|
2011-12-01
|
|
WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities
|
194 |
WEB
|
EgiX
|
|
2011-11-29
|
|
Bypass the JQuery-Real-Person captcha plugin 0-day
|
128 |
WEB
|
Alberto_García_Illera
|
|
2011-11-28
|
|
Android 'content://' URI Multiple Information Disclosure Vulnerabilities
|
90 |
WEB
|
Thomas Cannon
|
|
2011-11-28
|
|
php video script SQL Injection Vulnerability
|
101 |
WEB
|
longrifle0x
|
|
2011-11-25
|
|
Zabbix <= 1.8.4 (popup.php) SQL Injection
|
89 |
WEB
|
Marcio Almeida
|
|
2011-11-25
|
|
LibLime Koha <= 4.2 Local File Inclusion Vulnerability
|
92 |
WEB
|
Akin Tosunlar
|
|
2011-11-25
|
|
Log1CMS 2.0 (ajax_create_folder.php) Remote Code Execution
|
137 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
|
86 |
WEB
|
EgiX
|
|
2011-11-25
|
|
A6-CMS(ACMS) 5.30 (ajax_create_folder.php) Remote Code Execution
|
144 |
WEB
|
Adel SBM
|
|
2011-11-25
|
|
icomex cms sql injection vulnerability
|
159 |
WEB
|
XaDaL
|
|
2011-11-23
|
|
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
|
94 |
WEB
|
Dante90
|
|
2011-11-18
|
|
Herberlin Bremsserver 3.0 Directory Traversal
|
62 |
WEB
|
AutoSec Tools
|
|
2011-11-17
|
|
SonicWALL Aventail SSL-VPN SQL Injection Vulnerability
|
96 |
WEB
|
Asheesh kumar
|
|
2011-11-17
|
|
FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution
|
64 |
WEB
|
EgiX
|
|
2011-11-16
|
|
QuiXplorer 2.3 <= Bugtraq File Upload Vulnerability
|
100 |
WEB
|
PCA
|
|
2011-11-15
|
|
Pixie CMS 1.01 - 1.04 Blind SQL Injections
|
90 |
WEB
|
Piranha
|
|
2011-11-15
|
|
WordPress AdRotate plugin <= 3.6.6 SQL Injection
|
100 |
WEB
|
Miroslav Stampar
|
|
2011-11-14
|
|
Tamweb CMS SQL Injection Vulnerability
|
166 |
WEB
|
Mr.XHat
|
|
2011-11-14
|
|
Wordpress Zingiri Plugin <= 2.2.3 (ajax_save_name.php) Remote Code Execution
|
88 |
WEB
|
EgiX
|
|
2011-11-14
|
|
CMS 4.x.x Zorder (SQL Injection Vul)
|
76 |
WEB
|
KraL BeNiM
|
|
2011-11-14
|
|
Support Incident Tracker <= 3.65 Remote Command Execution
|
92 |
WEB
|
juan vazquez
|
|
2011-11-10
|
|
LabWiki <= 1.1 Multiple Vulnerabilities
|
87 |
WEB
|
muuratsalo
|
|
2011-11-10
|
|
osCSS2 "_ID" parameter Local file inclusion
|
80 |
WEB
|
Stefan Schurtz
|
|
2011-11-10
|
|
ReadMore Systems, Incorporated (BQLi Injections)
|
104 |
WEB
|
KraL BeNiM
|
|
2011-11-10
|
|
Cover Vision Blind SQL Injection Vulnerbility
|
92 |
WEB
|
KraL BeNiM
|
|
2011-11-09
|
|
11in1 CMS v1.0.1 (do.php) CRLF Injection Vulnerability
|
95 |
WEB
|
LiquidWorm
|
|
2011-11-08
|
|
OrderSys <= 1.6.4 Sql Injection Vulnerabilities
|
79 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
LabStoRe <= 1.5.4 Sql Injection Vulnerabilities
|
80 |
WEB
|
muuratsalo
|
|
2011-11-08
|
|
WHMCS ( WHMCompleteSolution ) 3.x / 4.x Multiple Vulnerability
|
112 |
WEB
|
ZxH-Labs
|
|
2011-11-08
|
|
Readmore Systems Online Newspaper Publishing Sql Injection Vuln
|
77 |
WEB
|
4tt4ck3r
|
|
2011-11-07
|
|
Oracle NoSQL Directory Traversal
|
92 |
WEB
|
Charter
|
|
2011-11-07
|
|
OrderSys <= 1.6.4 SQL Injection
|
80 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
LabStoRe <= 1.5.4 SQL Injection
|
82 |
WEB
|
muuratsalo
|
|
2011-11-07
|
|
aidiCMS v3.55 (ajax_create_folder.php) Remote Code Execution
|
69 |
WEB
|
EgiX
|
|
2011-11-07
|
|
phpMyFAQ <= 2.7.0 (ajax_create_folder.php) Remote Code Execution
|
90 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Zenphoto <= 1.4.1.4 (ajax_create_folder.php) Remote Code Execution
|
99 |
WEB
|
EgiX
|
|
2011-11-07
|
|
WHMCS 3.x.x (clientarea.php) Local File Disclosure
|
108 |
WEB
|
red virus
|
|
2011-11-07
|
|
HP Data Protector Media Operations <= 6.20 Directory Traversal
|
68 |
WEB
|
Luigi Auriemma
|
|
2011-11-07
|
|
Advanced Poll 2.02 SQL Injection Vulnerability
|
91 |
WEB
|
Yassin Aboukir
|
|
2011-11-07
|
|
Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability
|
89 |
WEB
|
EgiX
|
|
2011-11-07
|
|
Ajax File Manager File Upload Vulnerability
|
202 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wateen Isp wimax router login bypass
|
87 |
WEB
|
3xploits
|
|
2011-11-07
|
|
cmsmadesimple-1.8.2 File Upload Vulnerability
|
95 |
WEB
|
ITTIHACK
|
|
2011-11-07
|
|
LightNEasy 3.4.2 Multiple Vulnerabilities
|
89 |
WEB
|
X-Cisadane
|
|
2011-11-07
|
|
Wordpress plugin FBConnect SQL-Inj
|
123 |
WEB
|
cyber-punk
|
|
2011-11-07
|
|
CaupoShop Pro (2.x/ <= 3.70) Local File Include Vulnerability
|
74 |
WEB
|
Rami Salama
|
|
2011-11-04
|
|
Web File Browser 0.4b14 File Download Vulnerability
|
110 |
WEB
|
Sangyun YOO
|
|
2011-11-04
|
|
Jara v1.6 Multiple Vulnerabilities
|
77 |
WEB
|
Or4nG.M4N
|
|
2011-11-04
|
|
CaupoShop Pro (2.x/ <= 3.70) Classic 3.01 Local File Include Vulnerability
|
80 |
WEB
|
Rami Salama
|
|
2011-11-03
|
|
SetSeed CMS 5.8.20 (loggedInUser) Remote SQL Injection Vulnerability
|
73 |
WEB
|
LiquidWorm
|
|
2011-11-03
|
|
BST - BestShopPro (nowosci.php) Multiple Vulnerabilities
|
90 |
WEB
|
CoBRa_21
|
|
2011-11-02
|
|
ZTE ZXDSL 831IIV7.5.0a_Z29_OV Multiple Vulnerabilities
|
301 |
WEB
|
mehdi boukazoula
|
|
2011-11-01
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution Vulnerability [0day]
|
311 |
WEB
|
Snake
|
|
2011-11-01
|
|
Dow Group Multiple Sql Injection Vulnerability
|
193 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
Intuitive Websites Sql Injection Vulnerability
|
97 |
WEB
|
Angel Injection
|
|
2011-11-01
|
|
jbShop - e107 v7 CMS plugin - SQL Injection vulnerability
|
87 |
WEB
|
Robert Cooper
|
|
2011-11-01
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
60 |
WEB
|
Paul Loftness
|
|
2011-11-01
|
|
Joomla Compenent com_hmcommunity Multiple Vulnerabilities
|
77 |
WEB
|
599eme Man
|
|
2011-11-01
|
|
Joomla Component Alameda (com_alameda) SQL Injection
|
75 |
WEB
|
kaMtiEz
|
|
2011-10-31
|
|
AtraSoft CMS SQL Injection Vulnerability
|
103 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Four Corner CMS SQL Injection Vulnerability
|
74 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
HighCMS <= (index.aspx) Buffer Overflow Vulnerability
|
97 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Market Town CMS SQL Injection Vulnerability
|
96 |
WEB
|
Mr.XHat
|
|
2011-10-31
|
|
Joomla mod_adsebse modules SQL Injection Vulnerability
|
73 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Component Joomla Multiple Blind Sql Injection
|
82 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities
|
97 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Component Joomla SQL Injection & Persistent XSS vulnerabilities
|
104 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
CMS MAXSITE Remote File Upload Vulnerability <= 1.10
|
134 |
WEB
|
HashoR
|
|
2011-10-31
|
|
jbShop - e107 v7 CMS Plugin - SQL Injection
|
103 |
WEB
|
Robert Cooper
|
|
2011-10-31
|
|
WordPress WP Glossary Plugin SQL Injection
|
90 |
WEB
|
longrifle0x
|
|
2011-10-31
|
|
WordPress Classipress Theme <= 3.1.4 Stored XSS
|
93 |
WEB
|
Paul Loftness
|
|
2011-10-31
|
|
BroadWin WebAccess SCADA/HMI Client Remote Code Execution
|
105 |
WEB
|
Snake
|
|
2011-10-31
|
|
Joomla HM-Community (com_hmcommunity) Multiple Vulnerabilities
|
81 |
WEB
|
599eme Man
|
|
2011-10-31
|
|
Vik Real Estate 1.0 Joomla Component Multiple Vulnerabilities
|
177 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities
|
87 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
Barter Sites 1.3 Joomla Component Multiple Vulnerabilities
|
103 |
WEB
|
Chris Russell
|
|
2011-10-31
|
|
PHP Photo Album <= (0.4.1.16) Multiple Disclosure Vulnerabilities
|
189 |
WEB
|
BHG Security Center
|
|
2011-10-31
|
|
Techfolio 1.0 Joomla Component SQL Injection Vulnerability
|
93 |
WEB
|
Chris Russell
|
|
2011-10-28
|
|
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
|
91 |
WEB
|
EgiX
|
|
2011-10-28
|
|
WordPress wptouch plugin SQL Injection Vulnerability
|
88 |
WEB
|
longrifle0x
|
|
2011-10-28
|
|
eFront <= 3.6.10 (build 11944) Multiple Security Vulnerabilities
|
90 |
WEB
|
EgiX
|
|
2011-10-27
|
|
Web Wiz Rich Text Editor 4.4 Remote File Upload
|
129 |
WEB
|
ZxH-Labs
|
|
2011-10-27
|
|
Online Subtitles Workshop XSS vulnerabilities
|
102 |
WEB
|
M.Jock3R
|
|
2011-10-26
|
|
Joomla YJ Contact us Component Local File Inclusion Vulnerability
|
122 |
WEB
|
MeGo
|
|
2011-10-26
|
|
SAP Management Console OSExecute Payload Execution
|
95 |
WEB
|
Chris John Riley
|
|
2011-10-26
|
|
phpLDAPadmin <= 1.2.1.1 (query_engine) Remote PHP Code Injection
|
116 |
WEB
|
TecR0c
|
|
2011-10-21
|
|
Cyclope Internet Filtering Proxy - Stored XSS Vuln
|
145 |
WEB
|
loneferret
|
|
2011-10-20
|
|
1024 CMS 1.1.0 Beta force_download.php Local File Inclusion
|
88 |
WEB
|
Sangyun YOO
|
|
2011-10-20
|
|
WHMCompleteSolution (cart.php) Local File Disclosure
|
96 |
WEB
|
Lagripe-Dz
|
|
2011-10-20
|
|
Openemr-4.1.0 SQL injection Vulnerability
|
101 |
WEB
|
I2sec-dae jin Oh
|
|
2011-10-20
|
|
Yet Another CMS 1.0 SQL Injection & XSS vulnerabilities
|
98 |
WEB
|
Stefan Schurtz
|
|
2011-10-20
|
|
Intelligent Technology Shop-Script 2.0.5 Remote File Disclosure
|
96 |
WEB
|
d3v1l r00t3r
|
|
2011-10-19
|
|
Dolphin <= 7.0.7 (member_menu_queries.php) Remote PHP Code Injection
|
95 |
WEB
|
EgiX
|
|
2011-10-19
|
|
Tap In Solutions Blind SQL Injection Vulnerability
|
93 |
WEB
|
poach3r
|
|
2011-10-19
|
|
NoNumber Framework Joomla! Plugin Multiple Vulnerabilities
|
241 |
WEB
|
jdc
|
|
2011-10-18
|
|
Gnuboard <= 4.33.02 tp.php PATH_INFO SQL Injection
|
156 |
WEB
|
flyh4t
|
|
2011-10-18
|
|
Dominant Creature BBG/RPG Browser Game Persistent XSS
|
84 |
WEB
|
M.Jock3R
|
|
2011-10-18
|
|
WordPress BackWPUp Plugin 2.1.4 Code Execution
|
91 |
WEB
|
Sense of Security
|
|
2011-10-17
|
|
WordPress wpsf-js plugin, SQL Injection
|
80 |
WEB
|
longrifle0x
|
|
2011-10-17
|
|
WordPress 2.0.3 Denial of Service Exploits
|
96 |
WEB
|
Angel Injection
|
|
2011-10-17
|
|
Ruubikcms v 1.1.0 (/extra/image.php) Local File Inclusion
|
115 |
WEB
|
Sangyun YOO
|
|
2011-10-17
|
|
WP Photo Album Plus <= 4.1.1 SQL Injection Vulnerability
|
91 |
WEB
|
Skraps
|
|
2011-10-17
|
|
WordPress Contact Form plugin <= 2.7.5 SQL Injection
|
105 |
WEB
|
Skraps
|
|
2011-10-13
|
|
WordPress GD Star Rating plugin <= 1.9.10 SQL Injection
|
132 |
WEB
|
Miroslav Stampar
|
|
2011-10-13
|
|
MyBB MyStatus 3.1 SQL Injection Vulnerability
|
142 |
WEB
|
Mario_Vs
|
|
2011-10-12
|
|
Climeweb Blind SQL Injection Vulnerability
|
216 |
WEB
|
poach3r
|
|
2011-10-12
|
|
WP-SpamFree WordPress Spam Plugin SQL Injection Vulnerability
|
135 |
WEB
|
cheki
|
|
2011-10-11
|
|
MyBB Forum Userbar Plugin (Userbar v2.2) SQL Injection
|
86 |
WEB
|
Mario_Vs
|
|
2011-10-11
|
|
MyBB Advanced Forum Signatures (afsignatures-2.0.4) SQL Injection
|
63 |
WEB
|
Mario_Vs
|
|
2011-10-11
|
|
POSH Multiple Vulnerabilities
|
79 |
WEB
|
Crashfr
|
|
2011-10-11
|
|
Cotonti CMS v0.9.4 Multiple Remote Vulnerabilities
|
84 |
WEB
|
LiquidWorm
|
|
2011-10-11
|
|
RoundCube 0.3.1 XRF/SQL injection
|
75 |
WEB
|
Smith Falcon
|
|
2011-10-11
|
|
6kbbs Multiple Vulnerabilities
|
82 |
WEB
|
labs insight
|
|
2011-10-11
|
|
Filmis 0.2 Beta Multiple Vulnerabilities
|
61 |
WEB
|
M.Jock3R
|
|
2011-10-11
|
|
KaiBB 2.0.1 SQL Injection vulnerability
|
76 |
WEB
|
Stefan Schurtz
|
|
2011-10-11
|
|
openEngine 2.0 Multiple Blind SQL Injection vulnerabilities
|
77 |
WEB
|
Stefan Schurtz
|
|
2011-10-11
|
|
myBB 1.6.4 Backdoor Exploit
|
125 |
WEB
|
tdz
|
|
2011-10-11
|
|
Snortreport nmap.php and nbtscan.php Remote Command Execution
|
88 |
WEB
|
Paul Rascagneres
|
|
2011-10-10
|
|
Sparhawk (shop) SQL Injection Vulnerability
|
206 |
WEB
|
Kalashinkov3
|
|
2011-10-10
|
|
GotoCode Online Classifieds Multiple Vulnerabilities
|
76 |
WEB
|
Nathaniel Carew
|
|
2011-10-09
|
|
JAK CONTENT MANAGEMENT SYSTEM PRO Persistent Cross-site Scripting
|
86 |
WEB
|
Sid3^effects aKa HaRi
|
|
2011-10-09
|
|
Joomla Barter Site (com_listing) Multiple Vulnerabilites
|
98 |
WEB
|
Sid3^effects aKa HaRi
|
|
2011-10-09
|
|
NexusPHP v1.5 SQL Injection
|
88 |
WEB
|
flyh4t
|
|
2011-10-09
|
|
Joomla Component Time Returns (com_timereturns) SQL Injection
|
82 |
WEB
|
kaMtiEz
|
|
2011-10-09
|
|
BOOKSolved 1.2.2 Remote File Disclosure
|
92 |
WEB
|
bd0rk
|
