|
2007-03-11
|
|
AssetMan 2.4a - 'download_pdf.php' Remote File Disclosure
|
1 |
WEB
|
h4ck3r
|
|
2007-03-11
|
|
SonicMailer Pro 3.2.3 - 'index.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-11
|
|
Top Auction 1.0 - 'viewcat.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-11
|
|
JobSitePro 1.0 - 'search.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-11
|
|
PostNuke Module phgstats 0.5 - 'phgdir' Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2007-03-10
|
|
NukeSentinel 2.5.06 - SQL Injection
|
1 |
WEB
|
DarkFig
|
|
2007-03-10
|
|
HC Newssystem 1.0-1.4 - 'index.php?ID' SQL Injection
|
1 |
WEB
|
WiLdBoY
|
|
2007-03-10
|
|
work system E-Commerce 3.0.5 - Remote File Inclusion
|
1 |
WEB
|
Rodrigo Duarte
|
|
2007-03-09
|
|
Grayscale Blog 0.8.0 - Security Bypass / SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
Omni
|
|
2007-03-09
|
|
PMB Services 3.0.13 - Multiple Remote File Inclusions
|
1 |
WEB
|
K-159
|
|
2007-03-08
|
|
Magic CMS 4.2.747 - 'mysave.php' Remote File Inclusion
|
0 |
WEB
|
DNX
|
|
2007-03-08
|
|
GaziYapBoz Game Portal - 'kategori.asp' SQL Injection
|
1 |
WEB
|
CyberGhost
|
|
2007-03-08
|
|
WEBO (Web ORGanizer) 1.0 - 'baseDir' Remote File Inclusion
|
0 |
WEB
|
K-159
|
|
2007-03-08
|
|
netForo! 0.1 - 'down.php?file_to_download' Remote File Disclosure
|
1 |
WEB
|
GoLd_M
|
|
2007-03-07
|
|
Flat Chat 2.0 - 'include online.txt' Remote Code Execution
|
1 |
WEB
|
Dj7xpl
|
|
2007-03-07
|
|
PHP-Nuke Module PostGuestbook 0.6.1 - 'tpl_pgb_moddir' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-03-05
|
|
Links Management Application 1.0 - 'lcnt' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-03-04
|
|
RRDBrowse 1.6 - Arbitrary File Disclosure
|
0 |
WEB
|
Sebastian Wolfgarten
|
|
2007-03-04
|
|
AJ Forum 1.0 - 'topic_title.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-04
|
|
AJ Classifieds 1.0 - 'postingdetails.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-04
|
|
AJ Dating 1.0 - 'view_profile.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-04
|
|
AJ Auction Pro - 'subcat.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-03-04
|
|
News-Letterman 1.1 - 'eintrag.php?sqllog' Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2007-03-04
|
|
Rigter Portal System (RPS) 6.2 - Blind SQL Injection
|
0 |
WEB
|
s0cratex
|
|
2007-03-03
|
|
webSPELL 4.01.02 - PHP Remote Code Execution
|
0 |
WEB
|
DarkFig
|
|
2007-03-02
|
|
webSPELL 4.01.02 - Multiple SQL Injections
|
0 |
WEB
|
DNX
|
|
2007-03-02
|
|
Mani Stats Reader 1.2 - 'ipath' Remote File Inclusion
|
0 |
WEB
|
mozi
|
|
2007-03-01
|
|
phpMyFAQ 1.6.7 - SQL Injection / Command Execution
|
0 |
WEB
|
elgCrew
|
|
2007-03-01
|
|
Angel Lms 7.1 - 'default.asp?id' SQL Injection
|
1 |
WEB
|
Craig Heffner
|
|
2007-02-28
|
|
vBulletin 3.6.4 - 'inlinemod.php?postids' SQL Injection
|
1 |
WEB
|
rgod
|
|
2007-02-27
|
|
Admin Phorum 3.3.1a - 'del.php?include_path' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-26
|
|
STWC-Counter 3.4.0 - 'downloadcounter.php' Remote File Inclusion
|
1 |
WEB
|
burncycle
|
|
2007-02-25
|
|
PHP-MIP 0.1 - 'top.php?laypath' Remote File Inclusion
|
0 |
WEB
|
GoLd_M
|
|
2007-02-24
|
|
phpBB Module NoMoKeTos Rules 0.0.1 - Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2007-02-24
|
|
CS-Gallery 2.0 - 'index.php?album' Remote File Inclusion
|
1 |
WEB
|
burncycle
|
|
2007-02-24
|
|
Coppermine Photo Gallery 1.3.x - Blind SQL Injection
|
1 |
WEB
|
s0cratex
|
|
2007-02-24
|
|
Extreme phpBB 3.0.1 - 'functions.php' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-23
|
|
Sinapis Forum 2.2 - 'sinapis.php?fuss' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-02-23
|
|
Sinapis 2.2 Gastebuch - 'sinagb.php?fuss' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-02-23
|
|
FCRing 1.31 - 'fcring.php?s_fuss' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-02-22
|
|
eFiction 3.1.1 - 'path_to_smf' Remote File Inclusion
|
1 |
WEB
|
ThE dE@Th
|
|
2007-02-22
|
|
FlashGameScript 1.5.4 - 'index.php?func' Remote File Inclusion
|
1 |
WEB
|
JuMp-Er
|
|
2007-02-21
|
|
DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure
|
1 |
WEB
|
Kiba
|
|
2007-02-21
|
|
Nabopoll 1.2 - 'result.php?surv' Blind SQL Injection
|
1 |
WEB
|
s0cratex
|
|
2007-02-21
|
|
DBGuestbook 1.1 - 'dbs_base_path' Remote File Inclusion
|
1 |
WEB
|
Denven
|
|
2007-02-21
|
|
DBImageGallery 1.2.2 - 'donsimg_base_path' Remote File Inclusion
|
1 |
WEB
|
Denven
|
|
2007-02-21
|
|
Connectix Boards 0.7 - 'p_skin' Multiple Vulnerabilities
|
1 |
WEB
|
DarkFig
|
|
2007-02-21
|
|
webSPELL 4.01.02 - 'topic' SQL Injection
|
1 |
WEB
|
DNX
|
|
2007-02-20
|
|
SendStudio 2004.14 - 'ROOTDIR' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - HTTP Referers SQL Injection
|
1 |
WEB
|
krasza
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - 'INSERT' SQL Injection
|
1 |
WEB
|
krasza
|
|
2007-02-20
|
|
PHP-Nuke 8.0 Final - 'INSERT' Blind SQL Injection (MySQL)
|
1 |
WEB
|
krasza
|
|
2007-02-20
|
|
Online Web Building 2.0 - 'id' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-20
|
|
NukeSentinel 2.5.05 - 'nukesentinel.php' File Disclosure
|
1 |
WEB
|
DarkFig
|
|
2007-02-20
|
|
NukeSentinel 2.5.05 - 'nsbypass.php' Blind SQL Injection
|
1 |
WEB
|
DarkFig
|
|
2007-02-20
|
|
Ultimate Fun Book 1.02 - 'function.php' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-02-19
|
|
PHP-Nuke Module Emporium 2.3.0 - SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-02-18
|
|
Xpression News 1.0.1 - 'archives.php' Remote File Disclosure
|
0 |
WEB
|
r0ut3r
|
|
2007-02-18
|
|
S-Gastebuch 1.5.3 - 'gb_pfad' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-02-17
|
|
XLAtunes 0.1 - 'album' SQL Injection
|
1 |
WEB
|
Bl0od3r
|
|
2007-02-16
|
|
Vivvo Article Manager 3.4 - 'root' Local File Inclusion
|
1 |
WEB
|
Snip0r
|
|
2007-02-16
|
|
webSPELL 4.01.02 - 'showonly' Blind SQL Injection
|
1 |
WEB
|
DNX
|
|
2007-02-16
|
|
Htaccess Passwort Generator 1.1 - 'ht_pfad' Remote File Inclusion
|
1 |
WEB
|
kezzap66345
|
|
2007-02-16
|
|
VS-Link-Partner 2.1 - 'script_pfad' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-02-16
|
|
VS-News-System 1.2.1 - 'newsordner' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-02-16
|
|
Snitz Forums 2000 3.1 SR4 - 'pop_profile.asp' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-15
|
|
Aktueldownload Haber scripti - 'id' SQL Injection
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-15
|
|
CodeAvalanche News 1.x - 'CAT_ID' SQL Injection
|
2 |
WEB
|
beks
|
|
2007-02-15
|
|
nabopoll 1.2 - 'survey.inc.php?path' Remote File Inclusion
|
1 |
WEB
|
Cr@zy_King
|
|
2007-02-15
|
|
ZebraFeeds 1.0 - 'zf_path' Remote File Inclusion
|
1 |
WEB
|
ThE dE@Th
|
|
2007-02-15
|
|
Drupal < 4.7.6 - Post Comments Remote Command Execution
|
1 |
WEB
|
str0ke
|
|
2007-02-15
|
|
Drupal < 5.1 - Post Comments Remote Command Execution
|
0 |
WEB
|
str0ke
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - Arbitrary File Upload
|
0 |
WEB
|
DarkFig
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - 'Client-IP' SQL Injection
|
0 |
WEB
|
DarkFig
|
|
2007-02-14
|
|
Jupiter CMS 1.1.5 - '/index.php' Local/Remote File Inclusion
|
0 |
WEB
|
DarkFig
|
|
2007-02-13
|
|
nabopoll 1.2 - Remote Unprotected Admin Section
|
0 |
WEB
|
sn0oPy
|
|
2007-02-13
|
|
PollMentor 2.0 - 'pollmentorres.asp?id' SQL Injection
|
0 |
WEB
|
SaO
|
|
2007-02-13
|
|
Advanced Poll 2.0.5-dev - Remote Code Execution
|
0 |
WEB
|
diwou
|
|
2007-02-13
|
|
PHPCC 4.2 Beta - 'nickpage.php?npid' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-13
|
|
Xaran CMS 2.0 - 'xarancms_haupt.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-13
|
|
AT Contenator 1.0 - 'Root_To_Script' Remote File Inclusion
|
0 |
WEB
|
ajann
|
|
2007-02-12
|
|
philboard 1.14 - 'philboard_forum.asp' SQL Injection
|
0 |
WEB
|
Mehmet Ince
|
|
2007-02-11
|
|
OPENi-CMS Site Protection Plugin - Remote File Inclusion
|
0 |
WEB
|
y3dips
|
|
2007-02-08
|
|
LushiWarPlaner 1.0 - 'register.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-08
|
|
LushiNews 1.01 - 'comments.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-08
|
|
LightRO CMS 1.0 - 'index.php?projectid' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-08
|
|
Site-Assistant 0990 - 'paths[version]' Remote File Inclusion
|
0 |
WEB
|
ajann
|
|
2007-02-07
|
|
Maian Recipe 1.0 - 'path_to_folder' Remote File Inclusion
|
0 |
WEB
|
Denven
|
|
2007-02-07
|
|
otscms 2.1.5 - SQL Injection / Cross-Site Scripting
|
1 |
WEB
|
GregStar
|
|
2007-02-07
|
|
Advanced Poll 2.0.5-dev - Remote Admin Session Generator
|
1 |
WEB
|
diwou
|
|
2007-02-07
|
|
WebMatic 2.6 - 'index_album.php' Remote File Inclusion
|
1 |
WEB
|
MadNet
|
|
2007-02-07
|
|
AgerMenu 0.01 - 'top.inc.php?rootdir' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-06
|
|
Kisisel Site 2007 - 'tr' SQL Injection
|
1 |
WEB
|
cl24zy
|
|
2007-02-06
|
|
LightRO CMS 1.0 - 'inhalt.php' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-02-05
|
|
GGCMS 1.1.0 RC1 - Remote Code Execution
|
1 |
WEB
|
Kacper
|
|
2007-02-05
|
|
Categories hierarchy phpBB Mod 2.1.2 - 'phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-05
|
|
SMA-DB 0.3.9 - 'settings.php' Remote File Inclusion
|
1 |
WEB
|
ThE dE@Th
|
|
2007-02-05
|
|
Geeklog 2 - 'BaseView.php' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-04
|
|
Flip 2.01 final - 'previewtheme.php?inc_path' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-03
|
|
KDPics 1.11 - 'exif.php?lib_path' Remote File Inclusion
|
1 |
WEB
|
AsTrex
|
|
2007-02-03
|
|
Woltlab Burning Board Lite 1.0.2pl3e - 'pms.php' SQL Injection
|
0 |
WEB
|
rgod
|
|
2007-02-03
|
|
Photo Galerie Standard 1.1 - 'view.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2007-02-02
|
|
phpBB++ Build 100 - 'phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
phpBB ezBoard Converter 0.2 - 'ezconvert_dir' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
dB Masters Curium CMS 1.03 - 'c_id' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-02-02
|
|
F3Site 2.1 - Remote Code Execution
|
1 |
WEB
|
Kacper
|
|
2007-02-02
|
|
Flipper Poll 1.1.0 - 'poll.php?root_path' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-02-02
|
|
EQdkp 1.3.1 - 'Referer Spoof' Remote Database Backup
|
1 |
WEB
|
Eight10
|
|
2007-02-02
|
|
CoD2: DreamStats 4.2 - 'index.php' Remote File Inclusion
|
0 |
WEB
|
ThE dE@Th
|
|
2007-02-01
|
|
Portail Web PHP 2.5.1 - 'includes.php' Remote File Inclusion
|
1 |
WEB
|
laurent gaffié
|
|
2007-02-01
|
|
WebBuilder 2.0 - 'StageLoader.php' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
Epistemon 1.0 - 'common.php?inc_path' Remote File Inclusion
|
1 |
WEB
|
GoLd_M
|
|
2007-02-01
|
|
phpEventMan 1.0.2 - 'level' Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2007-02-01
|
|
SIPS 0.3.1 - 'box.inc.php' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cerulean Portal System 0.7b - Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Omegaboard 1.0beta4 - 'functions.php' Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
Hunkaray Duyuru Scripti - 'tr' SQL Injection
|
0 |
WEB
|
cl24zy
|
|
2007-01-31
|
|
JV2 Folder Gallery 3.0 - Remote File Inclusion
|
0 |
WEB
|
ThE dE@Th
|
|
2007-01-31
|
|
Extcalendar 2 - 'profile.php' Remote User Pass Change
|
1 |
WEB
|
ajann
|
|
2007-01-31
|
|
PHPMyRing 4.1.3b - 'fichier' Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2007-01-31
|
|
Cadre PHP Framework - Remote File Inclusion
|
1 |
WEB
|
y3dips
|
|
2007-01-31
|
|
Hailboards 1.2.0 - 'phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
phpBB Tweaked 3 - 'phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Mehmet Ince
|
|
2007-01-31
|
|
ExoPHPDesk 1.2.1 - 'faq.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2007-01-31
|
|
Fullaspsite Asp Hosting Sitesi - 'tr' SQL Injection
|
1 |
WEB
|
cl24zy
|
