milw0rm - ajann

[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]

Author:

ajann

[ exploits/shellcode ]

-::DATE	-::DESCRIPTION	-::HITS					-::AUTHOR
2009-01-15	DMXReady Billboard Manager <= 1.1 Remote File Upload Vulnerability	4177	R		D		ajann
2009-01-14	DMXReady Blog Manager <= 1.1 Remote File Delete Vulnerability	1630	R		D		ajann
2009-01-14	DMXReady Catalog Manager <= 1.1 Remote Contents Change Vuln	1410	R		D		ajann
2009-01-14	DMXReady Classified Listings Manager <= 1.1 SQL Injection Vulnerability	1826	R		D		ajann
2009-01-14	DMXReady Contact Us Manager <= 1.1 Remote Contents Change Vuln	2426	R		D		ajann
2009-01-14	DMXReady Document Library Manager <= 1.1 Contents Change Vuln	2262	R		D		ajann
2009-01-14	DMXReady Faqs Manager <= 1.1 Remote Contents Change Vulnerability	2407	R		D		ajann
2009-01-14	DMXReady Job Listing <= 1.1 Remote Contents Change Vulnerability	2436	R		D		ajann
2009-01-14	DMXReady Links Manager <= 1.1 Remote Contents Change Vulnerability	2350	R		D		ajann
2009-01-14	DMXReady Member Directory Manager <= 1.1 SQL Injection Vulnerability	3114	R		D		ajann
2009-01-14	DMXReady Members Area Manager <= 1.2 SQL Injection Vulnerability	3292	R		D		ajann
2009-01-14	DMXReady PayPal Store Manager <= 1.1 Contents Change Vulnerability	3233	R		D		ajann
2009-01-14	DMXReady Photo Gallery Manager <= 1.1 Contents Change Vulnerability	2518	R		D		ajann
2009-01-14	DMXReady Registration Manager <= 1.1 Contents Change Vulnerability	2646	R		D		ajann
2009-01-14	DMXReady Secure Document Library <= 1.1 Remote SQL Injection Vuln	5584	R		D		ajann
2009-01-14	DMXReady SDK <= 1.1 Remote File Download Vulnerability	3134	R		D		ajann
2009-01-13	DMXReady News Manager <= 1.1 Arbitrary Category Change Vuln	2539	R		D		ajann
2009-01-13	DMXReady Account List Manager <= 1.1 Contents Change Vulnerability	2736	R		D		ajann
2009-01-12	Comersus Shopping Cart <= v6 Remote User Pass Exploit	5186	R		D		ajann
2007-08-23	Joomla Component NeoRecruit <= 1.4 (id) SQL Injection Vulnerability	8434	R		D		ajann
2007-08-23	Mambo Component RemoSitory (cat) Remote SQL Injection Vulnerability	11426	R		D		ajann
2007-08-23	Joomla Component RSfiles <= 1.0.2 (path) File Download Vulnerability	8876	R		D		ajann
2007-08-23	Joomla Component Nice Talk <= 0.9.3 (tagid) SQL Injection Vulnerability	8767	R		D		ajann
2007-08-23	Joomla Component EventList <= 0.8 (did) SQL Injection Vulnerability	12329	R		D		ajann
2007-08-23	Joomla Component BibTeX <= 1.3 Remote Blind SQL Injection Exploit	11848	R		D		ajann
2007-07-19	Joomla Component Pony Gallery <= 1.5 SQL Injection Vulnerability	14494	R		D		ajann
2007-07-18	Vivvo CMS <= 3.4 (index.php) Remote BLIND SQL Injection Exploit	6349	R		D		ajann
2007-05-15	XOOPS Module resmanager <= 1.21 BLIND SQL Injection Exploit	5417	R		D		ajann
2007-05-15	XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit	5112	R		D		ajann
2007-05-15	XOOPS Module MyConference 1.0 (index.php) SQL Injection Exploit	5916	R		D		ajann
2007-04-05	XOOPS Module WF-Links <= 1.03 (cid) Remote SQL Injection Exploit	5851	R		D		ajann
2007-04-05	XOOPS Module Jobs <= 2.4 (cid) Remote SQL Injection Exploit	6217	R		D		ajann
2007-04-04	XOOPS Module WF-Snippets <= 1.02 (c) BLIND SQL Injection Exploit	5720	R		D		ajann
2007-04-04	XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit	6120	R		D		ajann
2007-04-03	XOOPS Module PopnupBlog <= 2.52 (postid) BLIND SQL Injection Exploit	5863	R		D		ajann
2007-04-02	XOOPS Module WF-Section <= 1.01 (articleid) SQL Injection Exploit	5008	R		D		ajann
2007-04-02	XOOPS Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit	6031	R		D		ajann
2007-04-02	XOOPS Module Zmagazine 1.0 (print.php) Remote SQL Injection Exploit	5641	R		D		ajann
2007-04-01	XOOPS Module eCal <= 2.24 (display.php) Remote SQL Injection Exploit	4554	R		D		ajann
2007-04-01	XOOPS Module Tiny Event <= 1.01 (id) Remote SQL Injection Exploit	4201	R		D		ajann
2007-04-01	XOOPS Module Kshop <= 1.17 (id) Remote SQL Injection Exploit	5245	R		D		ajann
2007-04-01	XOOPS Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit	4771	R		D		ajann
2007-04-01	XOOPS Module debaser <= 0.92 (genre.php) BLIND SQL Injection Exploit	5474	R		D		ajann
2007-04-01	XOOPS Module myAlbum-P <= 2.0 (cid) Remote SQL Injection Exploit	5987	R		D		ajann
2007-04-01	XOOPS Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit	5453	R		D		ajann
2007-03-31	XOOPS Module Lykos Reviews 1.00 (index.php) SQL Injection Exploit	5012	R		D		ajann
2007-03-31	XOOPS Module Library (viewcat.php) Remote SQL Injection Exploit	5217	R		D		ajann
2007-03-31	XOOPS Module Core (viewcat.php) Remote SQL Injection Exploit	5844	R		D		ajann
2007-03-31	XOOPS Module Tutoriais (viewcat.php) Remote SQL Injection Exploit	6137	R		D		ajann
2007-03-30	XOOPS Module Repository (viewcat.php) Remote SQL Injection Exploit	4821	R		D		ajann
2007-03-29	XOOPS Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit	5677	R		D		ajann
2007-03-28	XOOPS module Articles <= 1.03 (index.php cat_id) SQL Injection Exploit	5831	R		D		ajann
2007-03-28	XOOPS Module Friendfinder <= 3.3 (view.php id) SQL Injection Exploit	5233	R		D		ajann
2007-03-27	Joomla Component D4JeZine <= 2.8 Remote BLIND SQL Injection Exploit	8772	R		D		ajann
2007-03-24	Joomla Component Car Manager <= 1.1 Remote SQL Injection Exploit	8303	R		D		ajann
2007-03-24	Joomla Component RWCards <= 2.4.3 Remote SQL Injection Exploit	10732	R		D		ajann
2007-03-23	Active Newsletter <= 4.3 (ViewNewspapers.asp) SQL Injection Exploit	4799	R		D		ajann
2007-03-23	eWebquiz <= V.8 (eWebQuiz.asp) Remote SQL Injection Exploit	5226	R		D		ajann
2007-03-19	ScriptMagix Lyrics <= 2.0 (index.php recid) SQL Injection Exploit	4509	R		D		ajann
2007-03-18	ScriptMagix FAQ Builder <= 2.0 (index.php) Remote SQL Injection Exploit	3935	R		D		ajann
2007-03-18	ScriptMagix Jokes <= 2.0 (index.php catid) Remote SQL Injection Exploit	3723	R		D		ajann
2007-03-18	ScriptMagix Recipes <= 2.0 (index.php catid) SQL Injection Exploit	3905	R		D		ajann
2007-03-18	ScriptMagix Photo Rating <= 2.0 Remote SQL Injection Exploit	3832	R		D		ajann
2007-03-11	JobSitePro 1.0 (search.php) Remote SQL Injection Exploit	5411	R		D		ajann
2007-03-11	Top Auction 1.0 (viewcat.php) Remote SQL Injection Exploit	4368	R		D		ajann
2007-03-11	SonicMailer Pro <= 3.2.3 (index.php) Remote SQL Injection Exploit	5084	R		D		ajann
2007-03-05	Links Management Application 1.0 (lcnt) Remote SQL Injection Exploit	5126	R		D		ajann
2007-03-04	AJ Auction Pro All Versions (subcat.php) Remote SQL Injection Exploit	5395	R		D		ajann
2007-03-04	AJ Dating 1.0 (view_profile.php) Remote SQL Injection Exploit	4421	R		D		ajann
2007-03-04	AJ Classifieds 1.0 (postingdetails.php) Remote SQL Injection Exploit	4006	R		D		ajann
2007-03-04	AJ Forum 1.0 (topic_title.php) Remote SQL Injection Exploit	4937	R		D		ajann
2007-02-19	PHP-Nuke Module Emporium <= 2.3.0 Remote SQL Injection Exploit	8579	R		D		ajann
2007-02-18	S-Gastebuch <= 1.5.3 (gb_pfad) Remote File Include Exploit	8024	R		D		ajann
2007-02-16	VS-News-System <= 1.2.1 (newsordner) Remote File Include Exploit	5985	R		D		ajann
2007-02-16	VS-Link-Partner <= 2.1 (script_pfad) Remote File Include Exploit	5420	R		D		ajann
2007-02-13	AT Contenator <= v1.0 (Root_To_Script) Remote File Include Exploit	6406	R		D		ajann
2007-02-13	Xaran Cms <= 2.0 (xarancms_haupt.php) SQL Injection Exploit	3949	R		D		ajann
2007-02-13	phpCC <= 4.2 beta (nickpage.php npid) Remote SQL Injection Exploit	4756	R		D		ajann
2007-02-08	Site-Assistant <= v0990 (paths[version]) Remote File Include Exploit	7579	R		D		ajann
2007-02-08	LightRO CMS 1.0 (index.php projectid) Remote SQL Injection Exploit	6349	R		D		ajann
2007-02-08	LushiNews <= 1.01 (comments.php) Remote SQL Injection Exploit	5086	R		D		ajann
2007-02-08	LushiWarPlaner 1.0 (register.php) Remote SQL Injection Exploit	5074	R		D		ajann
2007-02-06	LightRO CMS 1.0 (inhalt.php) Remote File Include Vulnerability	8095	R		D		ajann
2007-02-03	Photo Galerie Standard <= 1.1 (view.php) SQL Injection Vulnerability	6464	R		D		ajann
2007-02-02	dB Masters Curium CMS <= 1.03 (c_id) Remote SQL Injection Vulnerability	5114	R		D		ajann
2007-02-01	SIPS <= 0.3.1 (box.inc.php) Remote File Include Vulnerability	5553	R		D		ajann
2007-01-31	ExoPHPDesk <= 1.2.1 (faq.php) Remote SQL Injection Vulnerability	5994	R		D		ajann
2007-01-31	PHPMyRing <= 4.1.3b (fichier) Remote File Include Vulnerability	4674	R		D		ajann
2007-01-31	Extcalendar <= 2 (profile.php) Remote User Pass Change Exploit	4666	R		D		ajann
2007-01-30	Galeria Zdjec <= 3.0 (zd_numer.php) Local File Include Exploit	5490	R		D		ajann
2007-01-30	PHPFootball 1.6 (show.php) Remote Database Disclosure Vulnerability	5058	R		D		ajann
2007-01-30	CascadianFAQ <= 4.1 (index.php) Remote SQL Injection Vulnerability	4909	R		D		ajann
2007-01-28	xNews 1.3 (xNews.php) Remote SQL Injection Vulnerability	4739	R		D		ajann
2007-01-27	ACGVclick <= 0.2.0 (path) Remote File Include Vulnerability	5294	R		D		ajann
2007-01-27	ACGVannu <= 1.3 (index2.php) Remote User Pass Change Vulnerability	4815	R		D		ajann
2007-01-27	chernobiLe Portal 1.0 (default.asp) Remote SQL Injection Vulnerability	5326	R		D		ajann
2007-01-26	FdScript <= 1.3.2 (download.php) Remote File Disclosure Vulnerability	4200	R		D		ajann
2007-01-25	makit Newsposter Script v3 Remote SQL Injection Vulnerability	4858	R		D		ajann
2007-01-25	GPS CMS 1.2 (print.asp) Remote SQL Injection Vulnerability	5000	R		D		ajann
2007-01-25	Forum Livre 1.0 (SQL Injection / XSS) Multiple Remote Vulnerabilities	5389	R		D		ajann
2007-01-24	ASP EDGE <= 1.2b (user.asp) Remote SQL Injection Vulnerability	5529	R		D		ajann
2007-01-24	ASP NEWS <= v3 (news_detail.asp) Remote SQL Injection Vulnerability	5309	R		D		ajann
2007-01-13	DigiAffiliate <= 1.4 (visu_user.asp id) Remote SQL Injection Exploit	5590	R		D		ajann
2007-01-13	FdWeB Espace Membre <= 2.01 (path) Remote File Include Exploit	6372	R		D		ajann
2007-01-11	VP-ASP Shopping Cart 6.09 (SQL/XSS) Multiple Remote Vulnerabilities	10111	R		D		ajann
2007-01-09	MOTIONBORG Web Real Estate <= 2.1 SQL Injection Vulnerability	4929	R		D		ajann
2007-01-09	uniForum <= v4 (wbsearch.aspx) Remote SQL Injection Vulnerability	7590	R		D		ajann
2007-01-05	QUOTE&ORDERING SYSTEM 1.0 (ordernum) Multiple Vulnerabilities	4752	R		D		ajann
2007-01-04	DigiRez <= 3.4 (book_id) Remote SQL Injection Exploit	4881	R		D		ajann
2007-01-03	LocazoList <= 2.01a beta5 (subcatID) Remote SQL Injection Vulnerability	4771	R		D		ajann
2007-01-03	E-SMARTCART 1.0 (product_id) Remote SQL Injection Vulnerability	6004	R		D		ajann
2007-01-01	autoDealer <= 2.0 (detail.asp iPro) Remote SQL Injection Vulnerability	5480	R		D		ajann
2007-01-01	TaskTracker <= 1.5 (Customize.asp) Remote Add Administrator Exploit	5015	R		D		ajann
2006-12-30	Click N Print Coupons <= V2006.01 (key) Remote SQL Injection Exploit	4164	R		D		ajann
2006-12-28	aFAQ 1.0 (faqDsp.asp catcode) Remote SQL Injection Vulnerability	5298	R		D		ajann
2006-12-28	WYWO - InOut Board 1.0 Multiple Remote Vulnerabilities	4769	R		D		ajann
2006-12-28	ASPTicker 1.0 (admin.asp) Login ByPass SQL Injection Vulnerability	7801	R		D		ajann
2006-12-26	The Classified Ad System 1.0 (main) Remote SQL Injection Exploit	4729	R		D		ajann
2006-12-24	File Upload Manager <= 1.0.6 (detail.asp) Remote SQL Injection Exploit	6012	R		D		ajann
2006-12-24	Newsletter MX <= 1.0.2 (ID) Remote SQL Injection Exploit	4146	R		D		ajann
2006-12-24	Ananda Real Estate <= 3.4 (agent) Remote SQL Injection Vulnerability	4012	R		D		ajann
2006-12-23	Enthrallweb ePhotos 1.0 (subLevel2.asp) SQL Injection Vulnerability	3756	R		D		ajann
2006-12-23	Enthrallweb eHomes 1.0 Multiple (SQL/XSS) Vulnerabilities	3505	R		D		ajann
2006-12-23	Enthrallweb eJobs (newsdetail.asp) Remote SQL Injection Exploit	4274	R		D		ajann
2006-12-23	Enthrallweb eCars 1.0 (types.asp) Remote SQL Injection Vulnerability	3833	R		D		ajann
2006-12-23	Enthrallweb emates 1.0 (newsdetail.asp) Remote SQL Injection Exploit	3897	R		D		ajann
2006-12-23	Enthrallweb ePages (actualpic.asp) Remote SQL Injection Exploit	4083	R		D		ajann
2006-12-23	Dragon Business Directory <= 3.01.12 (ID) SQL Injection Vulnerability	3914	R		D		ajann
2006-12-23	Calendar MX BASIC <= 1.0.2 (ID) Remote SQL Injection Vulnerability	3578	R		D		ajann
2006-12-23	Enthrallweb eClassifieds 1.0 Remote User Pass Change Exploit	3642	R		D		ajann
2006-12-23	Enthrallweb eCoupons 1.0(myprofile.asp) Remote Pass Change Exploit	3996	R		D		ajann
2006-12-23	Enthrallweb eNews 1.0 Remote User Pass Change Exploit	4090	R		D		ajann
2006-12-19	cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability	4027	R		D		ajann
2006-12-16	mxBB Module WebLinks <= 2.05 Remote Inclusion Vulnerability	5221	R		D		ajann
2006-12-16	mxBB Module Charts <= 1.0.0 Remote File Inclusion Vulnerability	4900	R		D		ajann
2006-12-16	mxBB Module Meeting <= 1.1.2 Remote File Inclusion Vulnerability	4765	R		D		ajann
2006-12-09	SpotLight CRM 1.0 (login.asp) Remote SQL Injection Vulnerability	5119	R		D		ajann
2006-12-09	Request For Travel 1.0 (product) Remote SQL Injection Vulnerability	3972	R		D		ajann
2006-12-09	HR Assist <= 1.05 (vdateUsr.asp) Remote Login ByPass Vulnerability	4197	R		D		ajann
2006-12-01	Ultimate HelpDesk (XSS/Local File Disclosure) Vulnerabilities	4948	R		D		ajann
2006-11-30	LDU <= 8.x (polls.php) Remote SQL Injection Vulnerability	5341	R		D		ajann
2006-11-25	Liberum Help Desk <= 0.97.3 (details.asp) SQL Injection Vulnerability	5739	R		D		ajann
2006-11-25	ASP-Nuke Community <= 1.5 Cookie Privilege Escalation Vulnerability	5554	R		D		ajann
2006-11-23	JiRos FAQ Manager 1.0 (index.asp) Remote SQL Injection Vulnerability	4711	R		D		ajann
2006-11-22	fipsCMS <= 4.5 (index.asp) Remote SQL Injection Exploit	5326	R		D		ajann
2006-11-22	fipsGallery <= 1.5 (index1.asp) Remote SQL Injection Vulnerability	4539	R		D		ajann
2006-11-22	fipsForum <= 2.6 (default2.asp) Remote SQL Injection Vulnerability	4811	R		D		ajann
2006-11-19	ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability	7599	R		D		ajann
2006-11-14	ASP Smiley 1.0 (default.asp) Login ByPass SQL Injection Vulnerability	5991	R		D		ajann
2006-11-14	NetVIOS <= 2.0 (page.asp) Remote SQL Injection Vulnerability	4655	R		D		ajann
2006-11-13	Online Event Registration <= 2.0 (save_profile.asp) Pass Change Exploit	4049	R		D		ajann
2006-11-13	Estate Agent Manager <= v1.3 (default.asp) Login Bypass Vulnerability	5019	R		D		ajann
2006-11-13	Property Pro 1.0 (vir_Login.asp) Remote Login Bypass Vulnerability	4740	R		D		ajann
2006-11-12	Munch Pro 1.0 (switch.asp) Remote SQL Injection Exploit	4753	R		D		ajann
2006-11-12	ASPPortal <= 4.0.0 (default1.asp) Remote SQL Injection Exploit	6324	R		D		ajann
2006-11-12	UStore 1.0 (detail.asp) Remote SQL Injection Vulnerability	5136	R		D		ajann
2006-11-12	USupport 1.0 (detail.asp) Remote SQL Injection Vulnerability	4255	R		D		ajann
2006-11-12	UPublisher 1.0 (viewarticle.asp) Remote SQL Injection Vulnerability	4463	R		D		ajann
2006-11-11	NuCommunity 1.0 (cl_CatListing.asp) Remote SQL Injection Exploit	5634	R		D		ajann
2006-11-11	NuRems 1.0 (propertysdetails.asp) Remote SQL Injection Exploit	4842	R		D		ajann
2006-11-11	NuStore 1.0 (Products.asp) Remote SQL Injection Vulnerability	4932	R		D		ajann
2006-11-11	NuSchool 1.0 (CampusNewsDetails.asp) Remote SQL Injection Exploit	5059	R		D		ajann
2006-11-09	AspPired2Poll <= 1.0 (MoreInfo.asp) Remote SQL Injection Exploit	4920	R		D		ajann
2006-11-09	phpManta <= 1.0.2 (view-sourcecode.php) Local File Include Exploit	4286	R		D		ajann
2006-11-06	PHPGiggle 12.08 (CFG_PHPGIGGLE_ROOT) File Include Vulnerability	4794	R		D		ajann
2006-11-05	PHP Classifieds <= 7.1 (detail.php) Remote SQL Injection Exploit	5312	R		D		ajann
2006-10-30	Techno Dreams Announcement (key) Remote SQL Injection Vulnerability	4857	R		D		ajann
2006-10-30	Techno Dreams Guestbook 1.0 (key) Remote SQL Injection Vulnerability	5509	R		D		ajann
2006-10-30	E Annu 1.0 Login Bypass SQL Injection Exploit	4450	R		D		ajann
2006-10-29	PHPEasyData Pro 2.2.2 (index.php) Remote SQL Injection Exploit	5770	R		D		ajann
2006-10-29	Netref 4 (cat_for_aff.php) Source Code Disclosure Exploit	5011	R		D		ajann
2006-10-29	PHPMyRing <= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability	4535	R		D		ajann
2006-10-28	MiraksGalerie <= 2.62 (pcltar.lib.php) Remote File Include Exploit	4235	R		D		ajann
2006-10-27	Php League 0.82 (classement.php) Remote SQL Injection Exploit	4640	R		D		ajann
2006-10-25	Php League <= 0.81 (config.php) Remote File Include Exploit	5291	R		D		ajann
2006-10-24	Berty Forum <= 1.4 (index.php) Remote Blind SQL Injection Exploit	4633	R		D		ajann
2006-10-20	WGCC <= 0.5.6b (quiz.php) Remote SQL Injection Vulnerability	4632	R		D		ajann
2006-10-18	Active Bulletin Board <= 1.1b2 Remote User Pass Change Exploit	5176	R		D		ajann
2006-09-19	Digital WebShop <= 1.128 Multiple Remote File Include Vulnerabilities	5934	R		D		ajann
2006-09-19	BCWB <= 0.99 (root_path) Remote File Include Vulnerability	4686	R		D		ajann
2006-09-17	Q-Shop 3.5 (browse.asp) Remote SQL Injection Vulnerability	7974	R		D		ajann
2006-09-17	Techno Dreams FAQ Manager 1.0 Remote SQL Injection Vulnerability	4367	R		D		ajann
2006-09-17	Techno Dreams Articles & Papers 2.0 Remote SQL Injection Vulnerability	4748	R		D		ajann
2006-09-17	Charon Cart v3 (Review.asp) Remote SQL Injection Vulnerability	4705	R		D		ajann
2006-06-04	FunkBoard CF0.71 (profile.php) Remote User Pass Change Exploit	6610	R		D		ajann
2006-06-01	aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit	7630	R		D		ajann
2006-05-29	Speedy ASP Forum (profileupdate.asp) User Pass Change Exploit	5908	R		D		ajann
2006-05-27	PrideForum 1.0 (forum.asp) Remote SQL Injection Vulnerability	4916	R		D		ajann
2006-05-26	qjForum (member.asp) SQL Injection Vulnerability	5268	R		D		ajann
2006-05-26	Easy-Content Forums 1.0 Multiple SQL/XSS Vulnerabilities	5242	R		D		ajann

send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm