuxflash 1.0 - 'id' SQL Injection
|
5 |
WEB
|
Houssamix
|
