|
2006-12-26
|
|
Cahier de texte 2.2 - Bypass General Access Protection
|
0 |
WEB
|
DarkFig
|
|
2006-12-26
|
|
The Classified Ad System 1.0 - 'main' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-25
|
|
logahead UNU edition 1.0 - Arbitrary File Upload / Code Execution
|
0 |
WEB
|
CorryL
|
|
2006-12-25
|
|
Okul Merkezi Portal 1.0 - 'ataturk.php' Remote File Inclusion
|
0 |
WEB
|
ShaFuck31
|
|
2006-12-25
|
|
Fishyshoop 0.930b - Remote Add Administrator Account
|
0 |
WEB
|
James Gray
|
|
2006-12-25
|
|
myPHPNuke Module My_eGallery 2.5.6 - 'basepath' Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2006-12-25
|
|
Shadowed Portal Module Character Roster - 'mod_root' Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2006-12-25
|
|
Ciberia Content Federator 1.0.1 - 'path' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-12-25
|
|
Irokez Blog 0.7.1 - Multiple Remote File Inclusions
|
0 |
WEB
|
nuffsaid
|
|
2006-12-25
|
|
PhpbbXtra 2.0 - 'phpbb_root_path' Remote File Inclusion
|
0 |
WEB
|
Mehmet Ince
|
|
2006-12-25
|
|
MTCMS 2.0 - '/admin/admin_settings.php' Remote File Inclusion
|
0 |
WEB
|
nuffsaid
|
|
2006-12-25
|
|
eNdonesia 8.4 - '/mod.php/friend.php/admin.php' Multiple Vulnerabilities
|
0 |
WEB
|
z1ckX(ru)
|
|
2006-12-25
|
|
Jinzora 2.7 - 'INCLUDE_PATH' Multiple Remote File Inclusions
|
0 |
WEB
|
nuffsaid
|
|
2006-12-25
|
|
HLStats 1.34 - 'hlstats.php' SQL Injection
|
0 |
WEB
|
Michael Brooks
|
|
2006-12-24
|
|
Ananda Real Estate 3.4 - 'agent' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-24
|
|
Pagetool CMS 1.07 - 'pt_upload.php' Remote File Inclusion
|
0 |
WEB
|
g00ns
|
|
2006-12-24
|
|
Ultimate PHP Board 2.0b1 - '/chat/login.php' Code Execution
|
0 |
WEB
|
nuffsaid
|
|
2006-12-24
|
|
NewsLetter MX 1.0.2 - 'ID' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-24
|
|
File Upload Manager 1.0.6 - 'detail.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eNews 1.0 - Remote User Pass Change
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eCoupons 1.0 - 'myprofile.asp' Remote Pass Change
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eClassifieds 1.0 - Remote User Pass Change
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Calendar MX BASIC 1.0.2 - 'ID' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Dragon Business Directory 3.01.12 - 'ID' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb ePages - 'actualpic.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb emates 1.0 - 'newsdetail.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eCars 1.0 - 'types.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eJobs - 'newsdetail.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb eHomes 1.0 - Multiple (SQL Injection / Cross-Site Scripting) Vulnerabilities
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
Enthrallweb ePhotos 1.0 - 'subLevel2.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-23
|
|
SH-News 0.93 - 'misc.php' Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2006-12-23
|
|
b2 Blog 0.5 - 'b2verifauth.php' Remote File Inclusion
|
0 |
WEB
|
mdx
|
|
2006-12-22
|
|
3editor CMS 0.42 - 'index.php' Local File Inclusion
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-23
|
|
open NewsLetter 2.5 - Multiple Vulnerabilities (2)
|
0 |
WEB
|
BlackHawk
|
|
2006-12-22
|
|
EternalMart Guestbook 1.10 - '/admin/auth.php' Remote File Inclusion
|
0 |
WEB
|
mdx
|
|
2006-12-22
|
|
KISGB 5.1.1 - 'Authenticate.php' Remote File Inclusion
|
0 |
WEB
|
mdx
|
|
2006-12-21
|
|
MKPortal M1.1.1 - 'Urlobox' Cross-Site Request Forgery
|
0 |
WEB
|
Demential
|
|
2006-12-21
|
|
inertianews 0.02b - 'inertianews_main.php' Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2006-12-21
|
|
Ixprim CMS 1.2 - Blind SQL Injection
|
0 |
WEB
|
DarkFig
|
|
2006-12-21
|
|
PowerClan 1.14a - 'footer.inc.php' Remote File Inclusion
|
0 |
WEB
|
nuffsaid
|
|
2006-12-21
|
|
PgmReloaded 0.8.5 - Multiple Remote File Inclusions
|
0 |
WEB
|
nuffsaid
|
|
2006-12-21
|
|
Newxooper-PHP 0.9.1 - 'mapage.php' Remote File Inclusion
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-21
|
|
PHP/Mysql Site Builder 0.0.2 - 'htm2PHP.php' File Disclosure
|
1 |
WEB
|
the master
|
|
2006-12-20
|
|
PHP Advanced Transfer Manager 1.30 - Source Code Disclosure
|
1 |
WEB
|
Kacper
|
|
2006-12-20
|
|
TextSend 1.5 - '/config/sender.php' Remote File Inclusion
|
1 |
WEB
|
nuffsaid
|
|
2006-12-20
|
|
Valdersoft Shopping Cart 3.0 - Multiple Remote File Inclusions
|
1 |
WEB
|
mdx
|
|
2006-12-19
|
|
cwmExplorer 1.0 - 'show_file' Source Code Disclosure
|
1 |
WEB
|
ajann
|
|
2006-12-19
|
|
Burak Yilmaz Download Portal - 'down.asp' SQL Injection
|
0 |
WEB
|
ShaFuck31
|
|
2006-12-19
|
|
cwmCounter 5.1.1 - 'statistic.php' Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2006-12-19
|
|
cwmVote 1.0 - 'archive.php' Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2006-12-19
|
|
PHPFanBase 2.x - 'protection.php' Remote File Inclusion
|
1 |
WEB
|
Cold Zero
|
|
2006-12-19
|
|
phpProfiles 3.1.2b - Multiple Remote File Inclusions
|
1 |
WEB
|
nuffsaid
|
|
2006-12-19
|
|
Paristemi 0.8.3b - 'buycd.php' Remote File Inclusion
|
1 |
WEB
|
nuffsaid
|
|
2006-12-19
|
|
PHP-Update 2.7 - 'extract()' Authentication Bypass / Shell Injection
|
1 |
WEB
|
rgod
|
|
2006-12-18
|
|
RateMe 1.3.2 - 'main.inc.php' Remote File Inclusion
|
1 |
WEB
|
Al7ejaz Hacker
|
|
2006-12-18
|
|
Uploader & Downloader 3.0 - 'id_user' SQL Injection
|
1 |
WEB
|
the master
|
|
2006-12-18
|
|
VerliAdmin 0.3 - 'index.php' Remote File Inclusion
|
1 |
WEB
|
Kacper
|
|
2006-12-18
|
|
Azucar CMS 1.3 - '/admin/index_sitios.php' File Inclusion
|
1 |
WEB
|
nuffsaid
|
|
2006-12-16
|
|
mxBB Module Meeting 1.1.2 - Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2006-12-16
|
|
mxbb module charts 1.0.0 - Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2006-12-16
|
|
mxBB Module WebLinks 2.05 - Remote File Inclusion
|
1 |
WEB
|
ajann
|
|
2006-12-16
|
|
Bandwebsite 1.5 - 'LOGIN' Remote Add Admin
|
1 |
WEB
|
H0tTurk-
|
|
2006-12-16
|
|
extreme-fusion 4.02 - Remote Code Execution
|
1 |
WEB
|
Kacper
|
|
2006-12-14
|
|
AR Memberscript - 'usercp_menu.php' Remote File Inclusion
|
1 |
WEB
|
ex0
|
|
2006-12-14
|
|
yaplap 0.6.1b - 'ldap.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-12-13
|
|
PHPMyCMS 0.3 - 'basic.inc.php' Remote File Inclusion
|
0 |
WEB
|
v1per-haCker
|
|
2006-12-12
|
|
mxBB Module newssuite 1.03 - Remote File Inclusion
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-12
|
|
mxBB Module kb_mods 2.0.2 - Remote File Inclusion
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-12
|
|
Blog:CMS 4.1.3 - 'NP_UserSharing.php' Remote File Inclusion
|
0 |
WEB
|
HACKERS PAL
|
|
2006-12-12
|
|
mxBB Module mx_modsdb 1.0 - Remote File Inclusion
|
0 |
WEB
|
Lu7k
|
|
2006-12-11
|
|
Barman 0.0.1r3 - 'Interface.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-12-11
|
|
mxBB Module Activity Games 0.92 - Remote File Inclusion
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-11
|
|
mxBB Module ErrorDocs 1.0 - 'common.php' Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2006-12-10
|
|
PHPAlbum 0.4.1 Beta 6 - 'language.php' Local File Inclusion
|
0 |
WEB
|
Kacper
|
|
2006-12-09
|
|
HR Assist 1.05 - 'vdateUsr.asp' Remote Authentication Bypass
|
0 |
WEB
|
ajann
|
|
2006-12-09
|
|
Request For Travel 1.0 - 'product' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-09
|
|
SpotLight CRM 1.0 - 'login.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-12-09
|
|
Fantastic News 2.1.4 - 'news.php' SQL Injection
|
0 |
WEB
|
Bl0od3r
|
|
2006-12-09
|
|
Gizzar 03162002 - 'index.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-12-09
|
|
mxBB Module Profile CP 0.91c - Remote File Inclusion
|
0 |
WEB
|
bd0rk
|
|
2006-12-09
|
|
TorrentFlux 2.2 - 'maketorrent.php' Remote Command Execution
|
0 |
WEB
|
r0ut3r
|
|
2006-12-09
|
|
TorrentFlux 2.2 - 'downloaddetails.php' Local File Disclosure
|
0 |
WEB
|
r0ut3r
|
|
2006-12-08
|
|
paFileDB 3.5.2/3.5.3 - Remote Authentication Bypass / SQL Injection
|
1 |
WEB
|
koray
|
|
2006-12-08
|
|
ThinkEdit 1.9.2 - 'render.php' Remote File Inclusion
|
1 |
WEB
|
r0ut3r
|
|
2006-12-08
|
|
CM68 News 12.02.06 - 'addpth' Remote File Inclusion
|
1 |
WEB
|
Paul Bakoyiannis
|
|
2006-12-08
|
|
Tucows Client Code Suite (CSS) 1.2.1015 - Remote File Inclusion
|
1 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-07
|
|
J-OWAMP Web Interface 2.1b - 'link' Remote File Inclusion
|
1 |
WEB
|
3l3ctric-Cracker
|
|
2006-12-06
|
|
Phorum 3.2.11 - 'common.php' Remote File Inclusion
|
1 |
WEB
|
Mr-m07
|
|
2006-12-04
|
|
CuteNews aj-fork 167f - 'cutepath' Remote File Inclusion
|
1 |
WEB
|
DeltahackingTEAM
|
|
2006-12-03
|
|
PHP-revista 1.1.2 - 'adodb' Multiple Remote File Inclusions
|
1 |
WEB
|
Cold Zero
|
|
2006-12-03
|
|
QuickCart 2.0 - 'categories.php' Local File Inclusion
|
1 |
WEB
|
r0ut3r
|
|
2006-12-03
|
|
Envolution 1.1.0 - 'PNSVlang' Remote Code Execution
|
1 |
WEB
|
Kacper
|
|
2006-12-03
|
|
PHP Upload Center 2.0 - 'activate.php' File Inclusion
|
1 |
WEB
|
GregStar
|
|
2006-12-02
|
|
mxBB Module mx_tinies 1.3.0 - Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2006-12-02
|
|
awrate.com Message Board 1.0 - 'search.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-12-02
|
|
simple file manager 0.24a - Multiple Vulnerabilities
|
1 |
WEB
|
flame
|
|
2006-12-02
|
|
BBS E-Market Professional - Full Path Disclosure / File Inclusion
|
1 |
WEB
|
y3dips
|
|
2006-12-01
|
|
Ultimate HelpDesk - Cross-Site Scripting / Local File Disclosure
|
1 |
WEB
|
ajann
|
|
2006-12-01
|
|
ContentServ 4.x - '/admin/FileServer.php' File Disclosure
|
1 |
WEB
|
qobaiashi
|
|
2006-12-01
|
|
Invision Community Blog Mod 1.2.4 - SQL Injection
|
1 |
WEB
|
anonymous
|
|
2006-12-01
|
|
DZCP (deV!L_z Clanportal) 1.3.6 - Arbitrary File Upload
|
1 |
WEB
|
Tim Weber
|
|
2006-11-30
|
|
LDU 8.x - 'polls.php' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-11-30
|
|
S9Y Serendipity 1.0.3 - 'comment.php' Local File Inclusion
|
1 |
WEB
|
Kacper
|
|
2006-11-30
|
|
phpGraphy 0.9.12 - Privilege Escalation / Commands Execution
|
1 |
WEB
|
rgod
|
|
2006-11-29
|
|
b2evolution 1.8.5 < 1.9b - 'import-mt.php' Remote File Inclusion
|
1 |
WEB
|
tarkus
|
|
2006-11-29
|
|
kubix 0.7 - Multiple Vulnerabilities
|
1 |
WEB
|
BlackHawk
|
|
2006-11-28
|
|
P-News 2.0 - 'user.txt' Remote Password Disclosure
|
1 |
WEB
|
Lu7k
|
|
2006-11-28
|
|
Discuz! 4.x - SQL Injection / Admin Credentials Disclosure
|
1 |
WEB
|
rgod
|
|
2006-11-26
|
|
SimpleBlog 2.3 - '/admin/edit.asp' SQL Injection
|
1 |
WEB
|
bolivar
|
|
2006-11-26
|
|
Mambo Component com_flyspray < 1.0.1 - Remote File Disclosure
|
0 |
WEB
|
3l3ctric-Cracker
|
|
2006-11-26
|
|
Hacks List phpBB Mod 1.21 - SQL Injection
|
0 |
WEB
|
the master
|
|
2006-11-25
|
|
Exhibit Engine 1.22 - 'styles.php' Remote File Inclusion
|
0 |
WEB
|
Kacper
|
|
2006-11-25
|
|
ASP-Nuke Community 1.5 - Cookie Privilege Escalation
|
0 |
WEB
|
ajann
|
|
2006-11-25
|
|
Basic Forum 1.1 - 'edit.asp' SQL Injection
|
0 |
WEB
|
bolivar
|
|
2006-11-25
|
|
Sisfo Kampus 0.8 - Remote File Inclusion / Download
|
0 |
WEB
|
Wawan Firmansyah
|
|
2006-11-25
|
|
Liberum Help Desk 0.97.3 - SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-11-24
|
|
Cahier de texte 2.0 - Database Backup / Source Disclosure
|
0 |
WEB
|
DarkFig
|
|
2006-11-24
|
|
PHP-Nuke NukeAI Module 3b - 'util.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
Woltlab Burning Board Lite 1.0.2 - Blind SQL Injection
|
0 |
WEB
|
rgod
|
|
2006-11-24
|
|
Woltlab Burning Board Lite 1.0.2 - 'decode_cookie()' SQL Injection
|
0 |
WEB
|
rgod
|
|
2006-11-23
|
|
PEGames - 'index.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
OWLLib 1.0 - 'OWLMemoryProperty.php' Remote File Inclusion
|
0 |
WEB
|
DeltahackingTEAM
|
|
2006-11-23
|
|
HSRS 1.0 - 'addcode.php' Remote File Inclusion
|
0 |
WEB
|
Cold Zero
|
|
2006-11-23
|
|
JiRos FAQ Manager 1.0 - 'index.asp' SQL Injection
|
0 |
WEB
|
ajann
|
|
2006-11-23
|
|
Wallpaper Complete Website 1.0.09 - SQL Injection
|
0 |
WEB
|
GregStar
|
