|
2017-02-04
|
|
Alstrasoft Forum Pay Per Post Exchange Script 2.01 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft FMyLife Pro 1.02 - Cross-Site Request Forgery (Add Admin)
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft Flippa Clone MarketPlace Script 4.10 - Cross-Site Request Forgery (Add Admin)
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft Video Share Enterprise 4.72 - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft e-Friends 5.12 - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft ProTaxi Enterprise 3.5 - Arbitrary File Upload
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-04
|
|
Alstrasoft EPay Enterprise 5.17 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-03
|
|
Zoneminder 1.29/1.30 - Cross-Site Scripting / SQL Injection / Session Fixation / Cross-Site Request
|
2 |
WEB
|
Tim Herres
|
|
2017-02-03
|
|
Itech Multi Vendor Script 6.49 - SQL Injection
|
1 |
WEB
|
Th3GundY
|
|
2017-02-03
|
|
SlimarUSER Management 1.0 - 'id' SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-02-02
|
|
Itech Travel Portal Script 9.35 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-02
|
|
Itech Movie Portal Script 7.37 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-02
|
|
Itech Auction Script 6.49 - 'pid' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-02
|
|
Itech News Portal Script 6.28 - 'sc' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-02
|
|
Itech Inventory Management Software 3.77 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-02-02
|
|
Property Listing Script - 'propid' Blind SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-02-02
|
|
WordPress Core 4.7.0/4.7.1 - Content Injection (Ruby)
|
2 |
WEB
|
Harsh Jaiswal
|
|
2017-02-02
|
|
WordPress Core 4.7.0/4.7.1 - Content Injection
|
2 |
WEB
|
leonjza
|
|
2017-02-01
|
|
LogoStore - 'query' SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-01-28
|
|
Joomla! Component JTAG Calendar 6.2.4 - 'search' SQL Injection
|
2 |
WEB
|
Persian Hack Team
|
|
2017-01-31
|
|
Netman 204 - Backdoor Account / Password Reset
|
2 |
WEB
|
Simon Gurney
|
|
2017-01-30
|
|
Netgear Routers - Password Disclosure
|
2 |
WEB
|
Trustwave's SpiderLabs
|
|
2017-01-30
|
|
Itech Video Sharing Script 4.94 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
Itech Real Estate Script 3.12 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
Itech Dating Script 3.26 - 'send_gift.php' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
Itech Classifieds Script 7.27 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
HelpDeskZ < 1.0.2 - (Authenticated) SQL Injection / Unauthorized File Download
|
2 |
WEB
|
Mariusz Poplawski
|
|
2017-01-30
|
|
Itech Video Sharing Script 4.94 - 'v' SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
PHP Logo Designer Script - Arbitrary File Upload
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
PHP Product Designer Script - Arbitrary File Upload
|
0 |
WEB
|
Ihsan Sencan
|
|
2017-01-30
|
|
Itech Real Estate Script 3.12 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech News Portal Script 6.28 - 'inf' SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech Multi Vendor Script 6.49 - 'pl' SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech Freelancer Script 5.13 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech Dating Script 3.26 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech Classifieds Script 7.27 - 'scat' SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech B2B Script 4.28 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Itech Auction Script 6.49 - 'mcid' SQL Injection
|
0 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
Caregiver Script 2.57 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-30
|
|
PHP PEAR 1.10.1 - Arbitrary File Download
|
2 |
WEB
|
hyp3rlinx
|
|
2017-01-29
|
|
TrueConf Server 4.3.7 - Multiple Vulnerabilities
|
2 |
WEB
|
LiquidWorm
|
|
2017-01-27
|
|
WordPress Plugin Online Hotel Booking System Pro 1.0 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-27
|
|
Online Hotel Booking System Pro 1.2 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-27
|
|
WordPress Plugin WP Private Messages 1.0.1 - SQL Injection (2)
|
2 |
WEB
|
Lenon Leite
|
|
2017-01-27
|
|
Radisys MRF - Command Injection
|
2 |
WEB
|
Filippos Mastrogiannis
|
|
2017-01-27
|
|
Maian Weblog 4.0 - SQL Injection
|
1 |
WEB
|
Kaan KAMIS
|
|
2017-01-27
|
|
My Photo Gallery 1.0 - SQL Injection
|
2 |
WEB
|
Kaan KAMIS
|
|
2017-01-26
|
|
Polycom VVX Web Interface - Change Admin Password
|
2 |
WEB
|
Mike Brown
|
|
2017-01-26
|
|
PHPBack < 1.3.1 - SQL Injection / Cross-Site Scripting
|
2 |
WEB
|
Manish Tanwar
|
|
2017-01-26
|
|
TM RG4332 Wireless Router - Arbitrary File Disclosure
|
1 |
WEB
|
Saeid Atabaki
|
|
2017-01-26
|
|
Web Based TimeSheet Script - Authentication Bypass
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-26
|
|
KB Messages PHP Script 1.0 - Authentication Bypass
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-26
|
|
KB Login Authentication Script 1.1 - Authentication Bypass
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-26
|
|
KB Affiliate Referral Script 1.0 - Authentication Bypass
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-26
|
|
PHP PEAR HTTP_Upload 1.0.0b3 - Arbitrary File Upload
|
1 |
WEB
|
hyp3rlinx
|
|
2017-01-20
|
|
Joomla! < 3.6.4 - Admin Takeover
|
1 |
WEB
|
Charles Fol
|
|
2017-01-20
|
|
Joomla! < 2.5.2 - Admin Creation
|
0 |
WEB
|
Charles Fol
|
|
2017-01-25
|
|
Movie Portal Script 7.36 - Multiple Vulnerabilities
|
1 |
WEB
|
Marc Castejon
|
|
2017-01-20
|
|
MyBB < 1.8.3 (with PHP 5.6 < 5.6.11) - Remote Code Execution
|
2 |
WEB
|
Taoguang Chen
|
|
2017-01-24
|
|
WD My Cloud Mirror 2.11.153 - Authentication Bypass / Remote Code Execution
|
0 |
WEB
|
Kacper Szurek
|
|
2017-01-21
|
|
PageKit 1.0.10 - Password Reset
|
2 |
WEB
|
Saurabh Banawar
|
|
2017-01-22
|
|
NTOPNG 2.4 Web Interface - Cross-Site Request Forgery
|
2 |
WEB
|
hyp3rlinx
|
|
2017-01-20
|
|
B2B Alibaba Clone Script - 'IndustryID' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Mini CMS 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Affiliate Tracking Script 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Music Site Script 1.2 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Job Site PHP Script 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Mini Blog 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
ICTutors Tutoring Site Script 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Domains Marketplace Script 1.1 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
ICGames-Games Site Script 1.2 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-20
|
|
Complain Management System - SQL injection
|
2 |
WEB
|
Sibusiso Sishi
|
|
2017-01-19
|
|
Classifieds Script - 'term' SQL Injection
|
3 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Video Site Creator Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Home of Viral Images_ Videos and Articles Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Job Vacancy Script - SQL Injection
|
0 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Vine VideoSite Creator Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Viral Image Sharing Script - SQL Injection
|
0 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Social News and Bookmarking Script - SQL Injection
|
0 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Image and Video Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Viral Image & Video Sharing GagZone Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-19
|
|
Pirelli DRG A115 v3 ADSL Router - DNS Change
|
1 |
WEB
|
Todor Donev
|
|
2017-01-19
|
|
Tenda ADSL2/2+ Modem D820R - DNS Change
|
0 |
WEB
|
Todor Donev
|
|
2017-01-18
|
|
B2B Script 4.27 - SQL Injection
|
1 |
WEB
|
Dawid Morawski
|
|
2017-01-18
|
|
Flippa Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-17
|
|
Courier Management System - SQL Injection
|
2 |
WEB
|
Sibusiso Sishi
|
|
2017-01-18
|
|
Study Abroad Educational Website Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Shiksha Educational Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Online Tshirt Design Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Online Printing Business Clone Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Clone of Oddee Script 1.1.3 - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Online Mobile Recharge Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Questions and Answers Script 1.1.3 - 'id' SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
NGO Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Yoga and Fitness Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
NGO Directory Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
My Private Tutor Website Builder Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Micro Blog Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Manufacturer Website Design Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Dentist Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Buy and Sell Market Place Software - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Business Directory Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Justdial Clone Script - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Finance Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Wetransfer Clone Script - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Auction Website Script - SQL Injection
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Fileserve Clone Script - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-18
|
|
Medical Clinic Website Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-17
|
|
Openexpert 0.5.17 - 'area_id' SQL Injection
|
1 |
WEB
|
Nassim Asrir
|
|
2017-01-17
|
|
Check Box 2016 Q2 Survey - Multiple Vulnerabilities
|
2 |
WEB
|
Fady Mohammed Osman
|
|
2017-01-17
|
|
BoZoN 2.4 - Remote Code Execution
|
3 |
WEB
|
hyp3rlinx
|
|
2017-01-17
|
|
dirLIST 0.3.0 - Arbitrary File Upload
|
1 |
WEB
|
hyp3rlinx
|
|
2017-01-08
|
|
ManagEnegine ADManager Plus 6.5.40 - Multiple Vulnerabilities
|
1 |
WEB
|
Mehmet Ince
|
|
2017-01-16
|
|
Million Pixels 3 - Authentication Bypass
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-16
|
|
Image Sharing Script 4.13 - Multiple Vulnerabilities
|
3 |
WEB
|
Hasan Emre Ozer
|
|
2017-01-16
|
|
Tenda ADSL2/2+ Modem D840R - DNS Change
|
2 |
WEB
|
Todor Donev
|
|
2017-01-16
|
|
Pirelli DRG A115 ADSL Router - DNS Change
|
2 |
WEB
|
Todor Donev
|
|
2017-01-16
|
|
Business Networking Script 8.11 - SQL Injection / Cross-Site Scripting
|
2 |
WEB
|
Ahmet Gurel
|
|
2017-01-12
|
|
Huawei Flybox B660 - Cross-Site Request Forgery (2)
|
2 |
WEB
|
Vulnerability-Lab
|
|
2017-01-15
|
|
MC Documentation Creator Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
MC Coming Soon Script - Arbitrary File Upload / Improper Access Restrictions
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
MC Inventory Manager Script - Multiple Vulnerabilities
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
MC Hosting Coupons Script - Cross-Site Request Forgery
|
2 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
MC Real Estate Pro Script - Improper Access Restrictions
|
1 |
WEB
|
Ihsan Sencan
|
|
2017-01-15
|
|
MC Yellow Pages Script - SQL Injection
|
2 |
WEB
|
Ihsan Sencan
|
