|
2012-07-06
|
|
Freeside SelfService CGI|API 2.3.3 Cross Site Scripting / SQL Injection
|
52 |
WEB
|
Ibrahim El-Sayed
|
|
2012-07-06
|
|
Classifieds Ads Script PHP 1.1 SQL Injection
|
77 |
WEB
|
snup
|
|
2012-07-06
|
|
GuestBook Scripts PHP 1.5 Cross Site Scripting / SQL Injection
|
155 |
WEB
|
snup
|
|
2012-07-06
|
|
Event Script PHP CMS 1.1 SQL Injection
|
81 |
WEB
|
snup
|
|
2012-07-06
|
|
Tiki Wiki CMS Groupware 8.3 Code Execution
|
72 |
WEB
|
EgiX
|
|
2012-07-04
|
|
Sava’s Simple Upload Script / Delete Arbitrary File
|
92 |
WEB
|
Daniel Godoy
|
|
2012-07-04
|
|
Sava’s Simple Upload Script / Arbitrary File Upload
|
145 |
WEB
|
Daniel Godoy
|
|
2012-07-04
|
|
phpMyBackupPro <= 2.2 Local File Inclusion Vulnerability
|
67 |
WEB
|
dun
|
|
2012-07-04
|
|
CLscript Classified Script 3.0 SQL Injection
|
103 |
WEB
|
Daniel Godoy
|
|
2012-07-04
|
|
gp easy CMS Minishop 1.5 Plugin Persistent XSS
|
62 |
WEB
|
Carlos Mario Penagos Hollmann
|
|
2012-07-03
|
|
WordPress yet-another-photoblog plugin Full path disclosure Vulnerability
|
119 |
WEB
|
KinG Of PiraTeS
|
|
2012-07-03
|
|
Geswebs - SQL Injection Vulnerability
|
88 |
WEB
|
TheCyberNuxbie
|
|
2012-07-03
|
|
Global Pixel - SQL Injection Vulnerability
|
85 |
WEB
|
TAURUS OMAR
|
|
2012-07-03
|
|
vBulletin 3.x.x full path disclosure Vulnerability
|
94 |
WEB
|
Angel Injection
|
|
2012-07-03
|
|
BoutikOne CSRF Add User Vulnerability
|
91 |
WEB
|
GarA
|
|
2012-07-03
|
|
BoutikOne ByPass & Download Backup Vulnerability
|
81 |
WEB
|
GarA
|
|
2012-07-03
|
|
WANGKONGBAO CNS-1000 UTM IPS-FW Directory Traversal
|
58 |
WEB
|
Dillon Beresford
|
|
2012-07-03
|
|
IIS Short File/Folder Name Disclosure
|
90 |
WEB
|
Soroush Dalili
|
|
2012-06-20
|
|
iBoutique eCommerce v4.0 Multiple Web Vulnerabilites
|
279 |
WEB
|
Vulnerability-Lab
|
|
2012-06-20
|
|
CMS Balitbang - CSRF/XSS Vulnerability
|
81 |
WEB
|
TheCyberNuxbie
|
|
2012-06-19
|
|
e107 Plugins - Image Gallery Remote File Disclosure Vulnerability
|
64 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Hupsi fancybox Arbitrary File Upload Vulnerability
|
61 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Filemanager Arbitrary File Upload Vulnerability
|
49 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Radio Plan Arbitrary File Upload Vulnerability
|
104 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Tap Arbitrary File Upload Vulnerability
|
48 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Hupsis Media Gallery Arbitrary File Upload Vulnerability
|
59 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - Hupsi Share Arbitrary File Upload Vulnerability
|
65 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Plugins - FilleDownload Plugin Multiple Vulnerability
|
90 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
proservice cms Sql Injection Vulnerablity
|
89 |
WEB
|
cheki
|
|
2012-06-19
|
|
MyTickets 1 to 2.0.8 Blind SQL Injection
|
69 |
WEB
|
al-swisre
|
|
2012-06-19
|
|
Nuked Klan SP CMS v4.5 SQL Injection Vulnerability
|
85 |
WEB
|
Vulnerability-Lab
|
|
2012-06-15
|
|
qdPM v.7 Arbitrary File upload
|
90 |
WEB
|
loneferret
|
|
2012-06-14
|
|
Wordpress Plugins - Invit0r Arbitrary File Upload Vulnerability
|
77 |
WEB
|
Sammy FORGIT
|
|
2012-06-14
|
|
Wordpress Plugins - Evarisk Arbitrary File Upload Vulnerability
|
75 |
WEB
|
Sammy FORGIT
|
|
2012-06-14
|
|
RevolutionTechnologies - SQL Injection Vulnerability
|
55 |
WEB
|
TheCyberNuxbie
|
|
2012-06-14
|
|
PHP 5.4.3 (cli) code read vulnerability
|
69 |
WEB
|
cheki
|
|
2012-06-14
|
|
seoPLUSteam SQL Injection Vulnerability
|
54 |
WEB
|
Iranian_Dark_Coders_Team
|
|
2012-06-14
|
|
XAMPP Windows 1.7.7 multiple XSS/Blind SQL Injection Vulnerabilities
|
71 |
WEB
|
Sangteamtham
|
|
2012-06-14
|
|
WordPress plugin Foxypress uploadify.php Arbitrary Code Execution
|
62 |
WEB
|
patrick
|
|
2012-06-13
|
|
Edimax IC-3030iWn Authentication Bypass
|
64 |
WEB
|
y3dips
|
|
2012-06-13
|
|
Wordpress Plugins - Annonces Arbitrary File Upload Vulnerability
|
71 |
WEB
|
Sammy FORGIT
|
|
2012-06-13
|
|
Symantec Web Gateway 5.0.2.8 ipchange.php Command Injection
|
62 |
WEB
|
juan vazquez
|
|
2012-06-12
|
|
[Spanish] Remote Command Execution through Local File Inclusion
|
92 |
WEB
|
JosS
|
|
2012-06-12
|
|
TheBlog <= 2.0 Multiple Vulnerabilities
|
85 |
WEB
|
WhiteCollarGroup
|
|
2012-06-12
|
|
Agora-Project 2.12.11 Arbitrary File Upload Vulnerability
|
78 |
WEB
|
Misa3l
|
|
2012-06-12
|
|
ClanSuite 2.9 Arbitrary File Upload Vulnerability
|
66 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerability
|
96 |
WEB
|
juan vazquez
|
|
2012-06-11
|
|
phpAcounts v.0.5.3 SQL Injection
|
78 |
WEB
|
loneferret
|
|
2012-06-11
|
|
Wordpress wpStoreCart Plugin 2.5.27-2.5.29 Arbitrary File Upload
|
53 |
WEB
|
Sammy FORGIT
|
|
2012-06-11
|
|
Wordpress RBX Gallery Plugin 2.1 Arbitrary File Upload
|
79 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
Wordpress Omni Secure Files Plugin 0.1.13 Arbitrary File Upload
|
93 |
WEB
|
Adrien Thierry
|
|
2012-06-08
|
|
Wordpress Front End Upload 0.5.3 Arbitrary File Upload
|
75 |
WEB
|
Adrien Thierry
|
|
2012-06-08
|
|
PHPNet <= 1.8 (ler.php) SQL Injection
|
74 |
WEB
|
WhiteCollarGroup
|
|
2012-06-08
|
|
SN News <= 1.2 (/admin/loger.php) Admin Bypass SQL Injection
|
128 |
WEB
|
Pr0T3cT10n
|
|
2012-06-07
|
|
Vanilla kPoll Plugin 1.2 Stored XSS
|
73 |
WEB
|
Henry Hoggard
|
|
2012-06-07
|
|
SN News (visualiza.php) <= 1.2 SQL Injection
|
98 |
WEB
|
WhiteCollarGroup
|
|
2012-06-07
|
|
Wordpress Gallery Plugin 3.06 Arbitrary File Upload
|
84 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
Wordpress MM Forms Community Plugin 2.2.6 Arbitrary File Upload
|
84 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
Wordpress VideoWhisper Video Presentation Plugin 3.17 Arbitrary File Upload
|
75 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
Wordpress FCChat Widget 2.2.12.4 Arbitrary File Upload
|
88 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
Wordpress Font Uploader Plugin 1.2.4 Arbitrary File Upload
|
58 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
Evolutia Design - SQL Injection Vulnerability
|
83 |
WEB
|
D0m12
|
|
2012-06-07
|
|
Bigware Shop SQL Injection Vulnerability
|
86 |
WEB
|
expku
|
|
2012-06-06
|
|
Wordpress Asset Manager Plugin 0.2 Arbitrary File Upload
|
71 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress Foxypress Plugin 0.4.1.1 - 0.4.2.1 Arbitrary File Upload
|
72 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress HTML5 AV Manager Plugin 0.2.7 Arbitrary File Upload
|
85 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress Google Maps via Store Locator Plugin Multiple Vulnerabilities
|
70 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress WP Marketplace Plugin 1.5.0 - 1.6.1 Arbitrary File Upload
|
75 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress WP-Property Plugin 1.35.0 Arbitrary File Upload
|
93 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Mnews <= 1.1 (view.php) SQL Injection
|
63 |
WEB
|
WhiteCollarGroup
|
|
2012-06-06
|
|
Hexamail Server <= 4.4.5 Persistent XSS Vulnerability
|
86 |
WEB
|
modpr0be
|
|
2012-06-04
|
|
Log1 CMS writeInfo() PHP Code Injection
|
87 |
WEB
|
sinn3r
|
|
2012-06-01
|
|
Supernews <= 2.6.1 (noticias.php cat) SQL Injection
|
52 |
WEB
|
Pr0T3cT10n
|
|
2012-06-01
|
|
NewsAdd <= 1.0 (lerNoticia.php id) SQL Injection Vulnerability
|
61 |
WEB
|
Pr0T3cT10n
|
|
2012-06-01
|
|
Simple Web Content Management System 1.1 Multiple SQL Injection
|
82 |
WEB
|
loneferret
|
|
2012-06-01
|
|
4PSA VoipNow Professional 2.5.3 Reflected XSS / CSRF (Add Reseller) Vulnerabilities
|
75 |
WEB
|
Aboud-el
|
|
2012-05-31
|
|
PHP Volunteer Management System v1.0.2 Arbitrary File Upload
|
89 |
WEB
|
sinn3r
|
|
2012-05-31
|
|
StyleDesign - Multiple SQL Injection Vulnerability
|
72 |
WEB
|
TheCyberNuxbie
|
|
2012-05-31
|
|
Ibaguenet - SQL Injection Vulnerability
|
74 |
WEB
|
TheCyberNuxbie
|
|
2012-05-31
|
|
Ganesha Digital Library 4.0 Multiple Vulnerabilities
|
57 |
WEB
|
X-Cisadane
|
|
2012-05-31
|
|
NewsAdd <=1.0 Multiple SQL Injection Vulnerabilities
|
97 |
WEB
|
WhiteCollarGroup
|
|
2012-05-31
|
|
WHMCS 5 Multiple CSRF (Add Admin) and XSS Vulnerability
|
85 |
WEB
|
Shadman Tanjim
|
|
2012-05-30
|
|
VAMCart-InternetShop v0.9 (TinyBrowser) File Upload Code Execution
|
130 |
WEB
|
KedAns-Dz
|
|
2012-05-30
|
|
VAMCart-InternetShop v0.9 (XSRF/FileUpload) Vulnerabilities
|
61 |
WEB
|
KedAns-Dz
|
|
2012-05-30
|
|
PBBoard v2.1.4 Multiple SQL Injection Vulnerabilities
|
75 |
WEB
|
loneferret
|
|
2012-05-30
|
|
PBBoard 2.1.4 Local File Inclusion
|
81 |
WEB
|
n4ss1m
|
|
2012-05-30
|
|
Darby Communications - SQL Injection Vulnerability
|
72 |
WEB
|
D0m12
|
|
2012-05-30
|
|
PBBoard v2.1.4 (CSRF) Arbitrary File Upload and Command Execution (MSF)
|
91 |
WEB
|
KedAns-Dz
|
|
2012-05-29
|
|
PHP Volunteer Management System v 1.0.2 multiple SQLi Vuln.
|
69 |
WEB
|
loneferret
|
|
2012-05-29
|
|
PHP Volunteer Management System v 1.0.2 Multiple Vulnerabilities
|
81 |
WEB
|
Ashoo
|
|
2012-05-28
|
|
b2ePMS 1.0 multiple SQLi Vulnerabilities
|
64 |
WEB
|
loneferret
|
|
2012-05-28
|
|
WeBid converter.php Remote PHP Code Injection
|
93 |
WEB
|
EgiX
|
|
2012-05-25
|
|
Jaow <= 2.4.5 Blind SQL Injection
|
74 |
WEB
|
kallimero
|
|
2012-05-25
|
|
Social Engine 4.2.2 Multiples Vulnerabilities
|
129 |
WEB
|
expku
|
|
2012-05-24
|
|
appRain CMF Arbitrary PHP File Upload Vulnerability
|
84 |
WEB
|
EgiX
|
|
2012-05-22
|
|
Supernews <= 2.6.1 SQL Injection Exploit
|
92 |
WEB
|
WhiteCollarGroup
|
|
2012-05-22
|
|
Vanilla FirstLastNames 1.3.2 Plugin Persistant XSS
|
78 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Vanilla Forums About Me Plugin Persistant XSS
|
83 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Vanilla Forums LatestComment 1.1 Plugin Persistent XSS
|
46 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Aholattafun Creative Solutions SQL Injection Vulnerabilities
|
67 |
WEB
|
Becax
|
|
2012-05-18
|
|
Division 6 IT - SQLi/XSS Vulnerability
|
78 |
WEB
|
TheCyberNuxbie
|
|
2012-05-18
|
|
NACElink CS Manager - Persistent Web Vulnerability
|
51 |
WEB
|
expku
|
|
2012-05-18
|
|
Doorsweb SQL Injection Vulnerability
|
81 |
WEB
|
dr.nass3r
|
|
2012-05-18
|
|
Doll shopping store Kr/Jp [SQL injection Vulnerability]
|
89 |
WEB
|
Becax
|
|
2012-05-17
|
|
SMCWBR14-G2 PPPoE Data Disclosure (ADSL Router)
|
121 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-17
|
|
LAN Messenger v1.2.28 - Persistent Software Vulnerability
|
84 |
WEB
|
expku
|
|
2012-05-17
|
|
MobileSpy Android|iPhone|W7P|sOS - Web Vulnerabilities
|
125 |
WEB
|
expku
|
|
2012-05-17
|
|
CLscript CMS v3.0 - Multiple Web Vulnerabilities
|
69 |
WEB
|
expku
|
|
2012-05-17
|
|
Minnesota Premier Publications [SQL injection Vulnerability]
|
80 |
WEB
|
Becax
|
|
2012-05-17
|
|
Artiphp CMS v5.5.0 Multiple XSS POST Injection Vulnerabilities
|
77 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
backupDB() v1.2.7a (onlyDB) Remote XSS Vulnerability
|
77 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
phpThumb() v1.7.11 (dir & title) Cross-Site Scripting Vulnerability
|
73 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
Serendipity 1.6 Backend XSS And SQLi Vulnerability
|
45 |
WEB
|
Stefan Schurtz
|
|
2012-05-17
|
|
Artiphp CMS 5.5.0 Database Backup Disclosure Exploit
|
84 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
OpenKM Document Management System 5.1.7 Command Execution
|
204 |
WEB
|
Cyrill Brunschwiler
|
|
2012-05-16
|
|
Axous 1.1.1 Multiple Vulnerabilities (CSRF - Persistent XSS)
|
176 |
WEB
|
Ivano Binetti
|
|
2012-05-16
|
|
HUAWEI SmartAX MT880 CSRF Vulnerability (ADSL Router)
|
111 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-16
|
|
TunInfo - SQL Injection Vulnerability
|
84 |
WEB
|
TheCyberNuxbie
|
|
2012-05-16
|
|
Serendipity 1.6 Backend XSS And SQLi Vulnerability
|
75 |
WEB
|
Stefan Schurtz
|
|
2012-05-16
|
|
b2ePMS 1.0 Authentication Bypass Vulnerability
|
81 |
WEB
|
Jean Pascal Pereira
|
|
2012-05-16
|
|
Liferay Portal 6.1 - 6.0.x Privilege Escalation
|
93 |
WEB
|
Jelmer Kuperus
|
|
2012-05-15
|
|
Web ellasan Design [SQL injection Vulnerability]
|
64 |
WEB
|
Becax
|
|
2012-05-15
|
|
NTDS - SQL Injection Vulnerability
|
83 |
WEB
|
TheCyberNuxbie
|
|
2012-05-15
|
|
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities
|
93 |
WEB
|
expku
|
|
2012-05-15
|
|
Vallarta - SQL Injection Vulnerability
|
81 |
WEB
|
TheCyberNuxbie
|
