|
2017-02-28
|
|
Netgear DGN2200v1/v2/v3/v4 - Cross-Site Request Forgery
|
4 |
WEB
|
SivertPL
|
|
2017-02-27
|
|
Joomla! Component OneVote! 1.0 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Grails PDF Plugin 0.6 - XML External Entity Injection
|
4 |
WEB
|
Charles Fol
|
|
2017-02-25
|
|
Joomla! Component JomSocial - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-25
|
|
Joomla! Component Spinner 360 1.3.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-25
|
|
Joomla! Component My MSG 3.2.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-25
|
|
Joomla! Component Appointments for JomSocial 3.8.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
Trend Micro InterScan Messaging Security (Virtual Appliance) < 9.1.-1600 - Remote Code Execution (Me
|
1 |
WEB
|
Mehmet Ince
|
|
2017-02-25
|
|
Joomla! Component Gnosis 1.1.2 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-25
|
|
Netgear DGN2200v1/v2/v3/v4 - 'dnslookup.cgi' Remote Command Execution
|
2 |
WEB
|
SivertPL
|
|
2017-02-25
|
|
Joomla! Component Intranet Attendance Track 2.6.5 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
memcache-viewer - Cross-Site Scripting
|
3 |
WEB
|
HaHwul
|
|
2017-02-24
|
|
Apple WebKit 10.0.2 - 'Frame::setDocument' Universal Cross-Site Scripting
|
3 |
WEB
|
Google Security Research
|
|
2017-02-24
|
|
Joomla! Component Community Quiz 4.3.5 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Apple WebKit 10.0.2 - Cross-Origin or Sandboxed IFRAME Pop-up Blocker Bypass
|
3 |
WEB
|
Google Security Research
|
|
2017-02-24
|
|
Joomla! Component GPS Tools 4.0.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Apple WebKit 10.0.2 - 'FrameLoader::clear' Universal Cross-Site Scripting
|
3 |
WEB
|
Google Security Research
|
|
2017-02-24
|
|
Joomla! Component Community Polls 4.5.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Joomla! Component Community Surveys 4.3 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Joomla! Component AJAX Search for K2 2.2 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Joomla! Component JO Facebook Gallery 4.5 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-24
|
|
Joomla! Component JooDatabase 3.1.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-23
|
|
Joomla! Component MultiTier 3.1 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-23
|
|
Joomla! Component UserExtranet 1.3.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-23
|
|
Joomla! Component Store for K2 3.8.2 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
WordPress Plugin Mail Masta 1.0 - SQL Injection
|
3 |
WEB
|
Hanley Shun
|
|
2017-02-22
|
|
Teradici Management Console 2.2.0 - Privilege Escalation
|
3 |
WEB
|
hantwister
|
|
2017-02-21
|
|
ProjectSend r754 - Insecure Direct Object Reference
|
3 |
WEB
|
Vulnerability-Lab
|
|
2017-02-21
|
|
Lock Photos Album&Videos Safe 4.3 - Directory Traversal
|
3 |
WEB
|
Vulnerability-Lab
|
|
2017-02-22
|
|
Joomla! Component MediaLibrary Basic 3.5 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-22
|
|
Joomla! Component BookLibrary 3.6.1 - SQL Injection
|
5 |
WEB
|
Ihsan Sencan
|
|
2017-02-22
|
|
Joomla! Component RealEstateManager 3.9 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-22
|
|
Joomla! Component VehicleManager 3.9 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-22
|
|
Joomla! Component ContentMap 1.3.8 - 'contentid' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-01-31
|
|
AlienVault OSSIM/USM < 5.3.1 - Remote Code Execution (Metasploit)
|
3 |
WEB
|
Mehmet Ince
|
|
2016-12-24
|
|
Sonicwall 8.1.0.2-14sv - 'viewcert.cgi' Remote Command Injection (Metasploit)
|
3 |
WEB
|
xort
|
|
2016-12-25
|
|
Sonicwall 8.1.0.2-14sv - 'extensionsettings.cgi' Remote Command Injection (Metasploit)
|
3 |
WEB
|
xort
|
|
2016-12-12
|
|
Sophos Web Appliance 4.2.1.3 - DiagnosticTools Remote Command Injection (Metasploit)
|
4 |
WEB
|
xort
|
|
2016-12-12
|
|
Sophos Web Appliance 4.2.1.3 - block/unblock Remote Command Injection (Metasploit)
|
4 |
WEB
|
xort
|
|
2017-02-21
|
|
Joomla! Component AppointmentBookingPro 4.0.1 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component J-BusinessDirectory 4.6.8 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component Magic Deals Web 1.2.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component Directorix Directory Manager 1.1.1 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component J-MultipleHotelReservation Standard 6.0.2 - 'review_id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component Eventix Events Calendar 1.0 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component J-CruiseReservation Standard 3.0 - 'city' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
Joomla! Component J-HotelPortal 6.0.2 - 'review_id' SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-21
|
|
DIGISOL DG-HR1400 Wireless Router - Cross-Site Request Forgery
|
4 |
WEB
|
Indrajith.A.N
|
|
2015-09-03
|
|
Tenda N3 Wireless N150 Router - Authentication Bypass
|
3 |
WEB
|
Mandeep Jadon
|
|
2017-02-20
|
|
Album Lock 4.0 iOS - Directory Traversal
|
3 |
WEB
|
Vulnerability-Lab
|
|
2017-02-20
|
|
Joomla! Component PayPal IPN for DOCman 3.1 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-20
|
|
Joomla! Component MaQma Helpdesk 4.2.7 - 'id' SQL Injection
|
5 |
WEB
|
Ihsan Sencan
|
|
2017-02-19
|
|
PHPShell 2.4 - Session Fixation
|
4 |
WEB
|
hyp3rlinx
|
|
2017-02-18
|
|
Sawmill Enterprise 8.7.9 - Authentication Bypass
|
4 |
WEB
|
hyp3rlinx
|
|
2017-02-18
|
|
Netgear DGN2200v1/v2/v3/v4 - 'ping.cgi' Remote Command Execution
|
3 |
WEB
|
SivertPL
|
|
2017-02-18
|
|
Joomla! Component Most Wanted Real Estate 1.1.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2016-08-30
|
|
RSS News AutoPilot Script 1.0.1/3.0.3 - Cross-Site Request Forgery
|
3 |
WEB
|
Arbin Godar
|
|
2017-02-18
|
|
Joomla! Component Google Map Store Locator 4.4 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component Bazaar Platform 3.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component Room Management 1.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component OS Services Booking 2.5.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component EShop 2.5.1 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component OS Property 3.0.8 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component JomWALL 4.0 - 'wuid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component Joomloc-Lite 1.3.2 - 'site_id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-18
|
|
Joomla! Component Joomloc-CAT 4.1.3 - 'ville' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-17
|
|
Joomla! Component WMT Content Timeline 1.0 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-17
|
|
Joomla! Component Groovy Gallery 1.0.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-17
|
|
Joomla! Component Team Display 1.2.1 - 'filter_category' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-16
|
|
Joomla! Component JEmbedAll 1.4 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-16
|
|
dotCMS 3.6.1 - Blind Boolean SQL Injection
|
4 |
WEB
|
Ben Nott
|
|
2017-02-16
|
|
WordPress Plugin Corner Ad 1.0.7 - Cross-Site Scripting
|
2 |
WEB
|
Atik Rahman
|
|
2017-02-16
|
|
Joomla! Component Spider FAQ Lite 1.3.1 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2017-02-16
|
|
Joomla! Component Spider Facebook 1.6.1 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-16
|
|
Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-16
|
|
Joomla! Component Spider Calendar Lite 3.2.16 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-15
|
|
Joomla! Component JSP Store Locator 2.2 - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-15
|
|
Joomla! Component JoomBlog 1.3.1 - SQL Injection
|
4 |
WEB
|
Ihsan Sencan
|
|
2016-11-28
|
|
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 - Multiple Vulnerabilities
|
3 |
WEB
|
SlidingWindow
|
|
2017-02-15
|
|
Geutebruck 5.02024 G-Cam/EFD-2250 - 'testaction.cgi' Remote Command Execution (Metasploit)
|
3 |
WEB
|
RandoriSec
|
|
2017-02-12
|
|
Itech B2B Script 4.29 - Multiple Vulnerabilities
|
2 |
WEB
|
Marc Castejon
|
|
2017-02-13
|
|
Joomla! Component JE Messanger - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Ticket System 1.2 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Portfolio Creator 1.2 - 'd_itemid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Form Creator 1.8 - 'Itemid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE K2 Multiple Form Story 1.3 - 'Itemid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Grid Folio - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Quiz 2.3 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component Hbooking 1.9.9 - 'h_id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Awd Song 1.8 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Auto 1.5 - 'd_itemid' SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE auction 1.6 - 'eid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Video Rate 1.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Tour 2.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Property Finder 1.6.3 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE QuoteForm - 'Itemid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Directory 1.7 - 'ditemid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Gallery 1.3 - 'photo_id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
Joomla! Component JE Classify Ads 1.2 - 'pro_id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-13
|
|
PHP Marketplace Script - SQL Injection
|
2 |
WEB
|
Th3GundY
|
|
2017-02-12
|
|
Joomla! Component Soccer Bet 4.1.5 - 'userid' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-11
|
|
Joomla! Component Soccer Bet 4.1.5 - 'cat' SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-11
|
|
Joomla! Component Vik Booking 1.7 - SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-11
|
|
Joomla! Component Sponsor Wall 7.0 - 'wallid' SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-11
|
|
Joomla! Component onisMusic 2 - 'tag' SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-11
|
|
Joomla! Component onisQuotes 2.5 - 'tag' SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-11
|
|
Joomla! Component onisPetitions 2.5 - 'tag' SQL Injection
|
3 |
WEB
|
Persian Hack Team
|
|
2017-02-12
|
|
Domains & Hostings Manager PRO 3.0 - 'entries' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
Quadz School Management System 3.1 - 'uisd' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
Viavi Product Review - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
Viavi Movie Review - 'id' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
Viavi Real Estate - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
TI Online Examination System 2.0 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
WhizBiz 1.9 - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-12
|
|
Kodi 17.1 - Arbitrary File Disclosure
|
3 |
WEB
|
Eric Flokstra
|
|
2017-02-11
|
|
SonicDICOM PACS 2.3.2 - Privilege Escalation
|
3 |
WEB
|
LiquidWorm
|
|
2017-02-11
|
|
SonicDICOM PACS 2.3.2 - Cross-Site Request Forgery (Add Admin)
|
3 |
WEB
|
LiquidWorm
|
|
2017-02-11
|
|
SonicDICOM PACS 2.3.2 - Cross-Site Scripting
|
3 |
WEB
|
LiquidWorm
|
|
2017-02-09
|
|
WordPress Plugin Insert PHP 3.3.1 - PHP Code Injection
|
3 |
WEB
|
CrashBandicot
|
|
2017-02-10
|
|
HotelCMS with Booking Engine - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-10
|
|
Video Subscription - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-10
|
|
CodePaul ClipMass - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-10
|
|
Uploadr - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-10
|
|
CLUB-8 EMS - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-10
|
|
Automated Job Portal Script - SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
