|
2017-03-21
|
|
Joomla! Component Extra Search 2.2.8 - 'establename' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-20
|
|
D-Link DGS-1510 - Multiple Vulnerabilities
|
3 |
WEB
|
Varang Amin
|
|
2017-03-20
|
|
phplist 3.2.6 - SQL Injection
|
3 |
WEB
|
Curesec Research Team
|
|
2017-03-20
|
|
Joomla! Component jCart for OpenCart 2.0 - 'product_id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-20
|
|
Joomla! Component JooCart 2.x - 'product_id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-19
|
|
Secure Download Links - 'dc' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-18
|
|
Omegle Clone - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-18
|
|
DIGISOL DG-HR1400 1.00.02 Wireless Router - Privilege Escalation
|
2 |
WEB
|
Indrajith.A.N
|
|
2017-03-18
|
|
iFdate Social Dating Script 2.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-16
|
|
Cobbler 2.8.0 - (Authenticated) Remote Code Execution
|
4 |
WEB
|
Dolev Farhi
|
|
2017-03-17
|
|
Departmental Store Management System 1.2 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-17
|
|
AXIS (Multiple Products) - Cross-Site Request Forgery
|
3 |
WEB
|
Orwelllabs
|
|
2017-03-17
|
|
AXIS Communications - Cross-Site Scripting / Content Injection
|
3 |
WEB
|
Orwelllabs
|
|
2017-03-16
|
|
WordPress Plugin Membership Simplified 1.58 - Arbitrary File Download
|
2 |
WEB
|
The Martian
|
|
2017-03-15
|
|
Sitecore CMS 8.1 Update-3 - Cross-Site Scripting
|
2 |
WEB
|
Pralhad Chaskar
|
|
2017-03-13
|
|
Steam Profile Integration 2.0.11 - SQL injection
|
2 |
WEB
|
DrWhat
|
|
2017-03-15
|
|
GitHub Enterprise 2.8.0 < 2.8.6 - Remote Code Execution
|
3 |
WEB
|
iblue
|
|
2017-03-15
|
|
Joomla! Component Vik Rent Car 1.11 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-15
|
|
Joomla! Component Vik Rent Items 1.3 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-15
|
|
Joomla! Component Vik Appointments 1.5 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-14
|
|
Joomla! Component Advertisement Board 3.0.4 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-14
|
|
Joomla! Component Simple Membership 3.3.3 - 'userId' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-13
|
|
Car Workshop System - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Fiyo CMS 2.0.6.1 - Privilege Escalation
|
4 |
WEB
|
rungga_reksya
|
|
2017-03-11
|
|
Mirage - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
PHP Forum Script 3.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Yellow Pages Script 3.2 - 'category_id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Yacht Listing Script 2.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Travel Tours Script 2.0 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Property Listing Script 3.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Pet Listing Script 3.0 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Vanelo - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Global In - Arbitrary File Upload
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Global In - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-11
|
|
Domain Marketplace Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
e107 < 2.1.4 - 'keyword' Blind SQL Injection
|
3 |
WEB
|
StAkeR
|
|
2017-03-10
|
|
WatchGuard XTMv 11.12 Build 516911 - User Management Cross-Site Request Forgery
|
3 |
WEB
|
KoreLogic
|
|
2017-03-10
|
|
dnaLIMS DNA Sequencing - Directory Traversal / Session Hijacking / Cross-Site Scripting
|
3 |
WEB
|
Shorebreak Security
|
|
2017-03-10
|
|
Kinsey Infor/Lawson / ESBUS - SQL Injection
|
3 |
WEB
|
Michael Benich
|
|
2017-03-10
|
|
FTP Voyager Scheduler 16.2.0 - Cross-Site Request Forgery
|
3 |
WEB
|
hyp3rlinx
|
|
2017-03-08
|
|
ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Remote Code Execution
|
3 |
WEB
|
Bruno Bierbaumer
|
|
2017-03-08
|
|
ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Session Stealing
|
3 |
WEB
|
Bruno Bierbaumer
|
|
2017-03-08
|
|
ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Cross-Site Scripting
|
3 |
WEB
|
Bruno Bierbaumer
|
|
2017-03-07
|
|
Apache Struts 2.3.5 < 2.3.31 / 2.5 < 2.5.10 - Remote Code Execution
|
3 |
WEB
|
Vex Woo
|
|
2017-03-09
|
|
WordPress Plugin PICA Photo Gallery 1.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
WordPress Plugin Apptha Slider Gallery 1.0 - Arbitrary File Download
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
WordPress Plugin Apptha Slider Gallery 1.0 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
WordPress Plugin Mac Photo Gallery 3.0 - Arbitrary File Download
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Drupal 7.x Module Services - Remote Code Execution
|
3 |
WEB
|
Charles Fol
|
|
2017-03-09
|
|
TradeMart 1.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Fashmark 1.2 - 'category' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Busewe 1.2 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Nlance 2.2 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
BistroStays 3.0 - 'guests' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Soundify 1.1 - 'tid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Media Search Engine Script - 'search' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-09
|
|
Country on Sale Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Navetti PricePoint 4.6.0.0 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
|
3 |
WEB
|
SEC Consult
|
|
2017-03-08
|
|
Navetti PricePoint 4.6.0.0 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
|
3 |
WEB
|
SEC Consult
|
|
2017-03-08
|
|
Navetti PricePoint 4.6.0.0 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
|
3 |
WEB
|
SEC Consult
|
|
2017-03-08
|
|
Envato Clone Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Videohive Clone Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Audiojungle Clone Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Codecanyon Clone Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Graphicriver Clone Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-08
|
|
Themeforest Clone Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-07
|
|
Bull/IBM AIX Clusterwatch/Watchware - Multiple Vulnerabilities
|
3 |
WEB
|
RandoriSec
|
|
2017-03-07
|
|
Daily Deals Script 1.0 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-07
|
|
Mini CMS 1.1 - 'name' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Deluge Web UI 1.3.13 - Cross-Site Request Forgery
|
2 |
WEB
|
Kyle Neideck
|
|
2017-03-03
|
|
Multiple WordPress Plugins - Arbitrary File Upload
|
2 |
WEB
|
The Martian
|
|
2017-03-06
|
|
Website Broker Script 3.02 - 'view' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Social Network Script 3.01 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Select Your College Script 2.01 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Schools Alert Management Script 2.01 - 'list_id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Responsive Matrimonial Script 4.0.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
PHP B2B Script 3.05 - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Network Community Script 3.0.2 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Multireligion Responsive Matrimonial Script 4.7.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
MLM Membership Plan Script 2.0.5 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
MLM Forex Market Plan Script 2.0.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
MLM Forced Matrix 2.0.7 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
MLM Binary Plan Script 2.0.5 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
PHP Matrimonial Script 3.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Entrepreneur B2B Script 2.0.4 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
PHP Classifieds Rental Script 3.6.0 - 'scatid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Advanced Real Estate Script 4.0.6 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Advanced Matrimonial Script 2.0.3 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Yellow Pages Clone Script 1.3.4 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Naukri Clone Script 3.02 - 'type' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Groupon Clone Script 3.01 - 'catid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Redbus Clone Script 3.05 - 'hid_Busid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Online Cinema and Event Booking Script 2.01 - 'newsid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Responsive Events & Movie Ticket Booking Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Single Theater Booking Script - 'newsid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Entrepreneur Bus Booking Script 3.03 - 'hid_Busid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-06
|
|
Advanced Bus Booking Script 2.04 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-04
|
|
Joomla! Component AltaUserPoints 1.1 - 'userid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-04
|
|
Joomla! Component Content ConstructionKit 1.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-04
|
|
Joomla! Component AYS Quiz 1.0 - 'id' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-04
|
|
Joomla! Component Monthly Archive 3.6.4 - 'author_form' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-04
|
|
Joomla! Component JUX EventOn 1.0.1 - 'id' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-03-03
|
|
EPSON TMNet WebConfig 1.00 - Cross-Site Scripting
|
4 |
WEB
|
Michael Benich
|
|
2017-03-03
|
|
pfSense 2.3.2 - Cross-Site Scripting / Cross-Site Request Forgery
|
3 |
WEB
|
Yann CAM
|
|
2017-03-03
|
|
pfSense 2.3.2 - Cross-Site Scripting / Cross-Site Request Forgery
|
3 |
WEB
|
Yann CAM
|
|
2017-03-03
|
|
Joomla! Component Coupon 3.5 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-23
|
|
NetGain Enterprise Manager 7.2.562 - 'Ping' Command Injection
|
3 |
WEB
|
MrChaZ
|
|
2017-03-03
|
|
WordPress Core < 4.7.1 - Username Enumeration
|
3 |
WEB
|
Dctor
|
|
2017-03-02
|
|
Joomla! Component Recipe Manager 2.2 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-02
|
|
Joomla! Component Guesser 1.0.4 - 'type' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-02
|
|
Joomla! Component StreetGuessr Game 1.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-02
|
|
Joomla! Component Abstract 2.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-02
|
|
Php Classified OLX Clone Script - 'category' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-01
|
|
Meme Maker Script 2.1 - 'user' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-01
|
|
Rage Faces Script 1.3 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-01
|
|
SchoolDir - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-03-01
|
|
WordPress Plugin File Manager 3.0.1 - Cross-Site Request Forgery
|
3 |
WEB
|
David Vaartjes
|
|
2017-03-01
|
|
WordPress Plugin Global Content Blocks 2.1.5 - Cross-Site Request Forgery
|
2 |
WEB
|
Yorick Koster
|
|
2017-03-01
|
|
WordPress Plugin NewStatPress 1.2.4 - Cross-Site Scripting
|
4 |
WEB
|
Han Sahin
|
|
2017-03-01
|
|
WordPress Plugin Popup by Supsystic 1.7.6 - Cross-Site Request Forgery
|
4 |
WEB
|
Radjnies Bhansingh
|
|
2017-03-01
|
|
WordPress Plugin User Login Log 2.2.1 - Cross-Site Scripting
|
3 |
WEB
|
Axel Koolhaas
|
|
2017-03-01
|
|
WordPress Plugin Contact Form Manager - Cross-Site Request Forgery / Cross-Site Scripting
|
4 |
WEB
|
Edwin Molenaar
|
|
2017-03-01
|
|
WordPress Plugin Contact Form Manager - Cross-Site Request Forgery / Cross-Site Scripting
|
4 |
WEB
|
Edwin Molenaar
|
|
2017-03-01
|
|
Aruba AirWave 8.2.3 - XML External Entity Injection / Cross-Site Scripting
|
4 |
WEB
|
SEC Consult
|
|
2017-03-01
|
|
D-Link DSL-2730U Wireless N 150 - Cross-Site Request Forgery
|
3 |
WEB
|
B GOVIND
|
