|
2011-05-26
|
|
eGroupware 1.8.001.20110421 Multiple Vulnerabilities
|
140 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
ExtCalendar 2.0b2 (cal_search.php) SQL Injection Vulnerability
|
119 |
WEB
|
High-Tech Bridge SA
|
|
2011-05-26
|
|
i-doIT 0.9.9-4 LFI Vulnerability
|
102 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
Tickets 2.13 SQL Injection Vulnerability
|
122 |
WEB
|
AutoSec Tools
|
|
2011-05-26
|
|
Pixprod SQL Injection Vulnerability
|
135 |
WEB
|
Kalashinkov3
|
|
2011-05-25
|
|
HP System Management Homepage Cross Site Scripting
|
171 |
WEB
|
Secunia
|
|
2011-05-25
|
|
DH Softwares Auth Bypass Vulnerability
|
200 |
WEB
|
Kalashinkov3
|
|
2011-05-25
|
|
MidiCMS-WB (2011) Multiple Vulnerabilities
|
174 |
WEB
|
KedAns-Dz
|
|
2011-05-24
|
|
smart vision (newsdetail.php) SQL Injection Vulnerability
|
98 |
WEB
|
Net.Edit0r
|
|
2011-05-24
|
|
Ciphertek Systems(snapshots.php)&(detail.php)=>SQL Injection Vulnerability
|
130 |
WEB
|
eXeSoul
|
|
2011-05-24
|
|
Acuity CMS Vulnerable to Blind SQL Injection
|
150 |
WEB
|
p0pc0rn
|
|
2011-05-24
|
|
Pligg CMS v1.1.4 Multiple (XSRF/CSRF) Vulnerabilities
|
107 |
WEB
|
KedAns-Dz
|
|
2011-05-24
|
|
Homepages Admin (index.php)=>(Auth Bypass) Vulnerability
|
123 |
WEB
|
eXeSoul
|
|
2011-05-24
|
|
PEEL Open e-commerce systems Sensitive Database Disclosure Vulnerability
|
139 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
MODx Revolution 2.0.8-pl CMS XSRF Vulnerability (Add new user)
|
118 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
MyLittleForum 2.2.7 CMS XSRF Vulnerability (Add new user)
|
202 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
Textpattern 4.3.0 CMS XSRF Vulnerability (Change Admin's Password)
|
122 |
WEB
|
^Xecuti0n3r
|
|
2011-05-24
|
|
Joomla Component maplocator SQL Injection Vulnerability
|
141 |
WEB
|
Fl0riX
|
|
2011-05-24
|
|
PHPortfolio SQL Injection Vulnerbility
|
135 |
WEB
|
lionaneesh
|
|
2011-05-23
|
|
xtcModified <= 1.05 (FCKeditor) Multiple Vulnerabilities
|
129 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
Collabtive v065 Multiple (CSRF/XSRF) Vulnerabilities
|
130 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
ChromeMedia SQL Injection Vulnerability
|
140 |
WEB
|
Kalashinkov3
|
|
2011-05-23
|
|
werkform (index.php) <= SQL Injection Vulnerability
|
146 |
WEB
|
Caddy-Dz
|
|
2011-05-23
|
|
chillyCMS v1.2.x (CSRF/FD/RFI) Multiple Vulnerabilities
|
97 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
NucleusCMS v3.64 Multiple (CSRF) Vulnerabilities
|
126 |
WEB
|
KedAns-Dz
|
|
2011-05-23
|
|
Mathew Callingham Associatess 3.x.x Multiple Vulnerability
|
130 |
WEB
|
Net.Edit0r
|
|
2011-05-23
|
|
vBulletin 4.0.x => 4.1.2 (search.php) SQL Injection Vulnerability
|
150 |
WEB
|
D4rkB1t
|
|
2011-05-23
|
|
ZabetAgahi SQLInjection Vulnerability
|
138 |
WEB
|
3H34N
|
|
2011-05-23
|
|
PHP Captcha / Securimage 2.0.2 - Authentication Bypass - SO-11-007
|
143 |
WEB
|
Sense of Security
|
|
2011-05-23
|
|
E-Manage MySchool 7.02 SQL Injection Vulnerability
|
138 |
WEB
|
az7rb
|
|
2011-05-23
|
|
Zen Cart <= v1.3.9h Multiple Vulnerabilities
|
133 |
WEB
|
Alberto Fontanella
|
|
2011-05-23
|
|
Tugux CMS 1.2 Multiple Remote Vulnerabilities
|
188 |
WEB
|
LiquidWorm
|
|
2011-05-23
|
|
Ultimate PHP Board 2.2.7 Broken Authentication and Session Management
|
130 |
WEB
|
i2sec
|
|
2011-05-23
|
|
Easy Contact 0.1.2 WordPress Plugin Cross Site Scripting
|
130 |
WEB
|
Websecurity
|
|
2011-05-20
|
|
Rootage 1.0.0.4 Alpha Directory Traversal
|
120 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Room Juice 0.3.3 Cross Site Scripting
|
98 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Aphpkb 0.95.4 PHP Execution
|
142 |
WEB
|
AutoSec Tools
|
|
2011-05-20
|
|
Trade Line Web <= Remote 'id' Funcs SQL-i Vulnerabilities
|
207 |
WEB
|
knockout
|
|
2011-05-19
|
|
TWiki 5.0.1 Cross Site Scripting
|
164 |
WEB
|
Netsparker Advisories
|
|
2011-05-19
|
|
99ko <= 0.4b Multiple (CSRF/XSRF) Vulnerabilities
|
357 |
WEB
|
KedAns-Dz
|
|
2011-05-19
|
|
ImmoPHP v1.1.1 Remote (CSRF) Multiple Vulnerabilities
|
132 |
WEB
|
KedAns-Dz
|
|
2011-05-19
|
|
Joomla jomEstate SQLi Vulnerability
|
117 |
WEB
|
Sid3^effects
|
|
2011-05-19
|
|
Joomla jomDirectory SQLi Vulnerability
|
298 |
WEB
|
Sid3^effects
|
|
2011-05-19
|
|
Google Chrome (res://mshtml.dll) Remote Exploit
|
147 |
WEB
|
Caddy-Dz
|
|
2011-05-19
|
|
InHouse CMS <= SQL Injection Vulnerability
|
129 |
WEB
|
Caddy-Dz
|
|
2011-05-19
|
|
Eshopland Shop Script Upload Shell Vulnerability
|
148 |
WEB
|
Al-Ghamdi
|
|
2011-05-19
|
|
Joomla 1.0 Component jDownloads Arbitrary File Upload Vulnerability
|
142 |
WEB
|
Al-Ghamdi
|
|
2011-05-18
|
|
PHP Calendar Basic 2.3 Cross Site Scripting
|
100 |
WEB
|
Kubelabs.com
|
|
2011-05-18
|
|
Mitel Audio And Web Conferencing 4.4.30 Cross Site Scripting
|
115 |
WEB
|
expku
|
|
2011-05-18
|
|
XtreamerPRO Media Player Directory Traversal / Authentication Bypass
|
122 |
WEB
|
Itzik Chen
|
|
2011-05-18
|
|
XMS Systems <= SQL Injection Vulnerability
|
122 |
WEB
|
Caddy-Dz
|
|
2011-05-18
|
|
Whitetail Quest <= SQL Injection Vulnerability
|
155 |
WEB
|
Caddy-Dz
|
|
2011-05-18
|
|
Pligg 1.1.4 SQL Injection Vulnerability
|
123 |
WEB
|
Null-0x00
|
|
2011-05-18
|
|
Is-human <=1.4.2 Wordpress Plugin Remote Command Execution Vulnerability
|
135 |
WEB
|
neworder
|
|
2011-05-17
|
|
随风分类信息管理程序注入漏洞
|
136 |
WEB
|
expku
|
|
2011-05-17
|
|
PG Auto Pro Classifieds Software Shell Upload
|
119 |
WEB
|
kaMtiEz
|
|
2011-05-17
|
|
Poken.com Cross Site Request Forgery
|
136 |
WEB
|
Z
|
|
2011-05-17
|
|
HTML2PDF 4.02 Cross Site Scripting
|
128 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
phpMyChat Plus 1.93 Local File Inclusion
|
133 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
VbsEdit v 5.1.3.0(.vbs) Buffer Overflow Vulnerability
|
129 |
WEB
|
anT!-Tr0J4n
|
|
2011-05-17
|
|
Profshop (cms_display.php)<= Blind SQL Injection Vulnerability
|
134 |
WEB
|
Caddy-Dz
|
|
2011-05-17
|
|
Glasstree <= SQL Injection Vulnerability
|
115 |
WEB
|
Caddy-Dz
|
|
2011-05-17
|
|
NoticeBoardPro 1.0 Multiple Vulnerabilities
|
199 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
Jcow 4.2.1 LFI Vulnerability
|
134 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
Vanilla Forum 2.0.17.9 LFI Vulnerability
|
140 |
WEB
|
AutoSec Tools
|
|
2011-05-17
|
|
frame-oshop SQL Injection Vulnerability
|
149 |
WEB
|
-SmoG-
|
|
2011-05-17
|
|
osCommerce 2.3.1 (banner_manager.php) Remote File Upload Vulnerability
|
110 |
WEB
|
Number 7
|
|
2011-05-17
|
|
Joomla Component com_question SQL Injection Vulnerability
|
120 |
WEB
|
NeX HaCkeR
|
|
2011-05-17
|
|
EditorMonkey WordPress plugin (FCKeditor) Arbitrary File Upload
|
107 |
WEB
|
kaMtiEz
|
|
2011-05-13
|
|
eyeOS Shell Upload / Cross Site Scripting
|
121 |
WEB
|
expku
|
|
2011-05-13
|
|
Pixel Army Solutions BLIND SQL-i Vulnerability
|
133 |
WEB
|
RoAd_KiLlEr
|
|
2011-05-13
|
|
Amigot (story.php) SQL Injection Vulnerability
|
124 |
WEB
|
Kalashinkov3
|
|
2011-05-13
|
|
Oracle GlassFish Server Administration Console Authentication Bypass
|
135 |
WEB
|
Core Security
|
|
2011-05-12
|
|
Calendarix 0.8.20080808 Cross Site Scripting / SQL Injection
|
129 |
WEB
|
expku
|
|
2011-05-12
|
|
onArcade v1.1.1 Game CSRF (Cross-Site Request Forgery) Vulnerability
|
140 |
WEB
|
Or4nG.M4n
|
|
2011-05-12
|
|
phpopentailorshop Multiple Vulnerabilities
|
114 |
WEB
|
Cyber-security
|
|
2011-05-12
|
|
Joomla GOLF SCORES SQLi Vulnerability
|
117 |
WEB
|
Sid3^effects
|
|
2011-05-11
|
|
seoPanel (v.2.2.1) Multiple CSRF Vulnerabilities
|
194 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
GuppY v4.6.14 (XSRF) Change Admin Account Settings
|
224 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
Joomla ftawa Component (com_ftawa) SQL Injection Vulnerability
|
120 |
WEB
|
ScOrPiOn
|
|
2011-05-11
|
|
FestOS <= 2.3c Multiple CSRF Vulnerabilities
|
130 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
poMMo Aardvark PR16.1 Cross Site Request Forgery / Cross Site Scripting
|
115 |
WEB
|
htbridge
|
|
2011-05-11
|
|
Wolf CMS 0.7.5 Cross Site Request Forgery
|
125 |
WEB
|
KedAns-Dz
|
|
2011-05-11
|
|
Google Store Cross Site Scripting
|
143 |
WEB
|
Ivan
|
|
2011-05-11
|
|
Traidnt UP (view.php) SQL Injection Vulnerability
|
109 |
WEB
|
ScOrPiOn
|
|
2011-05-10
|
|
KeyFax Response Management System 3.2.2.6 XSS / Information Disclosure
|
102 |
WEB
|
expku
|
|
2011-05-10
|
|
Amigot (story.php) SQL Injection Vulnerability
|
88 |
WEB
|
Kalashinkov3
|
|
2011-05-10
|
|
CVMH Solutions SQL Injection Vulnerability
|
269 |
WEB
|
Kalashinkov3
|
|
2011-05-10
|
|
Joomla Component com_versioning SQLi Vulnerability
|
127 |
WEB
|
the_cyber_nuxbie
|
|
2011-05-10
|
|
Joomla Component com_hello SQL Injection Vulnerability
|
213 |
WEB
|
g3mbeLz_YCL
|
|
2011-05-10
|
|
ZAPms 1.22 SQL Injection
|
149 |
WEB
|
KedAns-Dz
|
|
2011-05-10
|
|
Nuke Evolution Xtreme 2.0.x SQL Injection
|
104 |
WEB
|
KedAns-Dz
|
|
2011-05-09
|
|
dhtml-menu-builder SQL Injection Vulnerability
|
132 |
WEB
|
expku
|
|
2011-05-09
|
|
GeIT Systems Blind SQL Injection Vulnerability
|
112 |
WEB
|
expku
|
|
2011-05-09
|
|
Out There Web Solutions SQL Injection Vulnerability
|
100 |
WEB
|
expku
|
|
2011-05-09
|
|
Leading Edge Technology Solutions (L.E.T.S) SQL-i Vulnerabil
|
95 |
WEB
|
expku
|
|
2011-05-09
|
|
Symlink bypass Vulnerability
|
122 |
WEB
|
expku
|
|
2011-05-09
|
|
dhtml-menu-builder Auth bypass and Persistent XSS Vulnerabil
|
102 |
WEB
|
expku
|
|
2011-05-09
|
|
PhoenixCMS 1.7.0 Module(Universal) SQL Injection Vulnerabili
|
97 |
WEB
|
expku
|
|
2011-05-09
|
|
PhoenixCMS 1.7.0 Module(Your_Account) Remote Blind SQL Injec
|
110 |
WEB
|
expku
|
|
2011-05-09
|
|
EmbryoCore v1.03 (page) Blind SQL Injection Vulnerability
|
104 |
WEB
|
expku
|
|
2011-05-09
|
|
PhoenixCMS 1.7.0 Module(Web_Links) Blind SQL Injection
|
92 |
WEB
|
expku
|
|
2011-05-09
|
|
CommerceSQL LFI Vulnerability
|
125 |
WEB
|
expku
|
|
2011-05-09
|
|
SayItOnTheWeb Solutions SQL-i Vulnerability
|
138 |
WEB
|
expku
|
|
2011-05-09
|
|
Powered By Balianti <= SQL Injection Vulnerability
|
110 |
WEB
|
expku
|
|
2011-05-09
|
|
e107 0.7.25_full (news extend) Blind SQL Injection Vulnerabi
|
108 |
WEB
|
expku
|
|
2011-05-09
|
|
DORG <= 1.8.5 (CSRF) Add new user Vulnerability
|
103 |
WEB
|
expku
|
|
2011-05-09
|
|
FestOS <= 2.3c (CSRF/FU) Multiple Vulnerabilities
|
102 |
WEB
|
expku
|
|
2011-05-09
|
|
ZAPms v1.22 (19.04.2011) Remote File Upload Vulnerability
|
121 |
WEB
|
expku
|
|
2011-05-09
|
|
HOMEPIMA Design <= Remote Information Disclosure Exploit
|
102 |
WEB
|
expku
|
|
2011-05-09
|
|
Hycus CMS <= (allversion) Username Change CSRF PoC
|
96 |
WEB
|
expku
|
|
2011-05-09
|
|
Designed by: iware <= Remote Information Disclosure Explo
|
112 |
WEB
|
expku
|
|
2011-05-09
|
|
DORG 1.1 <= CSR-Forqery PoC Exploit
|
99 |
WEB
|
expku
|
|
2011-05-09
|
|
Kimia Web Design <= Remote (product.php) Based SQL Inject
|
147 |
WEB
|
expku
|
|
2011-05-09
|
|
f-fileman 7.0 Directory Traversal Vulnerability
|
106 |
WEB
|
expku
|
|
2011-05-09
|
|
Php-Nuke Module 'Recipes' SQL Injection Vulnerabil
|
115 |
WEB
|
expku
|
|
2011-05-09
|
|
Splash SQL Injection Vulnerability
|
126 |
WEB
|
expku
|
|
2011-05-09
|
|
Broad Visions => SQL Injection Vulnerability
|
125 |
WEB
|
expku
|
|
2011-05-09
|
|
Silver Lizard Design(page.php) => SQL Injection Vulnerabi
|
126 |
WEB
|
expku
|
|
2011-05-09
|
|
PHPDug 2.0.0 Multiple Vulnerabilities
|
147 |
WEB
|
expku
|
|
2011-05-09
|
|
f-fileman 7.0 Directory Traversal Vulnerability
|
86 |
WEB
|
Raffaele Forte
|
|
2011-05-09
|
|
VCalendar 1.1.5 CSRF Vulnerability
|
106 |
WEB
|
htbridge
|
|
2011-05-06
|
|
IRL DIGITAL MEDIA (index.php?c=) SQL-i Vulnerability
|
117 |
WEB
|
RoAd_KiLlEr
|
|
2011-05-06
|
|
Unified Council Systems Administrator Authentication Bypass Vulnerability
|
338 |
WEB
|
Xecuti0n3r
|
|
2011-05-06
|
|
Leading Edge Technology Solutions (L.E.T.S) SQL-i Vulnerability
|
111 |
WEB
|
RoAd_KiLlEr
|
