|
2012-07-05
|
|
WordPress Plugin PHPFreeChat - 'url' Cross-Site Scripting
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-07-06
|
|
WordPress Plugin Knews Multilingual Newsletters - Cross-Site Scripting
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-07-06
|
|
WordPress Plugin church_admin - 'id' Cross-Site Scripting
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-07-03
|
|
WordPress Plugin custom tables - 'key' Cross-Site Scripting
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-07-06
|
|
WordPress Plugin SocialFit - 'msg' Cross-Site Scripting
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-07-04
|
|
Classified Ads Script PHP - 'admin.php' Multiple SQL Injections
|
2 |
WEB
|
snup
|
|
2012-07-03
|
|
PHP MBB - Cross-Site Scripting / SQL Injection
|
1 |
WEB
|
TheCyberNuxbie
|
|
2015-07-03
|
|
CuteNews 2.0.3 - Arbitrary File Upload
|
1 |
WEB
|
T0x!c
|
|
2012-07-02
|
|
Getsimple CMS Items Manager Plugin - 'PHP.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-29
|
|
SWFupload - 'movieName' Cross-Site Scripting
|
1 |
WEB
|
Nathan Partlan
|
|
2012-06-29
|
|
LIOOSYS CMS - SQL Injection / Information Disclosure
|
1 |
WEB
|
MustLive
|
|
2012-06-29
|
|
JAKCMS PRO 2.2.6 - 'uploader.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-28
|
|
TEMENOS T24 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Rehan Ahmed
|
|
2012-06-28
|
|
PHP-Fusion Advanced MP3 Player Infusion - 'upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2015-07-02
|
|
WordPress Plugin Albo Pretorio Online 3.2 - Multiple Vulnerabilities
|
1 |
WEB
|
Alessandro Cingolani
|
|
2012-06-26
|
|
DigPHP - 'dig.php' Script Remote File Disclosure
|
1 |
WEB
|
Ryuzaki Lawlet
|
|
2012-06-27
|
|
Schoolhos CMS - HTML Injection
|
1 |
WEB
|
the_cyber_nuxbie
|
|
2012-06-25
|
|
Umapresence - Local File Inclusion / Arbitrary File Deletion
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-25
|
|
FCKEditor Core - 'Editor 'spellchecker.php' Cross-Site Scripting
|
1 |
WEB
|
Emilio Pinna
|
|
2015-07-01
|
|
D-Link DSP-W w110 v1.05b01 - Multiple Vulnerabilities
|
1 |
WEB
|
DNO
|
|
2012-06-25
|
|
Drupal Module Drag & Drop Gallery 6.x-1.5 - 'upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-23
|
|
WordPress Plugin Flip Book - 'PHP.php' Arbitrary File Upload
|
0 |
WEB
|
Sammy FORGIT
|
|
2012-06-23
|
|
SilverStripe CMS Pixlr Image Editor - 'upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-23
|
|
Amazon S3 Uploadify Script - 'Uploadify.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2015-06-30
|
|
Polycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities
|
1 |
WEB
|
SEC Consult
|
|
2015-06-30
|
|
C2Box 4.0.0(r19171) - Cross-Site Request Forgery
|
2 |
WEB
|
Wissam Bashour
|
|
2015-06-30
|
|
Fiyo CMS 2.0_1.9.1 - SQL Injection
|
1 |
WEB
|
cfreer
|
|
2012-06-22
|
|
CMS Lokomedia - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
|
1 |
WEB
|
the_cyber_nuxbie
|
|
2012-06-22
|
|
Cotonti - 'admin.php' SQL Injection
|
1 |
WEB
|
AkaStep
|
|
2012-06-21
|
|
Joomla! Component com_szallasok - 'id' SQL Injection
|
1 |
WEB
|
CoBRa_21
|
|
2015-06-30
|
|
CollabNet Subversion Edge Management 4.0.11 - Local File Inclusion
|
1 |
WEB
|
otr
|
|
2015-06-30
|
|
WedgeOS 4.0.4 - Multiple Vulnerabilities
|
1 |
WEB
|
Security-Assessment.com
|
|
2015-06-30
|
|
Watchguard XCS 10.0 - Multiple Vulnerabilities
|
1 |
WEB
|
Security-Assessment.com
|
|
2015-06-30
|
|
Novius 5.0.1 - Multiple Vulnerabilities
|
2 |
WEB
|
hyp3rlinx
|
|
2012-06-21
|
|
Adiscan LogAnalyzer 3.4.3 - Cross-Site Scripting
|
2 |
WEB
|
Sooraj K.S
|
|
2012-06-20
|
|
Coppermine Photo Gallery - 'index.php' Script SQL Injection
|
2 |
WEB
|
Taurus Omar
|
|
2012-06-20
|
|
Commentics - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Jean Pascal Pereira
|
|
2012-06-20
|
|
web@all - Cross-Site Scripting
|
1 |
WEB
|
High-Tech Bridge
|
|
2012-06-19
|
|
e107 Filedownload Plugin - Arbitrary File Upload / Remote File Disclosure
|
0 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
AdaptCMS 2.0.2 - 'index.php' Script Cross-Site Scripting
|
1 |
WEB
|
indoushka
|
|
2012-06-19
|
|
e107 Image Gallery Plugin - 'name' Remote File Disclosure
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
e107 Hupsi_fancybox Plugin - 'Uploadify.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-19
|
|
CMS Balitbang - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
TheCyberNuxbie
|
|
2015-06-29
|
|
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Change
|
1 |
WEB
|
Fady Mohammed Osman
|
|
2015-06-29
|
|
Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure
|
1 |
WEB
|
Fady Mohammed Osman
|
|
2015-06-29
|
|
DeDeCMS < 5.7-sp1 - Remote File Inclusion
|
7 |
WEB
|
zise
|
|
2012-06-18
|
|
VANA CMS - 'index.php' Script SQL Injection
|
1 |
WEB
|
Black Hat Group
|
|
2012-06-18
|
|
WordPress Plugin Wp-ImageZoom - 'file' Remote File Disclosure
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-18
|
|
WordPress Plugin LB Mixed Slideshow - 'upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-18
|
|
Multiple WordPress Themes - 'upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-14
|
|
Squiz CMS - Multiple Cross-Site Scripting / XML External Entity Injection Vulnerabilities
|
1 |
WEB
|
Nadeem Salim
|
|
2012-06-16
|
|
Webify (Multiple Products) - Multiple HTML Injection / Local File Inclusions
|
1 |
WEB
|
snup
|
|
2012-06-16
|
|
Simple Document Management System 1.1.5 - Multiple SQL Injections
|
1 |
WEB
|
JosS
|
|
2012-06-15
|
|
Joomla! Component JCal Pro Calendar - SQL Injection
|
2 |
WEB
|
Taurus Omar
|
|
2012-06-16
|
|
Joomla! Component Maian Media - 'uploadhandler.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-15
|
|
WordPress Plugin ORGanizer - Multiple Vulnerabilities
|
1 |
WEB
|
MustLive
|
|
2012-06-17
|
|
Joomla! Component hwdVideoShare - 'flash_upload.php' Arbitrary File Upload
|
1 |
WEB
|
Sammy FORGIT
|
|
2012-06-14
|
|
NetArt Media Jobs Portal - SQL Injection
|
2 |
WEB
|
Ibrahim El-Sayed
|
|
2012-06-14
|
|
Simple Forum PHP - Multiple SQL Injections
|
3 |
WEB
|
Vulnerability Research Laboratory
|
|
2012-06-15
|
|
ADICO - 'index.php' Script SQL Injection
|
2 |
WEB
|
Ibrahim El-Sayed
|
|
2012-06-14
|
|
WordPress Plugin Zingiri Web Shop 2.4.3 - 'uploadfilexd.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-17
|
|
MediaWiki 1.x - 'uselang' Cross-Site Scripting
|
2 |
WEB
|
anonymous
|
|
2012-06-14
|
|
WordPress Plugin Invit0r - 'ofc_upload_image.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-01-14
|
|
WordPress Plugin Evarisk - 'uploadPhotoApres.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-13
|
|
Zimplit CMS 3.0 - Local File Inclusion / Arbitrary File Upload
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-13
|
|
SPIP 2.x - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
anonymous
|
|
2015-06-26
|
|
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting
|
1 |
WEB
|
Suraj Krishnaswami
|
|
2015-06-26
|
|
Thycotic Secret Server 8.8.000004 - Persistent Cross-Site Scripting
|
2 |
WEB
|
Marco Delai
|
|
2015-06-26
|
|
Koha 3.20.1 - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
|
2 |
WEB
|
Raschin Tavakoli_ Bernhard Garn_ Peter Aufner & Di
|
|
2015-06-26
|
|
Koha 3.20.1 - Directory Traversal
|
2 |
WEB
|
Raschin Tavakoli_ Bernhard Garn_ Peter Aufner & Di
|
|
2015-06-26
|
|
Koha 3.20.1 - Multiple SQL Injections
|
2 |
WEB
|
Raschin Tavakoli_ Bernhard Garn_ Peter Aufner & Di
|
|
2012-06-12
|
|
Joomla! Component Easy Flash Uploader - 'helper.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-13
|
|
Joomla! Component mod_jfancy - 'script.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-13
|
|
Joomla! Component IDoEditor - 'image.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-12
|
|
Joomla! Component DentroVideo 1.2 - 'upload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-12
|
|
Joomla! Component mod_artuploader - 'upload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-12
|
|
Joomla! Component com_simpleswfupload - 'uploadhandler.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-13
|
|
WordPress Plugin HD FLV Player - 'uploadVideo.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-12
|
|
XOOPS Cube PROJECT FileManager - 'xupload.php' Arbitrary File Upload
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-11
|
|
Joomla! Component Joomsport - SQL Injection / Arbitrary File Upload
|
3 |
WEB
|
KedAns-Dz
|
|
2012-06-10
|
|
Joomla! Component com_alphacontent - 'limitstart' SQL Injection
|
2 |
WEB
|
xDarkSton3x
|
|
2012-06-12
|
|
WordPress Plugin Contus Video Gallery - 'upload1.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-11
|
|
BMC Identity Management - Cross-Site Request Forgery
|
2 |
WEB
|
Travis Lee
|
|
2012-06-03
|
|
WordPress Plugin Picturesurf Gallery - 'upload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
WordPress Plugin FCChat Widget 2.2.x - 'upload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2015-06-24
|
|
Vesta Control Panel 0.9.8 - OS Command Injection
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2015-06-24
|
|
Joomla! Component com_simpleimageupload - Arbitrary File Upload
|
2 |
WEB
|
CrashBandicot
|
|
2015-06-24
|
|
GeniXCMS 0.0.3 - 'register.php' SQL Injection
|
2 |
WEB
|
cfreer
|
|
2015-06-24
|
|
WordPress Plugin Huge-IT Slider 2.7.5 - Multiple Vulnerabilities
|
2 |
WEB
|
i0akiN SEC-LABORATORY
|
|
2015-06-24
|
|
GeniXCMS 0.0.3 - Cross-Site Scripting
|
2 |
WEB
|
hyp3rlinx
|
|
2012-06-07
|
|
WordPress Plugin VideoWhisper Video Presentation 3.17 - 'vw_upload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-07
|
|
WordPress Plugin Email NewsLetter 8.0 - 'option' Information Disclosure
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
MyBB 1.6.8 - 'member.php' SQL Injection
|
1 |
WEB
|
MR.XpR
|
|
2012-06-05
|
|
Bigware Shop 2.1x - 'main_bigware_54.php' SQL Injection
|
2 |
WEB
|
rwenzel
|
|
2015-06-05
|
|
WordPress Plugin Nmedia WordPress Member Conversation 1.35.0 - 'doupload.php' Arbitrary File Upload
|
2 |
WEB
|
Sammy FORGIT
|
|
2012-06-03
|
|
Ignite Solutions CMS - 'car-details.php' SQL Injection
|
2 |
WEB
|
Am!r
|
|
2012-06-03
|
|
AdaptCMS 2.0.2 TinyURL Plugin - 'admin.php' Multiple SQL Injections
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-03
|
|
AdaptCMS 2.0.2 TinyURL Plugin - 'index.php?id' SQL Injection
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-03
|
|
TinyCMS 1.3 - '/admin/admin.php?do' Traversal Local File Inclusion
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-03
|
|
TinyCMS 1.3 - 'index.php?page' Traversal Local File Inclusion
|
2 |
WEB
|
KedAns-Dz
|
|
2012-06-03
|
|
TinyCMS 1.3 - Arbitrary File Upload / Cross-Site Request Forgery
|
1 |
WEB
|
KedAns-Dz
|
|
2012-06-01
|
|
VoipNow Professional 2.5.3 - 'nsextt' Cross-Site Scripting
|
1 |
WEB
|
Aboud-el
|
|
2012-05-31
|
|
WHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting
|
1 |
WEB
|
Shadman Tanjim
|
|
2012-05-31
|
|
WHMCompleteSolution (WHMCS) 5.0 - Cross-Site Request Forgery (Multiple Application Function)
|
1 |
WEB
|
Shadman Tanjim
|
|
2012-05-29
|
|
WHMCompleteSolution (WHMCS) - 'boleto_bb.php' SQL Injection
|
1 |
WEB
|
dex
|
|
2012-05-28
|
|
Yamamah Photo Gallery 1.1 - Database Information Disclosure
|
1 |
WEB
|
L3b-r1'z
|
|
2012-05-27
|
|
Nilehoster Topics Viewer 2.3 - Multiple SQL Injections / Local File Inclusion
|
1 |
WEB
|
n4ss1m
|
|
2012-05-26
|
|
Small-Cms - 'hostname' Remote PHP Code Injection
|
1 |
WEB
|
L3b-r1'z
|
|
2015-06-19
|
|
Lively Cart - SQL Injection
|
1 |
WEB
|
Manish Tanwar
|
|
2015-06-19
|
|
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete
|
1 |
WEB
|
Vulnerability-Lab
|
|
2015-06-19
|
|
ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities
|
1 |
WEB
|
Vulnerability-Lab
|
|
2012-05-25
|
|
DynPage 1.0 - 'ckfinder' Multiple Arbitrary File Upload Vulnerabilities
|
0 |
WEB
|
KedAns-Dz
|
|
2015-06-19
|
|
Tango FTP 1.0 (Build 136) - Activex HeapSpray
|
1 |
WEB
|
metacom
|
|
2015-06-19
|
|
Tango DropBox 3.1.5 + PRO - Activex HeapSpray
|
1 |
WEB
|
metacom
|
|
2012-05-26
|
|
phpList 2.10.9 - 'Sajax.php' PHP Code Injection
|
1 |
WEB
|
L3b-r1'z
|
|
2012-05-27
|
|
AzDGDatingMedium 1.9.3 - Multiple Remote Vulnerabilities
|
1 |
WEB
|
AkaStep
|
|
2012-05-24
|
|
phpCollab 2.5 - Direct Request Multiple Protected Page Access
|
1 |
WEB
|
team ' & 1=1--
|
|
2012-05-24
|
|
PHPCollab 2.5 - 'uploadfile.php' Crafted Request Arbitrary Non-PHP File Upload
|
1 |
WEB
|
team ' & 1=1--
|
|
2012-05-23
|
|
Yellow Duck Framework 2.0 Beta1 - Local File Disclosure
|
1 |
WEB
|
L3b-r1'z
|
|
2012-05-23
|
|
pragmaMx 1.12.1 - '/includes/wysiwyg/spaw/editor/plugins/imgpopup/img_popup.php?img_url' Cross-Site
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2012-05-23
|
|
pragmaMx 1.12.1 - 'modules.php' URI Cross-Site Scripting
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2012-05-23
|
|
Pligg CMS 1.x - 'module.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2012-05-23
|
|
Ajaxmint Gallery 1.0 - Local File Inclusion
|
1 |
WEB
|
AkaStep
|
|
2012-05-23
|
|
phpCollab 2.5 - Database Backup Information Disclosure
|
1 |
WEB
|
team ' & 1=1--
|
|
2012-05-23
|
|
Ruubikcms 1.1.x - Cross-Site Scripting / Information Disclosure / Directory Traversal
|
1 |
WEB
|
AkaStep
|
