|
2011-10-17
|
|
asgbookPHP 1.9 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
indoushka
|
|
2011-10-14
|
|
Xenon - 'id' Multiple SQL Injections
|
3 |
WEB
|
m3rciL3Ss
|
|
2011-10-13
|
|
WordPress Plugin Pretty Link 1.4.56 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
High-Tech Bridge SA
|
|
2015-03-02
|
|
vBulletin vBSEO 4.x - 'visitormessage.php' Remote Code Injection
|
4 |
WEB
|
Net.Edit0r
|
|
2015-02-28
|
|
GoAutoDial CE 2.0 - Arbitrary File Upload
|
4 |
WEB
|
R-73eN
|
|
2015-03-02
|
|
WordPress Plugin Calculated Fields Form 1.0.10 - SQL Injection
|
3 |
WEB
|
Ibrahim Raafat
|
|
2011-10-12
|
|
BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
High-Tech Bridge SA
|
|
2011-10-12
|
|
Joomla! Component com_sgicatalog 1.0 - 'id' SQL Injection
|
3 |
WEB
|
BHG Security Center
|
|
2011-10-11
|
|
SilverStripe CMS 2.4.5 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Stefan Schurtz
|
|
2011-10-02
|
|
ContaoCMS 2.10.1 - Cross-Site Scripting
|
2 |
WEB
|
Stefan Schurtz
|
|
2011-10-10
|
|
6KBBS 8.0 build 20101201 - Cross-Site Scripting / Information Disclosure
|
3 |
WEB
|
labs insight
|
|
2011-10-11
|
|
2Moons 1.4 - Multiple Remote File Inclusions
|
3 |
WEB
|
indoushka
|
|
2011-10-11
|
|
Joomla! Component com_shop - 'id' SQL Injection
|
4 |
WEB
|
CoBRa_21
|
|
2011-10-11
|
|
Joomla! Component com_br - 'state_id' SQL Injection
|
3 |
WEB
|
CoBRa_21
|
|
2011-10-11
|
|
Joomla! Component com_tree - 'key' SQL Injection
|
5 |
WEB
|
CoBRa_21
|
|
2011-10-10
|
|
Jaws 0.8.14 - Multiple Remote File Inclusions
|
5 |
WEB
|
indoushka
|
|
2011-10-09
|
|
Joomla! Component com_expedition - 'id' SQL Injection
|
4 |
WEB
|
BHG Security Center
|
|
2011-10-07
|
|
BuzzyWall 1.3.2 - 'resolute.php' Information Disclosure
|
4 |
WEB
|
cr4wl3r
|
|
2011-10-06
|
|
Active CMS 1.2 - 'mod' Cross-Site Scripting
|
4 |
WEB
|
Stefan Schurtz
|
|
2011-10-15
|
|
vTiger CRM 5.2 - 'onlyforuser' SQL Injection
|
3 |
WEB
|
Aung Khant
|
|
2011-10-04
|
|
vTiger CRM 5.2.1 - 'PHPrint.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Aung Khant
|
|
2011-10-04
|
|
vTiger CRM 5.2.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities (1)
|
3 |
WEB
|
Aung Khant
|
|
2015-03-01
|
|
Seagate Business NAS 2014.00319 - Remote Code Execution
|
4 |
WEB
|
OJ Reeves
|
|
2011-10-03
|
|
Phorum 5.2.18 - '/admin/index.php' Cross-Site Scripting
|
3 |
WEB
|
Stefan Schurtz
|
|
2011-10-03
|
|
Netvolution 2.5.8 - 'referer' Header SQL Injection
|
4 |
WEB
|
Patroklos Argyroudis
|
|
2011-10-01
|
|
ezCourses - 'admin.asp' Security Bypass
|
4 |
WEB
|
J.O
|
|
2011-10-02
|
|
SonicWALL Viewpoint 6.0 - 'scheduleID' SQL Injection
|
5 |
WEB
|
Rem0ve
|
|
2011-09-24
|
|
WordPress Theme Trending 0.1 - 'cpage' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
ProjectForum 7.0.1 3038 - 'more' Object HTML Injection
|
4 |
WEB
|
Paul Davis
|
|
2011-09-30
|
|
WordPress Plugin WP Bannerize 2.8.7 - 'ajax_sorter.php' SQL Injection
|
4 |
WEB
|
Miroslav Stampar
|
|
2011-09-28
|
|
A2CMS - 'index.php' Local File Disclosure
|
4 |
WEB
|
St493r
|
|
2011-09-30
|
|
WordPress Theme RedLine 1.65 - 's' Cross-Site Scripting
|
3 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
WordPress Theme Black-LetterHead 1.5 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-30
|
|
WordPress Theme Morning Coffee 3.5 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Pixiv Custom Theme 2.1.5 - 'cpage' Cross-Site Scripting
|
3 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Web Minimalist 1.1 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Cover WP 1.6.5 - 's' Cross-Site Scripting
|
4 |
WEB
|
jabdah
|
|
2011-09-29
|
|
WordPress Theme EvoLve 1.2.5 - 's' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Elegant Grunge 1.0.3 - 's' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme F8 Lite 4.2.1 - 's' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-24
|
|
WordPress Theme Hybrid 0.9 - 'cpage' Cross-Site Scripting
|
4 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
WordPress Theme Atahualpa 3.6.7 - 's' Cross-Site Scripting
|
5 |
WEB
|
SiteWatch
|
|
2011-09-29
|
|
Bitweaver 2.8.1 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Stefan Schurtz
|
|
2011-09-29
|
|
Joomla! < 1.7.0 - Multiple Cross-Site Scripting Vulnerabilities
|
5 |
WEB
|
Aung Khant
|
|
2011-09-28
|
|
Traq 2.2 - Multiple SQL Injections / Cross-Site Scripting
|
4 |
WEB
|
High-Tech Bridge SA
|
|
2011-09-27
|
|
Vanira CMS - 'vtpidshow' SQL Injection
|
3 |
WEB
|
kurdish hackers team
|
|
2011-09-27
|
|
Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
MustLive
|
|
2011-09-26
|
|
Joomla! Component Biitatemplateshop - 'groups' SQL Injection
|
4 |
WEB
|
BHG Security Group
|
|
2011-09-26
|
|
S9Y Serendipity Freetag-plugin 3.23 - 'serendipity[tagview]' Cross-Site Scripting
|
4 |
WEB
|
Stefan Schurtz
|
|
2011-09-26
|
|
AdaptCMS 2.0.1 - Cross-Site Scripting / Information Disclosure
|
5 |
WEB
|
Stefan Schurtz
|
|
2011-09-26
|
|
WordPress Plugin BuddyPress 1.2.10 / WordPress Theme DEV Blogs Mu 1.2.6 (WordPress 3.1.4) - Regular
|
4 |
WEB
|
knull
|
|
2011-09-24
|
|
IceWarp Mail Server 10.3.2 server/webmail.php Soap Message Parsing - Arbitrary File Disclosure
|
4 |
WEB
|
David Kirkpatrick
|
|
2011-09-22
|
|
AWStats 6.95/7.0 - 'awredir.pl' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
MustLive
|
|
2011-09-22
|
|
TWiki 5.0.2 SlideShowPlugin - Slide Show Pages URI Cross-Site Scripting
|
3 |
WEB
|
Mesut Timur
|
|
2011-09-22
|
|
TWiki 5.0.2 - '/bin/view/Main/Jump?newtopic' Cross-Site Scripting
|
3 |
WEB
|
Mesut Timur
|
|
2015-02-23
|
|
WordPress Plugin Easy Social Icons 1.2.2 - Cross-Site Request Forgery
|
3 |
WEB
|
Eric Flokstra
|
|
2015-02-23
|
|
phpBugTracker 1.6.0 - Multiple Vulnerabilities
|
3 |
WEB
|
Steffen Rösemann
|
|
2015-02-23
|
|
Zeuscart 4.0 - Multiple Vulnerabilities
|
3 |
WEB
|
Steffen Rösemann
|
|
2015-02-23
|
|
Zabbix 2.0.5 - Cleartext ldap_bind_Password Password Disclosure (Metasploit)
|
3 |
WEB
|
Pablo González
|
|
2015-02-23
|
|
Clipbucket 2.7 RC3 0.9 - Blind SQL Injection
|
3 |
WEB
|
CWH Underground
|
|
2015-02-23
|
|
WeBid 1.1.1 - Unrestricted Arbitrary File Upload
|
3 |
WEB
|
CWH Underground
|
|
2015-02-23
|
|
Beehive Forum 1.4.4 - Persistent Cross-Site Scripting
|
3 |
WEB
|
Halil Dalabasmaz
|
|
2011-09-22
|
|
Zyncro 3.0.1.20 - Social Network Message Menu SQL Injection
|
3 |
WEB
|
Ferran Pichel Llaquet
|
|
2011-09-22
|
|
Zyncro 3.0.1.20 - Multiple HTML Injection Vulnerabilities
|
3 |
WEB
|
Ferran Pichel Llaquet
|
|
2011-09-21
|
|
OneCMS 2.6.4 - Multiple SQL Injections
|
3 |
WEB
|
kurdish hackers team
|
|
2011-09-18
|
|
phpRS 2.8.1 - Multiple SQL Injections / Cross-Site Scripting
|
3 |
WEB
|
iM4n
|
|
2011-09-06
|
|
Free Help Desk 1.1b - Multiple Input Validation Vulnerabilities
|
3 |
WEB
|
High-Tech Bridge SA
|
|
2011-09-21
|
|
i-Gallery 3.4 - 'd' Cross-Site Scripting
|
3 |
WEB
|
Kurd-Team
|
|
2011-09-19
|
|
Card sharj 1.0 - Multiple SQL Injections
|
3 |
WEB
|
Net.Edit0r
|
|
2011-09-19
|
|
net4visions (Multiple Products) - 'dir' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Gjoko Krstic
|
|
2011-09-19
|
|
Aspgwy Access 1.0 - 'matchword' Cross-Site Scripting
|
2 |
WEB
|
kurdish hackers team
|
|
2011-09-19
|
|
Toko Lite CMS 1.5.2 - HTTP Response Splitting / Cross-Site Scripting
|
2 |
WEB
|
Gjoko Krstic
|
|
2011-09-17
|
|
Ay Computer (Multiple Products) - Multiple SQL Injections
|
3 |
WEB
|
m3rciL3Ss
|
|
2011-09-18
|
|
ASP Basit Haber Script 1.0 - 'id' SQL Injection
|
3 |
WEB
|
m3rciL3Ss
|
|
2011-09-16
|
|
PunBB 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Piotr Duszynski
|
|
2011-09-15
|
|
StarDevelop LiveHelp 2.0 - 'index.php' Local File Inclusion
|
3 |
WEB
|
KedAns-Dz
|
|
2011-09-14
|
|
WordPress Plugin Auctions 1.8.8 - 'wpa_id' SQL Injection
|
3 |
WEB
|
sherl0ck_
|
|
2011-09-14
|
|
Microsoft SharePoint 2007/2010 - 'Source' Multiple Open Redirections
|
3 |
WEB
|
Irene Abezgauz
|
|
2011-09-12
|
|
Orion Network Performance Monitor 10.1.3 - 'CustomChart.aspx' Cross-Site Scripting
|
3 |
WEB
|
Gustavo Roberto
|
|
2015-02-20
|
|
Pentaho < 4.5.0 - User Console XML Injection
|
3 |
WEB
|
K.d Long
|
|
2011-09-12
|
|
Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Stefan Schurtz
|
|
2011-09-08
|
|
Pluck CMS 4.7 - Multiple Local File Inclusion / File Disclosure Vulnerabilities
|
3 |
WEB
|
Bl4k3
|
|
2015-02-19
|
|
Piwigo 2.7.3 - Multiple Vulnerabilities
|
3 |
WEB
|
Steffen Rösemann
|
|
2015-02-19
|
|
CrushFTP 7.2.0 - Multiple Vulnerabilities
|
3 |
WEB
|
Rehan Ahmed
|
|
2015-02-19
|
|
Piwigo 2.7.3 - SQL Injection
|
3 |
WEB
|
Sven Schleier
|
|
2011-09-08
|
|
In-link 2.3.4/5.1.3 RC1 - 'cat' SQL Injection
|
2 |
WEB
|
SubhashDasyam
|
|
2011-09-08
|
|
SkaDate - 'blogs.php' Cross-Site Scripting
|
2 |
WEB
|
sonyy
|
|
2011-09-05
|
|
Zikula Application Framework 1.2.7/1.3 - 'themename' Cross-Site Scripting
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2011-09-06
|
|
GeoClassifieds Lite 2.0.x - Multiple Cross-Site Scripting / SQL Injections
|
2 |
WEB
|
Yassin Aboukir
|
|
2011-09-06
|
|
Kisanji - 'gr' Cross-Site Scripting
|
2 |
WEB
|
Bl4ck.Viper
|
|
2011-09-05
|
|
EasyGallery 5 - 'index.php' Multiple SQL Injections
|
2 |
WEB
|
Eyup CELIK
|
|
2011-09-05
|
|
Advanced Image Hosting Script 2.3 - 'report.php' Cross-Site Scripting
|
2 |
WEB
|
R3d-D3V!L
|
|
2015-02-18
|
|
WordPress Plugin Duplicator 0.5.8 - Privilege Escalation
|
2 |
WEB
|
Kacper Szurek
|
|
2011-09-02
|
|
ACal 2.2.6 - 'calendar.php' Cross-Site Scripting
|
2 |
WEB
|
T0xic
|
|
2011-09-02
|
|
Mambo Component N-Myndir - SQL Injection
|
2 |
WEB
|
CoBRa_21
|
|
2011-09-02
|
|
Mambo Component N-Frettir - SQL Injection
|
2 |
WEB
|
CoBRa_21
|
|
2011-09-02
|
|
KaiBB 2.0.1 - SQL Injection / Arbitrary File Upload
|
2 |
WEB
|
KedAns-Dz
|
|
2011-09-02
|
|
Mambo Component N-Press - SQL Injection
|
2 |
WEB
|
CoBRa_21
|
|
2015-02-18
|
|
D-Link DSL-2640B ADSL Router - 'ddnsmngr' Remote DNS Change
|
2 |
WEB
|
Todor Donev
|
|
2011-09-02
|
|
Mambo Component Ahsshop - SQL Injection
|
2 |
WEB
|
CoBRa_21
|
|
2011-09-02
|
|
Mambo Component N-Gallery - SQL Injection
|
2 |
WEB
|
CoBRa_21
|
|
2015-02-17
|
|
GuppY CMS 5.0.9 < 5.00.10 - Multiple Cross-Site Request Forgery Vulnerabilities
|
2 |
WEB
|
Brandon Murphy
|
|
2015-02-17
|
|
Guppy CMS 5.0.9/5.00.10 - Authentication Bypass/Change Email
|
2 |
WEB
|
Brandon Murphy
|
|
2011-09-02
|
|
Mambo Component N-Skyrslur - Cross-Site Scripting
|
2 |
WEB
|
CoBRa_21
|
|
2011-08-31
|
|
Web Professional - 'default.php' SQL Injection
|
2 |
WEB
|
The_Exploited
|
|
2011-08-31
|
|
S9Y Serendipity 1.5.1 - 'research_display.php' SQL Injection
|
2 |
WEB
|
The_Exploited
|
|
2011-08-31
|
|
TinyWebGallery 1.8.4 - Local File Inclusion / SQL Injection
|
2 |
WEB
|
KedAns-Dz
|
|
2011-08-30
|
|
CS-Cart 2.2.1 - 'products.php' SQL Injection
|
3 |
WEB
|
Net.Edit0r
|
|
2011-08-30
|
|
IBM Open Admin Tool 2.71 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Sumit Kumar Soni
|
|
2011-08-29
|
|
ClickCMS - Denial of Service / CAPTCHA Bypass
|
3 |
WEB
|
MustLive
|
|
2015-02-16
|
|
eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities
|
3 |
WEB
|
Brandon Perry
|
|
2015-02-16
|
|
WordPress Plugin Fancybox 3.0.2 - Persistent Cross-Site Scripting
|
3 |
WEB
|
NULLpOint7r
|
|
2015-02-16
|
|
WordPress Plugin WonderPlugin Audio Player 2.0 - Blind SQL Injection / Cross-Site Scripting
|
3 |
WEB
|
Kacper Szurek
|
|
2011-08-27
|
|
phpWebSite 1.7.1 - 'mod.php' SQL Injection
|
3 |
WEB
|
Ehsan_Hp200
|
|
2011-08-26
|
|
Mambo 4.6.5 - 'index.php' Cross-Site Request Forgery
|
3 |
WEB
|
Caddy-Dz
|
|
2011-08-25
|
|
Simple Machines Forum (SMF) 1.1.14/2.0 - '[img]' BBCode Tag Cross-Site Request Forgery
|
3 |
WEB
|
Christian Yerena
|
|
2011-08-25
|
|
Zazavi 1.2.1 - '/FileManager/Controller.php' Arbitrary File Upload
|
3 |
WEB
|
KedAns-Dz
|
|
2011-08-24
|
|
VicBlog - 'tag' SQL Injection
|
3 |
WEB
|
Eyup CELIK
|
|
2011-08-24
|
|
Tourismscripts Hotel Portal - 'hotel_city' HTML Injection
|
4 |
WEB
|
Eyup CELIK
|
|
2011-08-24
|
|
CommodityRentals Real Estate Script - 'txtsearch' HTML Injection
|
2 |
WEB
|
Eyup CELIK
|
|
2011-08-23
|
|
Open Classifieds 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Yassin Aboukir
|
|
2011-08-22
|
|
Concrete 5.4.1 1 - 'rcID' Cross-Site Scripting
|
3 |
WEB
|
Aung Khant
|
|
2011-08-22
|
|
TotalShopUK 1.7.2 - 'index.php' SQL Injection
|
2 |
WEB
|
Eyup CELIK
|
|
2011-08-22
|
|
Pandora FMS 3.x - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
mehdi boukazoula
|
|
2011-08-21
|
|
OneFileCMS 1.1.1 - 'onefilecms.php' Cross-Site Scripting
|
3 |
WEB
|
mr.pr0n
|
