php

日期	标题	类别	作者
2010-09-27	Horde IMP Webmail 4.3.7 – ‘fetchmailprefs.php’ HTML Injection	webapps	Moritz Naumann
2010-09-27	MySITE – SQL Injection / Cross-Site Scripting	webapps	MustLive
2010-09-26	PEEL Premium 5.71 – SQL Injection	webapps	KnocKout
2010-09-26	ZenPhoto – Config Update / Command Execution	webapps	Abysssec
2010-09-25	E-Xoopport Samsara 3.1 (eCal Module) – Blind SQL Injection	webapps	_mRkZ_
2010-09-24	FreePBX 2.8.0 – Recordings Interface Allows Remote Code Execution	webapps	Trustwave's SpiderLabs
2010-09-24	Collaborative Passwords Manager 1.07 – Multiple Local File Inclusions	webapps	sh00t0ut
2010-09-23	OvBB 0.16a – Multiple Local File Inclusions	webapps	cOndemned
2010-09-23	GeekLog 1.3.8 (filemgmt) – SQL Injection	webapps	Gamoscu
2010-09-23	WAnewsletter 2.1.2 – SQL Injection	webapps	BrOx-Dz
2010-09-23	Joomla! Component com_tax – ‘eid’ SQL Injection	webapps	FL0RiX
2010-09-23	OpenText LiveLink 9.7.1 – Multiple Cross-Site Scripting Vulnerabilities	webapps	Alejandro Ramos
2010-09-22	Skybluecanvas 1.1-r248 – Cross-Site Request Forgery	webapps	Sweet
2010-09-22	Joomla! Component Joostina – SQL Injection	webapps	Gamoscu
2010-09-22	Joomla! Component TimeTrack 1.2.4 – Multiple SQL Injections	webapps	Salvatore Fresta
2010-09-22	BSI Hotel Booking System Admin 1.4/2.0 – Authentication Bypass	webapps	K-159
2010-09-21	wpQuiz 2.7 – Authentication Bypass	webapps	KnocKout
2010-09-21	ibPhotohost 1.1.2 – SQL Injection	webapps	fred777
2010-09-21	@Mail 6.1.9 – ‘MailType’ Cross-Site Scripting	webapps	Vicente Aguilera Diaz
2010-09-20	Joomla! Component com_spain – ‘nv’ SQL Injection	webapps	FL0RiX
2010-09-20	TikiWiki tiki-graph_formula – PHP Remote Code Execution (Metasploit)	webapps	Metasploit
2010-09-20	primitive CMS 1.0.9 – Multiple Vulnerabilities	webapps	Stephan Sattler
2010-09-20	LightNEasy CMS 3.2.1 – Blind SQL Injection	webapps	Solidmedia
2010-09-20	OpenX – ‘banner-edit.php’ Arbitrary File Upload / PHP Code Execution (Metasploit)	remote	Metasploit