|
2007-08-13
|
|
Prozilla Webring Website Script - 'category.php?cat' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-08-13
|
|
SOTEeSKLEP 3.5RC9 - 'file' Remote File Disclosure
|
1 |
WEB
|
dun
|
|
2007-08-10
|
|
Pixlie 1.7 - 'pixlie.php?root' Remote File Disclosure
|
1 |
WEB
|
Rizgar
|
|
2007-08-10
|
|
PHP Blue Dragon CMS 3.0.0 - Remote Code Execution
|
1 |
WEB
|
Kacper
|
|
2007-08-10
|
|
PHP blue dragon CMS 3.0.0 - Remote File Inclusion
|
1 |
WEB
|
Kacper
|
|
2007-08-10
|
|
PHP Blue Dragon CMS 3.0.0 - SQL Injection
|
1 |
WEB
|
Kacper
|
|
2007-08-09
|
|
Ncaster 1.7.2 - 'archive.php' Remote File Inclusion
|
1 |
WEB
|
k1n9k0ng
|
|
2007-08-08
|
|
FishCart 3.2 RC2 - 'fc_example.php' Remote File Inclusion
|
1 |
WEB
|
k1n9k0ng
|
|
2007-08-07
|
|
FrontAccounting 1.12 build 31 - Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-08-07
|
|
PHPNews 0.93 - 'format_menue' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-08-07
|
|
PhpHostBot 1.06 - 'svr_rootscript' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-08-06
|
|
Prozilla Pub Site Directory - 'Directory.php?cat' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-08-06
|
|
Cartweaver 2.16.11 - 'ProdID' SQL Injection
|
1 |
WEB
|
meoconx
|
|
2007-08-06
|
|
YNP Portal System 2.2.0 - 'showpage.cgi p' Remote File Disclosure
|
1 |
WEB
|
GoLd_M
|
|
2007-08-06
|
|
Lanius CMS 1.2.14 - Multiple SQL Injections
|
0 |
WEB
|
k1tk4t
|
|
2007-08-05
|
|
Envolution 1.1.0 - 'topic' SQL Injection
|
1 |
WEB
|
k1tk4t
|
|
2007-08-05
|
|
AuraCMS Forum Module - SQL Injection
|
1 |
WEB
|
k1tk4t
|
|
2007-08-02
|
|
paBugs 2.0 Beta 3 - 'main.php?cid' SQL Injection
|
0 |
WEB
|
uimp
|
|
2007-07-31
|
|
Joomla! Component com_gmaps 1.00 - 'mapId' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-07-30
|
|
wolioCMS - Authentication Bypass / SQL Injection
|
1 |
WEB
|
k1tk4t
|
|
2007-07-29
|
|
LinPHA 1.3.1 - 'new_images.php' Blind SQL Injection
|
1 |
WEB
|
EgiX
|
|
2007-07-28
|
|
PHP123 Top Sites - 'category.php?cat' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-28
|
|
SimpleBlog 3.0 - 'comments_get.asp?id' SQL Injection
|
1 |
WEB
|
g00ns
|
|
2007-07-27
|
|
Adult Directory - 'cat_id' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-27
|
|
Seditio CMS 121 - 'pfs.php' Arbitrary File Upload
|
1 |
WEB
|
A.D.T
|
|
2007-07-25
|
|
IndexScript 2.8 - 'cat_id' SQL Injection
|
1 |
WEB
|
xssvgamer
|
|
2007-07-25
|
|
Webyapar 2.0 - Multiple SQL Injections
|
1 |
WEB
|
bypass
|
|
2007-07-24
|
|
Article Directory - 'index.php' Remote File Inclusion
|
1 |
WEB
|
mozi
|
|
2007-07-24
|
|
Entertainment CMS - Local File Inclusion / Remote Command Execution
|
1 |
WEB
|
Kw3[R]Ln
|
|
2007-07-24
|
|
Confixx Pro 3.3.1 - 'saveserver.php' Remote File Inclusion
|
1 |
WEB
|
H4 / XPK
|
|
2007-07-22
|
|
bwired - 'index.php?newsID' SQL Injection
|
1 |
WEB
|
g00ns
|
|
2007-07-22
|
|
Joomla! 1.5 Beta 2 - 'Search' Remote Code Execution
|
1 |
WEB
|
Johannes Greil
|
|
2007-07-21
|
|
JBlog 1.0 - Create / Delete Admin Authentication Bypass
|
1 |
WEB
|
s4mi
|
|
2007-07-21
|
|
RGameScript Pro - 'page.php?id' Remote File Inclusion
|
0 |
WEB
|
Warpboy
|
|
2007-07-21
|
|
WSN Links Basic Edition - 'catid' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-20
|
|
Blog System 1.x - 'index.php?news_id' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-19
|
|
Joomla! Component Pony Gallery 1.5 - SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-07-18
|
|
Md-Pro 1.0.8x - Topics topicid SQL Injection
|
1 |
WEB
|
anonymous
|
|
2007-07-18
|
|
A-shop 0.70 - Remote File Deletion
|
1 |
WEB
|
Timq
|
|
2007-07-18
|
|
phpBB Module SupaNav 1.0.0 - 'link_main.php' Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2007-07-18
|
|
BBS E-Market - 'postscript.php?p_mode' Remote File Inclusion
|
1 |
WEB
|
mozi
|
|
2007-07-18
|
|
Joomla! Component Expose RC35 - Arbitrary File Upload
|
1 |
WEB
|
Cold Zero
|
|
2007-07-18
|
|
QuickEStore 8.2 - 'insertorder.cfm' SQL Injection
|
1 |
WEB
|
meoconx
|
|
2007-07-18
|
|
Vivvo CMS 3.4 - 'index.php' Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-07-18
|
|
Pictures Rating - 'index.php?msgid' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-17
|
|
Expert Advisior - 'index.php?id' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-16
|
|
Traffic Stats - 'referralUrl.php?offset' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-14
|
|
paFileDB 3.6 - 'search.php' SQL Injection
|
1 |
WEB
|
pUm
|
|
2007-07-14
|
|
Prozilla Directory Script - 'Directory.php?cat_id' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-14
|
|
Realtor 747 - 'index.php?categoryId' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-14
|
|
eSyndiCat Directory Software - Multiple SQL Injections
|
1 |
WEB
|
d3v1l
|
|
2007-07-14
|
|
CMScout 1.23 - 'index.php' SQL Injection
|
1 |
WEB
|
g00ns
|
|
2007-07-14
|
|
MKPortal NoBoard Module (Beta) - Remote File Inclusion
|
1 |
WEB
|
g00ns
|
|
2007-07-12
|
|
MKPortal 1.1.1 reviews / Gallery modules - SQL Injection
|
0 |
WEB
|
Coloss
|
|
2007-07-12
|
|
PsNews 1.1 - 'show.php?newspath' Local File Inclusion
|
1 |
WEB
|
irk4z
|
|
2007-07-11
|
|
SquirrelMail G/PGP Encryption Plugin 2.0 - Command Execution
|
1 |
WEB
|
jmp-esp
|
|
2007-07-10
|
|
Mail Machine 3.989 - Local File Inclusion
|
1 |
WEB
|
H4 / XPK
|
|
2007-07-10
|
|
FlashBB 1.1.8 - 'sendmsg.php' Remote File Inclusion
|
1 |
WEB
|
Kw3[R]Ln
|
|
2007-07-10
|
|
OpenLD 1.2.2 - 'index.php?id' SQL Injection
|
1 |
WEB
|
CypherXero
|
|
2007-07-10
|
|
vBulletin Mod RPG Inferno 2.4 - 'inferno.php' SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-09
|
|
Aigaion 1.3.3 - 'topic topic_id' SQL Injection
|
1 |
WEB
|
CypherXero
|
|
2007-07-08
|
|
AV Tutorial Script 1.0 - Remote User Pass Change
|
1 |
WEB
|
Dj7xpl
|
|
2007-07-08
|
|
FlashGameScript 1.7 - 'user' SQL Injection
|
1 |
WEB
|
Xenduer77
|
|
2007-07-07
|
|
GameSiteScript 3.1 - profile id SQL Injection
|
1 |
WEB
|
Xenduer77
|
|
2007-07-06
|
|
LimeSurvey (phpsurveyor) 1.49rc2 - Remote File Inclusion
|
1 |
WEB
|
Yakir Wizman
|
|
2007-07-06
|
|
eMeeting Online Dating Software 5.2 - SQL Injection
|
1 |
WEB
|
t0pP8uZz
|
|
2007-07-06
|
|
PHPVID 0.9.9 - 'categories_type.php' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-07-05
|
|
AsteriDex 3.0 - 'callboth.php' Remote Code Execution
|
1 |
WEB
|
Carl Livitt
|
|
2007-07-05
|
|
VRNews 1.1.1 - 'admin.php' Remote Security Bypass
|
1 |
WEB
|
R4M!
|
|
2007-07-03
|
|
PNPHPBB2 < 1.2i - 'viewforum.php' SQL Injection
|
1 |
WEB
|
Coloss
|
|
2007-07-03
|
|
MyCMS 0.9.8 - Remote Command Execution (1)
|
1 |
WEB
|
BlackHawk
|
|
2007-07-03
|
|
MyCMS 0.9.8 - Remote Command Execution (2)
|
0 |
WEB
|
BlackHawk
|
|
2007-07-03
|
|
Girlserv ads 1.5 - 'details_news.php' SQL Injection
|
0 |
WEB
|
Cold Zero
|
|
2007-07-03
|
|
SuperCali PHP Event Calendar 0.4.0 - SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-07-02
|
|
vbzoom 1.x - 'forum.php?MainID' SQL Injection
|
0 |
WEB
|
Cold Zero
|
|
2007-07-02
|
|
PHPDirector 0.21 - 'videos.php?id' SQL Injection
|
0 |
WEB
|
Kw3[R]Ln
|
|
2007-07-02
|
|
AV Arcade 2.1b - 'index.php?id' SQL Injection
|
0 |
WEB
|
Kw3[R]Ln
|
|
2007-07-02
|
|
YouTube Clone Script - 'msg.php?id' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-07-01
|
|
phpEventCalendar 0.2.3 - 'eventdisplay.php' SQL Injection
|
0 |
WEB
|
Iron
|
|
2007-07-01
|
|
Easybe 1-2-3 Music Store - 'process.php' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-07-01
|
|
ArcadeBuilder Game Portal Manager 1.7 - SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-30
|
|
sPHPell 1.01 - Multiple Remote File Inclusions
|
0 |
WEB
|
Mehmet Ince
|
|
2007-06-30
|
|
XCMS 1.1 - 'Galerie.php' Local File Inclusion
|
0 |
WEB
|
BlackNDoor
|
|
2007-06-30
|
|
TotalCalendar 2.402 - 'view_event.php' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-30
|
|
Ripe Website Manager (CMS) 0.8.9 - Remote File Inclusion
|
0 |
WEB
|
BlackNDoor
|
|
2007-06-30
|
|
Buddy Zone 1.5 - Multiple SQL Injections
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-29
|
|
Buddy Zone 1.5 - 'view_sub_cat.php?cat_id' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-28
|
|
WebChat 0.78 - 'login.php?rid' SQL Injection
|
0 |
WEB
|
r00t
|
|
2007-06-28
|
|
GL-SH Deaf Forum 6.4.4 - Local File Inclusion
|
0 |
WEB
|
Katatafish
|
|
2007-06-28
|
|
b1gbb 2.24.0 - SQL Injection / Cross-Site Scripting
|
0 |
WEB
|
GoLd_M
|
|
2007-06-27
|
|
QuickTicket 1.2 - 'qti_checkname.php' Local File Inclusion
|
0 |
WEB
|
Katatafish
|
|
2007-06-27
|
|
QuickTalk forum 1.3 - 'lang' Local File Inclusion
|
0 |
WEB
|
Katatafish
|
|
2007-06-26
|
|
Elkagroup Image Gallery 1.0 - SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-26
|
|
WordPress Core 2.2 - 'wp-app.php' Arbitrary File Upload
|
0 |
WEB
|
Alexander Concha
|
|
2007-06-26
|
|
EVA-Web 1.1 < 2.2 - 'index.php3' Remote File Inclusion
|
0 |
WEB
|
g00ns
|
|
2007-06-26
|
|
PHPSiteBackup 0.1 - 'pcltar.lib.php' Remote File Inclusion
|
0 |
WEB
|
GoLd_M
|
|
2007-06-25
|
|
eDocStore - 'doc.php?doc_id' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-25
|
|
Pagetool 1.07 - 'news_id' SQL Injection
|
0 |
WEB
|
Katatafish
|
|
2007-06-25
|
|
DreamLog 0.5 - 'upload.php' Arbitrary File Upload
|
0 |
WEB
|
Dj7xpl
|
|
2007-06-25
|
|
SiteDepth CMS 3.44 - 'ShowImage.php?name' File Disclosure
|
0 |
WEB
|
H4 / XPK
|
|
2007-06-25
|
|
6ALBlog - 'newsid' SQL Injection
|
0 |
WEB
|
Crackers_Child
|
|
2007-06-25
|
|
bugmall shopping cart 2.5 - SQL Injection / Cross-Site Scripting
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-25
|
|
b1gbb 2.24.0 - 'footer.inc.php?tfooter' Remote File Inclusion
|
0 |
WEB
|
Rf7awy
|
|
2007-06-24
|
|
phpTrafficA 1.4.2 - 'pageid' SQL Injection
|
0 |
WEB
|
laurent gaffié
|
|
2007-06-24
|
|
e107 < 0.7.8 - 'photograph' Arbitrary File Upload
|
0 |
WEB
|
g00ns
|
|
2007-06-24
|
|
Simple Invoices 2007 05 25 - 'index.php?submit' SQL Injection
|
0 |
WEB
|
Kacper
|
|
2007-06-24
|
|
dagger Web engine 23jan2007 - Remote File Inclusion
|
0 |
WEB
|
Katatafish
|
|
2007-06-24
|
|
Pluxml 0.3.1 - Remote Code Execution
|
0 |
WEB
|
DarkFig
|
|
2007-06-24
|
|
Pharmacy System 2.0 - 'index.php?ID' SQL Injection
|
0 |
WEB
|
t0pP8uZz
|
|
2007-06-22
|
|
NetClassifieds - SQL Injection / Cross-Site Scripting / Full Path
|
0 |
WEB
|
laurent gaffié
|
|
2007-06-22
|
|
Sun Board 1.00.00 alpha - Remote File Inclusion
|
0 |
WEB
|
GoLd_M
|
|
2007-06-22
|
|
Powl 0.94 - 'htmledit.php' Remote File Inclusion
|
0 |
WEB
|
Kw3[R]Ln
|
|
2007-06-21
|
|
SerWeb 0.9.4 - 'load_lang.php' Remote File Inclusion
|
0 |
WEB
|
Kw3[R]Ln
|
|
2007-06-20
|
|
LAN Management System (LMS) 1.9.6 - Remote File Inclusion
|
0 |
WEB
|
Kw3[R]Ln
|
|
2007-06-20
|
|
Musoo 0.21 - Remote File Inclusion
|
0 |
WEB
|
GoLd_M
|
|
2007-06-20
|
|
XOOPS Module wiwimod 0.4 - Remote File Inclusion
|
0 |
WEB
|
GoLd_M
|
|
2007-06-20
|
|
W1L3D4 WEBmarket 0.1 - SQL Injection
|
1 |
WEB
|
Crackers_Child
|
|
2007-06-20
|
|
LiveCMS 3.4 - 'categoria.php?cid' SQL Injection
|
1 |
WEB
|
g00ns
|
|
2007-06-19
|
|
Jasmine CMS 1.0 - SQL Injection / Remote Code Execution
|
1 |
WEB
|
Silentz
|
|
2007-06-18
|
|
MiniBill 1.2.5 - 'run_billing.php' Remote File Inclusion
|
1 |
WEB
|
Abo0od
|
|
2007-06-18
|
|
Solar Empire 2.9.1.1 - Blind SQL Injection / Hash Retrieve
|
1 |
WEB
|
BlackHawk
|
|
2007-06-17
|
|
MiniBB 2.0.5 - 'Language' Local File Inclusion
|
1 |
WEB
|
Dj7xpl
|
|
2007-06-17
|
|
YourFreeScreamer 1.0 - 'serverPath' Remote File Inclusion
|
1 |
WEB
|
Crackers_Child
|
|
2007-06-16
|
|
PHPMyInventory 2.8 - 'global.inc.php' Remote File Inclusion
|
0 |
WEB
|
o0xxdark0o
|
|
2007-06-14
|
|
PHP::HTML 0.6.4 - 'PHPhtml.php' Remote File Inclusion
|
1 |
WEB
|
o0xxdark0o
|
