|
2012-03-26
|
|
FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution
|
64 |
WEB
|
muts
|
|
2012-03-26
|
|
phpFox <= 3.0.1 (ajax.php) Remote Command Execution Exploit
|
89 |
WEB
|
EgiX
|
|
2012-03-26
|
|
CoreCommerce SQL injection
|
87 |
WEB
|
ZeTH
|
|
2012-03-26
|
|
FreePBX 2.10.0 / Elastix 2.2.0 Remote Code Execution Exploit
|
181 |
WEB
|
muts
|
|
2012-03-23
|
|
EasyJobPortal << Sql Injection
|
99 |
WEB
|
komodo
|
|
2012-03-23
|
|
Wolfcms <= 0.75 Multiple Vulnerabilities (CSRF - XSS)
|
95 |
WEB
|
Ivano Binetti
|
|
2012-03-23
|
|
Supernet CMS Blind SQL injection
|
103 |
WEB
|
Mr.5p0ng3
|
|
2012-03-23
|
|
Sitecom WLM-2501 new Multiple CSRF Vulnerabilities [2]
|
79 |
WEB
|
Ivano Binetti
|
|
2012-03-23
|
|
Simple Upload Modules Simple Spotlight
|
214 |
WEB
|
BL4ckc0d1n6
|
|
2012-03-23
|
|
FreePBX 2.10.0, 2.9.0 Multiple Vulnerabilities
|
78 |
WEB
|
Martin Tschirsich
|
|
2012-03-23
|
|
phpMoneyBooks 1.0.2 Local File Inclusion
|
86 |
WEB
|
Mark Stanislav
|
|
2012-03-23
|
|
PHP Grade Book 1.9.4 Unauthenticated SQL Database Export
|
84 |
WEB
|
Mark Stanislav
|
|
2012-03-23
|
|
Cyberoam UTM Multiiple Vulnerabilities
|
81 |
WEB
|
Saurabh Harit
|
|
2012-03-23
|
|
vBShout Persistent XSS
|
118 |
WEB
|
ToiL
|
|
2012-03-22
|
|
phpList 2.10.17 Remote SQL Injection and XSS Vulnerability
|
78 |
WEB
|
LiquidWorm
|
|
2012-03-22
|
|
D-Link DIR-605 CSRF Vulnerability
|
67 |
WEB
|
iqzer0
|
|
2012-03-22
|
|
Vtiger 5.1.0 LFI
|
97 |
WEB
|
Pi3rrot
|
|
2012-03-22
|
|
SEO PHP Directory Software CSRF
|
52 |
WEB
|
Jonturk75
|
|
2012-03-21
|
|
nine10 Blind Sql Injection Vulnerability
|
74 |
WEB
|
Angel Injection
|
|
2012-03-21
|
|
Hermesconcept - SQL Injection Vulnerability
|
76 |
WEB
|
TheCyberNuxbie
|
|
2012-03-21
|
|
NasthonSystems - SQL Injection Vulnerability
|
67 |
WEB
|
TheCyberNuxbie
|
|
2012-03-21
|
|
OneFileCMS - Failure to Restrict URL Access
|
124 |
WEB
|
Abhi M Balakrishnan
|
|
2012-03-21
|
|
OneForum (topic.php) SQL Injection Vulnerability
|
127 |
WEB
|
Red Security TEAM
|
|
2012-03-20
|
|
Excode - SQL Injection Vulnerability
|
107 |
WEB
|
TheCyberNuxbie
|
|
2012-03-20
|
|
FastWeb2 - SQL Injection Vulnerability
|
108 |
WEB
|
TheCyberNuxbie
|
|
2012-03-20
|
|
gnuboard <= 4.34.20 XSS vulnerability via arbitrary file name
|
80 |
WEB
|
wh1ant
|
|
2012-03-20
|
|
ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Direct
|
83 |
WEB
|
rgod
|
|
2012-03-20
|
|
OneForum SQL Injection Vulnerability
|
90 |
WEB
|
Cyber-sec
|
|
2012-03-20
|
|
Joomla 2.5.0-2.5.1 Time Based SQL Injection Exploit
|
62 |
WEB
|
A. Ramos
|
|
2012-03-14
|
|
SEO classified Ads Script CSRF
|
95 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
Dating Pro CSRF (change e-mail address)
|
52 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
Php-lance CSRF (add admin)
|
81 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
GOLD CLASSIFIEDS CSRF (add admin)
|
65 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
iLister Multi-Purpose Listing CSRF
|
92 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
BPowerItaliano CSRF
|
64 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
Ajax PHP Penny Auction CSRF
|
61 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
Lowest Unique Bid Auction Scripts CSRF
|
84 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
EbayAssist CSRF
|
70 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
BlueSoft Auction CSRF
|
80 |
WEB
|
Jonturk75
|
|
2012-03-14
|
|
OneFileCMS - Failure to Restrict URL Access
|
75 |
WEB
|
Abhi M Balakrishnan
|
|
2012-03-14
|
|
4images - Image Gallery Management System - [CSRF] Change mail user or admin
|
73 |
WEB
|
Dmar al3noOoz
|
|
2012-03-14
|
|
Cycade Gallery SQL Injection Exploit
|
77 |
WEB
|
DownFall
|
|
2012-03-14
|
|
PBLang local file include vulnerability
|
82 |
WEB
|
Number 7
|
|
2012-03-13
|
|
OpenShop - SQL Injection Vulnerability
|
186 |
WEB
|
TheCyberNuxbie
|
|
2012-03-13
|
|
DotFlorence - SQL Injection Vulnerability
|
68 |
WEB
|
TheCyberNuxbie
|
|
2012-03-13
|
|
LEDZ - SQL Injection Vulnerability
|
77 |
WEB
|
TheCyberNuxbie
|
|
2012-03-13
|
|
E-Bay Clone Script -SEO CSRF
|
66 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
Kubelance CSRF (add new admin)
|
80 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
Softbiz Quick Ad Manager CSRF
|
79 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
psPopper 3.0 CSRF (change password)
|
87 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
idev-TextAds 3.0 CSRF (change e-mail address)
|
112 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
Barracuda CSRF (change e-mail address)
|
91 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
InfoExtreme - SQL Injection Vulnerability
|
94 |
WEB
|
TheCyberNuxbie
|
|
2012-03-13
|
|
Saman Portal Local File Inclusion Vulnerability
|
75 |
WEB
|
TMT
|
|
2012-03-13
|
|
Bintech Systems LLC Admin Auth Bypass Exploit
|
80 |
WEB
|
BLACK BURN
|
|
2012-03-13
|
|
Paypal Affiliate Script CSRF
|
65 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
JROX.COM Affiliate Manager CBFront CSRF
|
84 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
CBFront CSRF
|
79 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
Paid to Click Script CSRF
|
65 |
WEB
|
Jonturk75
|
|
2012-03-13
|
|
Affiliate Pro CSRF (change e-mail address)
|
77 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
Clic Page XSS and SQL Injection Vulnerability
|
83 |
WEB
|
OruçReis
|
|
2012-03-12
|
|
dotBanner Banner Management System CSRF
|
53 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
Inout PPC Engine XSRF (change e-mail address)
|
84 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
Ad Manager Pro CSRF Vuln (add admin)
|
78 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
A.M.Y CSRF (change admin password)
|
74 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
Easy Banner Manager Pro [CSRF] / (change admin password)
|
63 |
WEB
|
Jonturk75
|
|
2012-03-12
|
|
Acal calendar Multiple Vulns
|
70 |
WEB
|
Number 7
|
|
2012-03-12
|
|
MTDCMS - SQL Injection Vulnerability
|
86 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
WFYCMS - SQL Injection Vulnerability
|
75 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
AlegroCart FredCK-Editor (ASPELL for WinSRV) Remote Command Exec p0c
|
158 |
WEB
|
KedAns-Dz
|
|
2012-03-12
|
|
Cometik Catalogue - SQL Injection Vulnerability
|
196 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
PHP Address Book 6.2.12 Multiple security vulnerabilities
|
66 |
WEB
|
Stefan Schurtz
|
|
2012-03-12
|
|
Zend Server 5.6.0 Multiple Remote Script Insertion Vulnerabilities
|
89 |
WEB
|
LiquidWorm
|
|
2012-03-12
|
|
Aztek Forum 4.01 - SQL Injection Vulnerability
|
86 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
SRISMS - SQL Injection Vulnerability
|
78 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
Nor-Rec WebBasic - SQL Injection Vulnerability
|
82 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
CATSHOP Cart - SQL Injection Vulnerability
|
83 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
Pobol WebBasic - SQL Injection Vulnerability
|
70 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
ActivaDigital- SQL Injection Vulnerability
|
98 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
UEBBI - SQL Injection Vulnerability
|
71 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-12
|
|
LY Network Cart - SQL Injection Vulnerability
|
85 |
WEB
|
the_cyber_nuxbie
|
|
2012-03-09
|
|
RazorCMS <= 1.2.1 STABLE CSRF (Delete Web Pages)
|
90 |
WEB
|
Ivano Binetti
|
|
2012-03-09
|
|
RazorCMS <= 1.2.1 STABLE File Upload Vulnerability
|
124 |
WEB
|
i2sec_Hyo jun Oh
|
|
2012-03-09
|
|
Toenda CMS 1.6.2 Osaka Stable Local File Inclusion
|
88 |
WEB
|
AkaStep
|
|
2012-03-08
|
|
SQLI Online Shop LeKommerce
|
90 |
WEB
|
Mazt0r
|
|
2012-03-08
|
|
Iciniti Store SQL Injection - Security Advisory - SOS-12-003
|
89 |
WEB
|
Lists
|
|
2012-03-08
|
|
Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities
|
82 |
WEB
|
LiquidWorm
|
|
2012-03-08
|
|
WebfolioCMS <= 1.1.4 Multiple XSS
|
176 |
WEB
|
Ivano Binetti
|
|
2012-03-08
|
|
Symfony 2 Unauthenticated Information Disclosure
|
101 |
WEB
|
Phil Taylor
|
|
2012-03-08
|
|
Log1cms v2.1 Multiple XSRF File (Upload/Download) Vulnerabilities
|
103 |
WEB
|
KedAns-Dz
|
|
2012-03-08
|
|
Zen Cart v.1.5.0 Remote Shell Upload
|
207 |
WEB
|
Mr.ExiT
|
|
2012-03-06
|
|
Drupal CMS 7.12 (latest stable release) Multiple Vulnerabilities
|
84 |
WEB
|
Ivano Binetti
|
|
2012-03-06
|
|
ForkCMS 3.2.5 Multiple Vulnerabilities
|
69 |
WEB
|
Ivano Binetti
|
|
2012-03-06
|
|
lizard cart SQLi (search.php)
|
75 |
WEB
|
Number 7
|
|
2012-03-06
|
|
Symfony2 Local File Disclosure - Security Advisory - SOS-12-002
|
87 |
WEB
|
Lists
|
|
2012-03-06
|
|
EbizCare => SQL Injection Vulnerability
|
101 |
WEB
|
dbx
|
|
2012-03-06
|
|
Open-Realty 2.5.8 Local File Inclusion
|
85 |
WEB
|
Transparent
|
|
2012-03-06
|
|
BigDump Importer v0.32b RFU
|
129 |
WEB
|
TeaM MosTa
|
|
2012-03-06
|
|
piwigo <== SQL Injector
|
76 |
WEB
|
TeaM MosTa
|
|
2012-03-06
|
|
Multiple SQL injections in rivettracker <=1.03
|
75 |
WEB
|
Ali Raheem
|
|
2012-03-06
|
|
CnnCMS 1.x SQL Injection Vulnerability
|
87 |
WEB
|
X-Cisadane
|
|
2012-03-05
|
|
AneCMS v.2e2c583 LFI exploit
|
79 |
WEB
|
I2sec-PJH
|
|
2012-03-05
|
|
deV!L`z Clanportal Witze Addon Versions 0.9 SQL Injection Vulnerability
|
104 |
WEB
|
Easy Laster
|
|
2012-03-04
|
|
Timesheet Next Gen 1.5.2 Multiple SQLi
|
63 |
WEB
|
G13
|
|
2012-03-04
|
|
Multiple SQL injection rivettracker <=1.03
|
94 |
WEB
|
Ali Raheem
|
|
2012-03-03
|
|
Infoserve SQL Vulnerability
|
74 |
WEB
|
Optimiz3r
|
|
2012-03-03
|
|
Endian UTM Firewall v2.4.x & v2.5.0 - Multiple Web Vulnerabilities
|
86 |
WEB
|
expku
|
|
2012-03-03
|
|
Wpmanager version wpm 2.2.0 (FCKeditor) Remote File Upload
|
118 |
WEB
|
T0x!c
|
|
2012-03-03
|
|
phxEventManager 2.0 beta 5 search.php search_terms SQL Injection
|
97 |
WEB
|
skysbsb
|
|
2012-03-01
|
|
Wolf CMS v0.7.5 Multiple Vulnerabilities
|
87 |
WEB
|
longrifle0x
|
|
2012-03-01
|
|
ImgPals Photo Host Version 1.0 Admin Account Disactivation
|
93 |
WEB
|
CorryL
|
|
2012-03-01
|
|
Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability
|
101 |
WEB
|
Narendra Shinde
|
|
2012-03-01
|
|
Topics Viewer CSRF Add Admin
|
89 |
WEB
|
Green Hornet
|
|
2012-03-01
|
|
BrewBlogger v2.3.2 Multiple (XSRF/ShellUpload/SQLi) Vulnerabilities
|
81 |
WEB
|
KedAns-Dz
|
|
2012-02-29
|
|
WebfolioCMS <= 1.1.4 CSRF (Add Admin/Modify Pages)
|
80 |
WEB
|
Ivano Binetti
|
|
2012-02-28
|
|
Bitweaver v2.81 Local File Inclusion Vulnerability
|
83 |
WEB
|
I2sec-PJH
|
|
2012-02-28
|
|
Dotclear 2.4.2 Arbitrary File Upload Vulnerability
|
74 |
WEB
|
T0x!c
|
|
2012-02-28
|
|
ContaoCMS (aka TYPOlight) <= 2.11 CSRF (Delete Admin - Delete Article)
|
87 |
WEB
|
Ivano Binetti
|
|
2012-02-27
|
|
YVS Image Gallery Sql Injection
|
86 |
WEB
|
CorryL
|
|
2012-02-27
|
|
CreateVision CMS Database injection.
|
143 |
WEB
|
Zwierzchowski Oskar
|
|
2012-02-27
|
|
webgrind 1.0 (file param) Local File Inclusion Vulnerability
|
153 |
WEB
|
LiquidWorm
|
|
2012-02-27
|
|
cPassMan v1.82 Remote Command Execution Exploit
|
68 |
WEB
|
ls
|
|
2012-02-27
|
|
PHP Gift Registry 1.5.5 SQL Injection
|
82 |
WEB
|
G13
|
|
2012-02-24
|
|
Snom IP Phone Privilege Escalation - Security Advisory - SOS-12-001
|
76 |
WEB
|
Lists
|
|
2012-02-24
|
|
phpDenora <= 1.4.6 Multiple SQL Injection Vulnerabilities
|
116 |
WEB
|
KnickLighter
|
