|
2007-04-03
|
|
XOOPS Module PopnupBlog 2.52 - 'postid' Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-03
|
|
MyBulletinBoard (MyBB) 1.2.3 - Remote Code Execution
|
1 |
WEB
|
DarkFig
|
|
2007-04-02
|
|
XOOPS Module Zmagazine 1.0 - 'print.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-02
|
|
XOOPS Module XFsection 1.07 - 'articleId' Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-02
|
|
XOOPS Module WF-Section 1.01 - 'articleId' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-02
|
|
Really Simple PHP and Ajax (RSPA) 2007-03-23 - Remote File Inclusion
|
1 |
WEB
|
Hamid Ebadi
|
|
2007-04-02
|
|
PHP-Fusion Module Arcade 1.0 - 'cid' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-04-02
|
|
PHP-Fusion Module topliste 1.0 - 'cid' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-04-02
|
|
MapLab MS4W 2.2.1 - Remote File Inclusion
|
1 |
WEB
|
ka0x
|
|
2007-04-01
|
|
XOOPS Module RM+Soft Gallery 1.0 - Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-01
|
|
XOOPS Module myAlbum-P 2.0 - 'cid' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-01
|
|
FlexPHPNews 0.0.5 - 'newsid' SQL Injection
|
1 |
WEB
|
Dj7xpl
|
|
2007-04-01
|
|
XOOPS Module debaser 0.92 - 'genre.php' Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-01
|
|
XOOPS Module Camportail 1.1 - 'camid' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-01
|
|
CWB PRO 1.5 - 'INCLUDE_PATH' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-04-01
|
|
XOOPS Module Kshop 1.17 - 'id' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-04-01
|
|
XOOPS Module Tiny Event 1.01 - 'id' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-04-01
|
|
BT-sondage 1.12 - 'gestion_sondage.php' Remote File Inclusion
|
0 |
WEB
|
Crackers_Child
|
|
2007-04-01
|
|
XOOPS Module eCal 2.24 - 'display.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-04-01
|
|
WinMail Server 4.4 build 1124 - 'WebMail' Remote Add Super User
|
1 |
WEB
|
rgod
|
|
2007-03-31
|
|
XOOPS Module Tutoriais - 'viewcat.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-31
|
|
XOOPS Module Core - 'viewcat.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-31
|
|
XOOPS Module Library - 'viewcat.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-31
|
|
XOOPS Module Lykos Reviews 1.00 - 'index.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-30
|
|
JSBoard 2.0.10 - 'login.php?table' Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-30
|
|
phpBB MOD Forum picture and META tags 1.7 - Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2007-03-30
|
|
XOOPS Module Repository - 'viewcat.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-30
|
|
JC URLShrink 1.3.1 - Remote Code Execution
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-29
|
|
Advanced Login 0.7 - 'root' Remote File Inclusion
|
1 |
WEB
|
Bithedz
|
|
2007-03-29
|
|
Kaqoo Auction - 'install_root' Multiple Remote File Inclusions
|
1 |
WEB
|
ThE dE@Th
|
|
2007-03-29
|
|
Picture-Engine 1.2.0 - 'wall.php?cat' SQL Injection
|
1 |
WEB
|
Kacper
|
|
2007-03-29
|
|
XOOPS Module MyAds Bug Fix 2.04jp - 'index.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-29
|
|
sBLOG 0.7.3 Beta - '/inc/lang.php' Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-29
|
|
Softerra Time-Assistant 6.2 - 'inc_dir' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-03-28
|
|
CodeBB 1.0 Beta 2 - 'phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Alkomandoz Hacker
|
|
2007-03-28
|
|
MangoBery CMS 0.5.5 - 'quotes.php' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-03-28
|
|
XOOPS Module Friendfinder 3.3 - 'view.php?id' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-28
|
|
iPhotoAlbum 1.1 - 'header.php' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-28
|
|
XOOPS module Articles 1.03 - 'index.php?cat_id' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-27
|
|
Web Content System 2.7.1 - Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-03-27
|
|
PHP-Nuke Module Eve-Nuke 0.1 - 'mysql.php' Remote File Inclusion
|
1 |
WEB
|
ThE TiGeR
|
|
2007-03-27
|
|
Joomla! Component D4JeZine 2.8 - Blind SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-27
|
|
XOOPS module Articles 1.02 - 'print.php?id' SQL Injection
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-26
|
|
C-Arbre 0.6PR7 - 'ROOT_PATH' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-03-26
|
|
PHP-Nuke Module AddressBook 1.2 - Local File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2007-03-26
|
|
IceBB 1.0-rc5 - Remote Code Execution
|
1 |
WEB
|
Hessam-x
|
|
2007-03-26
|
|
IceBB 1.0-rc5 - Remote Create Admin
|
1 |
WEB
|
Hessam-x
|
|
2007-03-25
|
|
PBlang 4.66z - Remote Code Execution
|
0 |
WEB
|
Hessam-x
|
|
2007-03-25
|
|
PBlang 4.66z - Remote Create Admin
|
1 |
WEB
|
Hessam-x
|
|
2007-03-25
|
|
Free Image Hosting 2.0 - 'AD_BODY_TEMP' Remote File Inclusion
|
1 |
WEB
|
Crackers_Child
|
|
2007-03-25
|
|
Mambo Module Flatmenu 1.07 - Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-24
|
|
Joomla! Component RWCards 2.4.3 - SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-24
|
|
Joomla! Component Car Manager 1.1 - SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-24
|
|
ttCMS 4 - 'ez_sql.php?lib_path' Remote File Inclusion
|
1 |
WEB
|
Kacper
|
|
2007-03-24
|
|
Net-Side.net CMS - 'index.php?cms' Remote File Inclusion
|
1 |
WEB
|
Sharingan
|
|
2007-03-23
|
|
Joomla! Component Joomlaboard 1.1.1 - 'sbp' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-23
|
|
eWebquiz 8 - 'eWebQuiz.asp' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-23
|
|
Joomla! / Mambo Component SWmenu 4.0 - Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-23
|
|
Active NewsLetter 4.3 - 'ViewNewspapers.asp' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-23
|
|
Philex 0.2.3 - Remote File Inclusion / File Disclosure
|
1 |
WEB
|
GoLd_M
|
|
2007-03-23
|
|
Active Auction Pro 7.1 - 'default.asp?catid' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-23
|
|
ActiveBuyandSell 6.2 - 'buyersend.asp?catid' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-23
|
|
Active Trade 2 - 'catid' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-23
|
|
RoseOnlineCMS 3 beta2 - 'op' Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-22
|
|
AspWebCalendar 4.5 - 'eventid' SQL Injection
|
1 |
WEB
|
parad0x
|
|
2007-03-22
|
|
Lms 1.8.9 - Vala Remote File Inclusion
|
1 |
WEB
|
Kacper
|
|
2007-03-22
|
|
PortailPhp 2.0 - 'idnews' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-03-22
|
|
ClassWeb 2.0.3 - 'BASE' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-21
|
|
Mambo Component nfnaddressbook 0.4 - Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-21
|
|
PHP-revista 1.1.2 - Multiple SQL Injections
|
1 |
WEB
|
Cold Zero
|
|
2007-03-21
|
|
Active Photo Gallery - 'catid' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-21
|
|
Active Link Engine - 'default.asp?catid' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-21
|
|
Digital Eye CMS 0.1.1b - 'module.php' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-21
|
|
study planner (studiewijzer) 0.15 - Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-03-20
|
|
Monster Top List 1.4.2 - 'functions.php?root_path' Remote File Inclusion
|
1 |
WEB
|
fluffy_bunny
|
|
2007-03-20
|
|
PHPRaid < 3.0.7 - 'rss.php?PHPraid_dir' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-20
|
|
PHP-Nuke Module htmltonuke 2.0alpha - 'htmltonuke.php' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-20
|
|
GeBlog 0.1 (Windows) - GLOBALS[tplname] Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-19
|
|
pragmaMX Module Landkarten 2.1 (Windows) - Local File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2007-03-19
|
|
NetVIOS Portal - 'page.asp' SQL Injection
|
1 |
WEB
|
parad0x
|
|
2007-03-19
|
|
phpBB Minerva Mod 2.0.21 build 238a - SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-03-19
|
|
PHP-Nuke Module splattforum 4.0 RC1 - Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-19
|
|
MetaForum 0.513 Beta - Arbitrary File Upload
|
1 |
WEB
|
Gu1ll4um3r0m41n
|
|
2007-03-19
|
|
ScriptMagix Lyrics 2.0 - 'index.php?recid' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-18
|
|
Katalog Plyt Audio (pl) 1.0 - SQL Injection
|
0 |
WEB
|
Kacper
|
|
2007-03-18
|
|
PHP-Nuke - 'iframe.php' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2007-03-18
|
|
ScriptMagix Photo Rating 2.0 - SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-18
|
|
ScriptMagix Recipes 2.0 - 'index.php?catid' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-18
|
|
ScriptMagix Jokes 2.0 - 'index.php?catid' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-18
|
|
Moodle 1.5.2 - 'moodledata' Remote Session Disclosure
|
1 |
WEB
|
xSh
|
|
2007-03-18
|
|
ScriptMagix FAQ Builder 2.0 - 'index.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-18
|
|
Guestbara 1.2 - Change Admin Login and Password
|
1 |
WEB
|
Kacper
|
|
2007-03-18
|
|
Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (1)
|
1 |
WEB
|
DarkFig
|
|
2007-03-17
|
|
Active PHP Bookmark Notes 0.2.5 - Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-17
|
|
MPM Chat 2.5 - 'view.php?logi' Local File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-17
|
|
PHP-Stats 0.1.9.1b - 'PHP-stats-options.php' Command Execution
|
1 |
WEB
|
rgod
|
|
2007-03-16
|
|
PHP DB Designer 1.02 - Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-16
|
|
Particle Blogger 1.2.0 - 'post.php?postid' SQL Injection
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-16
|
|
Creative Files 1.2 - 'kommentare.php' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-03-16
|
|
PHP-Stats 0.1.9.1b - 'ip' SQL Injection
|
1 |
WEB
|
rgod
|
|
2007-03-16
|
|
PHP-Stats 0.1.9.1b - 'PC-REMOTE-ADDR' SQL Injection
|
1 |
WEB
|
rgod
|
|
2007-03-15
|
|
McGallery 0.5b - 'download.php' Arbitrary File Download
|
1 |
WEB
|
Piker
|
|
2007-03-15
|
|
Absolute Image Gallery 2.0 - 'gallery.asp?categoryId' SQL Injection
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-15
|
|
WebCalendar 0.9.45 - 'includedir' Remote File Inclusion
|
1 |
WEB
|
Drackanz
|
|
2007-03-15
|
|
wbblog - Cross-Site Scripting / SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-03-15
|
|
creative Guestbook 1.0 - Multiple Vulnerabilities
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-15
|
|
CcMail 1.0.1 - 'functions_dir' Remote File Inclusion
|
1 |
WEB
|
Crackers_Child
|
|
2007-03-15
|
|
Groupit 2.00b5 - 'c_basepath' Remote File Inclusion
|
0 |
WEB
|
the_day
|
|
2007-03-15
|
|
Company WebSite Builder PRO 1.9.8 - 'INCLUDE_PATH' Remote File Inclusion
|
1 |
WEB
|
the_day
|
|
2007-03-15
|
|
WebLog - 'index.php' Remote File Disclosure
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-15
|
|
Woltlab Burning Board 2.x - 'usergroups.php' SQL Injection
|
1 |
WEB
|
x666
|
|
2007-03-15
|
|
Orion-Blog 2.0 - Remote Authentication Bypass
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-14
|
|
Dayfox Blog 4 - 'postpost.php' Remote Code Execution
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-14
|
|
WSN Guest 1.21 - 'id' SQL Injection
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-14
|
|
Zomplog 3.7.6 (Windows x86) - Local File Inclusion
|
1 |
WEB
|
Bl0od3r
|
|
2007-03-13
|
|
WebCreator 0.2.6-rc3 - 'moddir' Remote File Inclusion
|
1 |
WEB
|
the_day
|
|
2007-03-13
|
|
CARE2X 1.1 - 'ROOT_PATH' Remote File Inclusion
|
0 |
WEB
|
the_day
|
|
2007-03-13
|
|
Activist Mobilization Platform (AMP) 3.2 - Remote File Inclusion
|
1 |
WEB
|
the_day
|
|
2007-03-13
|
|
JGBBS 3.0beta1 - 'search.asp?author' SQL Injection
|
0 |
WEB
|
WiLdBoY
|
|
2007-03-13
|
|
X-ice News System 1.0 - 'devami.asp?id' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-13
|
|
MySQL Commander 2.7 - 'home' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-03-13
|
|
GestArt Beta 1 - 'aide.php?aide' Remote File Inclusion
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-12
|
|
BP Blog 7.0 - 'layout' SQL Injection
|
0 |
WEB
|
BeyazKurt
|
|
2007-03-12
|
|
OES (Open Educational System) 0.1beta - Remote File Inclusion
|
0 |
WEB
|
K-159
|
|
2007-03-11
|
|
cPanel 10.9.x - 'Fantastico' Local File Inclusion
|
1 |
WEB
|
cyb3rt & 020
|
