|
2012-06-06
|
|
Wordpress WP Marketplace Plugin 1.5.0 - 1.6.1 Arbitrary File Upload
|
81 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Wordpress WP-Property Plugin 1.35.0 Arbitrary File Upload
|
98 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
Mnews <= 1.1 (view.php) SQL Injection
|
67 |
WEB
|
WhiteCollarGroup
|
|
2012-06-06
|
|
Hexamail Server <= 4.4.5 Persistent XSS Vulnerability
|
92 |
WEB
|
modpr0be
|
|
2012-06-04
|
|
Log1 CMS writeInfo() PHP Code Injection
|
91 |
WEB
|
sinn3r
|
|
2012-06-01
|
|
Supernews <= 2.6.1 (noticias.php cat) SQL Injection
|
56 |
WEB
|
Pr0T3cT10n
|
|
2012-06-01
|
|
NewsAdd <= 1.0 (lerNoticia.php id) SQL Injection Vulnerability
|
65 |
WEB
|
Pr0T3cT10n
|
|
2012-06-01
|
|
Simple Web Content Management System 1.1 Multiple SQL Injection
|
86 |
WEB
|
loneferret
|
|
2012-06-01
|
|
4PSA VoipNow Professional 2.5.3 Reflected XSS / CSRF (Add Reseller) Vulnerabilities
|
79 |
WEB
|
Aboud-el
|
|
2012-05-31
|
|
PHP Volunteer Management System v1.0.2 Arbitrary File Upload
|
93 |
WEB
|
sinn3r
|
|
2012-05-31
|
|
StyleDesign - Multiple SQL Injection Vulnerability
|
78 |
WEB
|
TheCyberNuxbie
|
|
2012-05-31
|
|
Ibaguenet - SQL Injection Vulnerability
|
78 |
WEB
|
TheCyberNuxbie
|
|
2012-05-31
|
|
Ganesha Digital Library 4.0 Multiple Vulnerabilities
|
60 |
WEB
|
X-Cisadane
|
|
2012-05-31
|
|
NewsAdd <=1.0 Multiple SQL Injection Vulnerabilities
|
102 |
WEB
|
WhiteCollarGroup
|
|
2012-05-31
|
|
WHMCS 5 Multiple CSRF (Add Admin) and XSS Vulnerability
|
91 |
WEB
|
Shadman Tanjim
|
|
2012-05-30
|
|
VAMCart-InternetShop v0.9 (TinyBrowser) File Upload Code Execution
|
135 |
WEB
|
KedAns-Dz
|
|
2012-05-30
|
|
VAMCart-InternetShop v0.9 (XSRF/FileUpload) Vulnerabilities
|
66 |
WEB
|
KedAns-Dz
|
|
2012-05-30
|
|
PBBoard v2.1.4 Multiple SQL Injection Vulnerabilities
|
80 |
WEB
|
loneferret
|
|
2012-05-30
|
|
PBBoard 2.1.4 Local File Inclusion
|
87 |
WEB
|
n4ss1m
|
|
2012-05-30
|
|
Darby Communications - SQL Injection Vulnerability
|
76 |
WEB
|
D0m12
|
|
2012-05-30
|
|
PBBoard v2.1.4 (CSRF) Arbitrary File Upload and Command Execution (MSF)
|
95 |
WEB
|
KedAns-Dz
|
|
2012-05-29
|
|
PHP Volunteer Management System v 1.0.2 multiple SQLi Vuln.
|
73 |
WEB
|
loneferret
|
|
2012-05-29
|
|
PHP Volunteer Management System v 1.0.2 Multiple Vulnerabilities
|
85 |
WEB
|
Ashoo
|
|
2012-05-28
|
|
b2ePMS 1.0 multiple SQLi Vulnerabilities
|
67 |
WEB
|
loneferret
|
|
2012-05-28
|
|
WeBid converter.php Remote PHP Code Injection
|
97 |
WEB
|
EgiX
|
|
2012-05-25
|
|
Jaow <= 2.4.5 Blind SQL Injection
|
78 |
WEB
|
kallimero
|
|
2012-05-25
|
|
Social Engine 4.2.2 Multiples Vulnerabilities
|
133 |
WEB
|
expku
|
|
2012-05-24
|
|
appRain CMF Arbitrary PHP File Upload Vulnerability
|
90 |
WEB
|
EgiX
|
|
2012-05-22
|
|
Supernews <= 2.6.1 SQL Injection Exploit
|
96 |
WEB
|
WhiteCollarGroup
|
|
2012-05-22
|
|
Vanilla FirstLastNames 1.3.2 Plugin Persistant XSS
|
81 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Vanilla Forums About Me Plugin Persistant XSS
|
88 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Vanilla Forums LatestComment 1.1 Plugin Persistent XSS
|
49 |
WEB
|
Henry Hoggard
|
|
2012-05-22
|
|
Aholattafun Creative Solutions SQL Injection Vulnerabilities
|
71 |
WEB
|
Becax
|
|
2012-05-18
|
|
Division 6 IT - SQLi/XSS Vulnerability
|
82 |
WEB
|
TheCyberNuxbie
|
|
2012-05-18
|
|
NACElink CS Manager - Persistent Web Vulnerability
|
59 |
WEB
|
expku
|
|
2012-05-18
|
|
Doorsweb SQL Injection Vulnerability
|
85 |
WEB
|
dr.nass3r
|
|
2012-05-18
|
|
Doll shopping store Kr/Jp [SQL injection Vulnerability]
|
92 |
WEB
|
Becax
|
|
2012-05-17
|
|
SMCWBR14-G2 PPPoE Data Disclosure (ADSL Router)
|
126 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-17
|
|
LAN Messenger v1.2.28 - Persistent Software Vulnerability
|
90 |
WEB
|
expku
|
|
2012-05-17
|
|
MobileSpy Android|iPhone|W7P|sOS - Web Vulnerabilities
|
131 |
WEB
|
expku
|
|
2012-05-17
|
|
CLscript CMS v3.0 - Multiple Web Vulnerabilities
|
74 |
WEB
|
expku
|
|
2012-05-17
|
|
Minnesota Premier Publications [SQL injection Vulnerability]
|
86 |
WEB
|
Becax
|
|
2012-05-17
|
|
Artiphp CMS v5.5.0 Multiple XSS POST Injection Vulnerabilities
|
82 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
backupDB() v1.2.7a (onlyDB) Remote XSS Vulnerability
|
82 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
phpThumb() v1.7.11 (dir & title) Cross-Site Scripting Vulnerability
|
78 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
Serendipity 1.6 Backend XSS And SQLi Vulnerability
|
51 |
WEB
|
Stefan Schurtz
|
|
2012-05-17
|
|
Artiphp CMS 5.5.0 Database Backup Disclosure Exploit
|
89 |
WEB
|
LiquidWorm
|
|
2012-05-17
|
|
OpenKM Document Management System 5.1.7 Command Execution
|
209 |
WEB
|
Cyrill Brunschwiler
|
|
2012-05-16
|
|
Axous 1.1.1 Multiple Vulnerabilities (CSRF - Persistent XSS)
|
180 |
WEB
|
Ivano Binetti
|
|
2012-05-16
|
|
HUAWEI SmartAX MT880 CSRF Vulnerability (ADSL Router)
|
115 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-16
|
|
TunInfo - SQL Injection Vulnerability
|
88 |
WEB
|
TheCyberNuxbie
|
|
2012-05-16
|
|
Serendipity 1.6 Backend XSS And SQLi Vulnerability
|
79 |
WEB
|
Stefan Schurtz
|
|
2012-05-16
|
|
b2ePMS 1.0 Authentication Bypass Vulnerability
|
86 |
WEB
|
Jean Pascal Pereira
|
|
2012-05-16
|
|
Liferay Portal 6.1 - 6.0.x Privilege Escalation
|
98 |
WEB
|
Jelmer Kuperus
|
|
2012-05-15
|
|
Web ellasan Design [SQL injection Vulnerability]
|
70 |
WEB
|
Becax
|
|
2012-05-15
|
|
NTDS - SQL Injection Vulnerability
|
88 |
WEB
|
TheCyberNuxbie
|
|
2012-05-15
|
|
Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities
|
96 |
WEB
|
expku
|
|
2012-05-15
|
|
Vallarta - SQL Injection Vulnerability
|
85 |
WEB
|
TheCyberNuxbie
|
|
2012-05-15
|
|
Topics viewer v 2.3 csrf (Add Admin) / XSS Vulnerabilites
|
79 |
WEB
|
Cyber-Crystal
|
|
2012-05-14
|
|
WikkaWiki 1.3.2 Spam Logging PHP Injection
|
162 |
WEB
|
sinn3r
|
|
2012-05-14
|
|
Belkin N150 Wireless Router Password Disclosure
|
67 |
WEB
|
Avinash Tangirala
|
|
2012-05-11
|
|
Access Bank PLC SQL injection Vulnerability
|
68 |
WEB
|
Mr.ExiT
|
|
2012-05-11
|
|
lucid design Blind sql Injection Vulnerability
|
87 |
WEB
|
Angel Injection
|
|
2012-05-11
|
|
eLearning Server 4G Multiple Remote Vulnerabilities
|
81 |
WEB
|
Andrey Komarov
|
|
2012-05-11
|
|
Kerio WinRoute Firewall Web Server < 6 Source Code Disclosure
|
88 |
WEB
|
Andrey Komarov
|
|
2012-05-10
|
|
Idea 7 - SQL Injection Vulnerability
|
63 |
WEB
|
D0m12
|
|
2012-05-10
|
|
BaglerCMS- SQLi/XSS Vulnerability
|
86 |
WEB
|
TheCyberNuxbie
|
|
2012-05-10
|
|
Cisco Linksys WRT54GL CSRF Change Admin Password
|
98 |
WEB
|
Kalashinkov3
|
|
2012-05-10
|
|
X7 Chat 2.0.5.1 CSRF Add Admin Exploit
|
88 |
WEB
|
DennSpec
|
|
2012-05-10
|
|
PHP Agenda 2.2.8 SQLi Vulnerability
|
91 |
WEB
|
loneferret
|
|
2012-05-09
|
|
thinkphp remote exploit
|
467 |
WEB
|
expku
|
|
2012-05-09
|
|
PHP Enter Code Injection
|
78 |
WEB
|
L3b-r1'z
|
|
2012-05-08
|
|
Higher Turnover Web Design SQLinjection Vulnerability
|
72 |
WEB
|
xConsoLe`
|
|
2012-05-08
|
|
Apis Design SQLinjection Vulnerability
|
116 |
WEB
|
xConsoLe`
|
|
2012-05-08
|
|
myCare2x CMS Multiple Vulnerabilities
|
86 |
WEB
|
Vulnerability-Lab
|
|
2012-05-08
|
|
MYRE Real Estate Mobile 2012|2 Multiple Vulnerabilities
|
72 |
WEB
|
Vulnerability-Lab
|
|
2012-05-08
|
|
Genium CMS 2012|Q2 Multiple Vulnerabilities
|
74 |
WEB
|
Vulnerability-Lab
|
|
2012-05-08
|
|
Lynx Message Server Multiple Vulnerabilities
|
58 |
WEB
|
Mark Lachniet
|
|
2012-05-08
|
|
Fortinet FortiWeb Web Application Firewall Policy Bypass
|
89 |
WEB
|
Geffrey Velasquez
|
|
2012-05-08
|
|
D-Link DSL-2640U PPoE Data Disclosure (ADSL Router)
|
164 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-08
|
|
Vista Design - SQL Injection Vulnerability
|
72 |
WEB
|
D0m12
|
|
2012-05-07
|
|
EnjoyGraph Communication SQL Injection Vulnerability
|
89 |
WEB
|
Kalashinkov3
|
|
2012-05-07
|
|
Etelligence Technologies (category.php) SQL-I Vulnerability
|
96 |
WEB
|
Kalashinkov3
|
|
2012-05-07
|
|
Magnolia Development Group Multiple SQL-i/CSRF Vulnerability
|
110 |
WEB
|
Kalashinkov3
|
|
2012-05-07
|
|
TP-Link TD-W8901G CSRF Vulnerability (ADSL Router)
|
1090 |
WEB
|
KinG Of PiraTeS
|
|
2012-05-07
|
|
HOA Online Resource - SQL Injection Vulnerability
|
98 |
WEB
|
D0m12
|
|
2012-05-07
|
|
Lighthouse Teknologies - Blind SQL Injection Vulnerability
|
179 |
WEB
|
D0m12
|
|
2012-05-07
|
|
o0mBBS <= 0.65B Remote File Upload
|
89 |
WEB
|
Elite Trojan
|
|
2012-05-07
|
|
Next Gen CMS XSS Presistent Vulnerability
|
92 |
WEB
|
mix0x0
|
|
2012-05-07
|
|
Webrelations Blind SQL Injection Vulnerability
|
61 |
WEB
|
Kalashinkov3
|
|
2012-05-07
|
|
joomla component (com_virtuemart) SQL injection Vulnerability
|
332 |
WEB
|
ReeD
|
|
2012-05-07
|
|
DesignModern - SQLi/XSS Presistent Vulnerability
|
119 |
WEB
|
TheCyberNuxbie
|
|
2012-05-07
|
|
Symantec Web Gateway Cross Site Scripting
|
69 |
WEB
|
B00y@
|
|
2012-05-04
|
|
iNeat - SQL Injection Vulnerability
|
64 |
WEB
|
TheCyberNuxbie
|
|
2012-05-04
|
|
Debliteck - SQL Injection Vulnerability
|
76 |
WEB
|
D0m12
|
|
2012-05-04
|
|
Article Dashboard sql injection
|
86 |
WEB
|
b0y h4ck3r
|
|
2012-05-04
|
|
PluXml 5.1.5 Local File Inclusion
|
87 |
WEB
|
High-Tech Bridge SA
|
|
2012-05-04
|
|
Baby Gekko CMS v1.1.5c Multiple Stored XSS Vulnerabilities
|
86 |
WEB
|
LiquidWorm
|
|
2012-05-03
|
|
Websense Triton Multiple Vulnerabilities
|
69 |
WEB
|
Ben Williams
|
|
2012-05-03
|
|
php-decoda Cross-Site Scripting In Video Tag
|
88 |
WEB
|
RedTeam Pentesting
|
|
2012-05-03
|
|
OpenConf <= 4.11 (author/edit.php) Remote Blind SQL Injection Exploit
|
132 |
WEB
|
EgiX
|
|
2012-05-03
|
|
Alsovalue SQL Injection Vulnerability
|
83 |
WEB
|
Kalashinkov3
|
|
2012-05-03
|
|
Real Estates Property CMS 2012 - Multiple Web Vulnerabilities
|
85 |
WEB
|
expku
|
|
2012-05-03
|
|
MYRE Real Estate Mobile 2012|2 - Multiple Web Vulnerabilities
|
89 |
WEB
|
expku
|
|
2012-05-03
|
|
Genium CMS 2012|Q2 - Multiple Web Vulnerabilities
|
108 |
WEB
|
expku
|
|
2012-04-28
|
|
Axous 1.1.0 SQL Injection Vulnerabilitiy
|
90 |
WEB
|
H4ckCity Secuirty TeaM
|
|
2012-04-28
|
|
SilverStripe CMS 2.4.7 (install.php) Remote Command Execution Exploit
|
139 |
WEB
|
Mehmet INCE
|
|
2012-04-28
|
|
Wordpress 3.3.1 Multiple CSRF Vulnerabilities
|
70 |
WEB
|
Ivano Binetti
|
|
2012-04-28
|
|
Discuz! X2.5 远程代码执行漏洞及EXP
|
216 |
WEB
|
expku
|
|
2012-04-27
|
|
PHP Volunteer Management 1.0.2 Multiple Vulnerabilities
|
77 |
WEB
|
G13
|
|
2012-04-27
|
|
Wordpress Zingiri Web Shop Plugin <= 2.4.0 Multiple XSS Vulnerabilities
|
71 |
WEB
|
Mehmet Ince
|
|
2012-04-27
|
|
WordPress Organizer 1.2.1 XSS / CSRF / Shell Upload
|
86 |
WEB
|
regards
|
|
2012-04-26
|
|
Piwigo 2.3.3 Multiple Vulnerabilities
|
99 |
WEB
|
High-Tech Bridge SA
|
|
2012-04-26
|
|
MyWorldCMS XSS Presistent Vulnerability
|
58 |
WEB
|
Angel Injection
|
|
2012-04-25
|
|
杰奇JIEQIcms <=1.6 Administrator privilege getshell
|
105 |
WEB
|
H3xIe
|
|
2012-04-25
|
|
Joomla com_videogallery (SQLi/LFI) Multiple Vulnerabilites
|
76 |
WEB
|
KedAns-Dz
|
|
2012-04-25
|
|
Whistler Web Design Sql Injection Vulnerablity
|
72 |
WEB
|
Anthrax
|
|
2012-04-25
|
|
Hispanic - Blind SQLi/XSS Presistent Vulnerability
|
71 |
WEB
|
TheCyberNuxbie
|
|
2012-04-25
|
|
ChurchCMS 0.0.1 'admin.php' Multiple SQLi
|
187 |
WEB
|
G13
|
|
2012-04-25
|
|
XSS and Blind SQL Injection Vulnerabilities in ExponentCMS
|
86 |
WEB
|
Onur Yılmaz
|
|
2012-04-25
|
|
PHP Ticket System Beta 1 (index.php p parameter) SQL Injection
|
78 |
WEB
|
G13
|
|
2012-04-24
|
|
Joomla Component (mod_ccnewsletter) Sql Injection Vulnerablity
|
102 |
WEB
|
E1nzte1N
|
|
2012-04-24
|
|
MegaFileManager FileDownload Vulnerability
|
57 |
WEB
|
i2sec-Min Gi Jo
|
|
2012-04-24
|
|
Nederlanden's Server Website (.nl) - SQL injection
|
81 |
WEB
|
Mataty501
|
|
2012-04-24
|
|
WebCalendar <= 1.2.4 (install/index.php) Remote Code Execution
|
101 |
WEB
|
EgiX
|
