webapps

日期	标题	类别	作者
2012-11-19	WeBid 1.0.5 – Cross-Site Scripting	webapps	Woody Hughes
2012-11-16	ATutor 2.1 – ‘tool_file’ Local File Inclusion	webapps	Julian Horoszkiewicz
2012-11-16	Open-Realty 2.5.8 – Cross-Site Request Forgery	webapps	Aung Khant
2012-11-16	Friends in War The FAQ Manager – ‘question’ SQL Injection	webapps	unsuprise
2012-11-16	WordPress Plugin Tagged Albums – ‘id’ SQL Injection	webapps	Ashiyane Digital Security Team
2012-11-16	WordPress Theme Dailyedition-mouss – ‘id’ SQL Injection	webapps	Ashiyane Digital Security Team
2012-11-16	friendsinwar FAQ Manager – ‘view_faq.php?question’ SQL Injection	webapps	unsuprise
2012-11-15	ReciPHP 1.1 – SQL Injection	webapps	cr4wl3r
2012-11-15	BabyGekko 1.2.2e – Multiple Vulnerabilities	webapps	High-Tech Bridge SA
2012-11-15	Friends in War Make or Break 1.3 – Authentication Bypass	webapps	d3b4g
2012-11-15	iDev Rentals 1.0 – Multiple Vulnerabilities	webapps	Vulnerability-Lab
2012-11-14	dotProject 2.1.6 – Remote File Inclusion	webapps	dun
2012-11-14	MYRE Realty Manager – Multiple Vulnerabilities	webapps	d3b4g
2012-11-14	MYREphp Vacation Rental Software – Multiple Vulnerabilities	webapps	d3b4g
2012-11-14	friendsinwar FAQ Manager – SQL Injection / Authentication Bypass	webapps	d3b4g
2012-11-14	Myrephp Business Directory – Multiple Vulnerabilities	webapps	d3b4g
2012-11-14	Narcissus – Remote Command Execution	webapps	dun
2012-11-13	Eventy CMS 1.8 Plus – Multiple Vulnerabilities	webapps	Vulnerability-Lab
2012-11-12	vBulletin vBay 1.1.9 – Error-Based SQL Injection	webapps	Dan UK
2012-11-12	Bananadance Wiki b2.2 – Multiple Vulnerabilities	webapps	Vulnerability-Lab
2012-11-09	WordPress Plugin Eco-annu – ‘eid’ SQL Injection	webapps	Ashiyane Digital Security Team
2012-11-09	WordPress Plugin PHP Event Calendar – ‘cid’ SQL Injection	webapps	Ashiyane Digital Security Team
2012-11-09	WordPress Theme Kakao – ‘ID’ SQL Injection	webapps	sil3nt
2012-11-09	ESRI ArcGIS for Server – ‘where’ SQL Injection	webapps	anonymous