webapps

日期	标题	类别	作者
2011-06-13	PHP-Nuke 8.3 – ‘upload.php’ Arbitrary File Upload (1)	webapps	pentesters.ir
2011-06-13	Microsoft Lync Server 2010 – ‘ReachJoin.aspx’ Remote Command Injection	webapps	Mark Lachniet
2011-06-13	WebFileExplorer 3.6 – ‘user’ / ‘pass’ SQL Injection	webapps	pentesters.ir
2011-06-13	Joomla! Component Minitek FAQ Book 1.3 – ‘id’ SQL Injection	webapps	kaMtiEz
2011-06-13	Joomla! Component Scriptegrator 1.5 – Local File Inclusion	webapps	jdc
2011-06-13	Oracle HTTP Server – Cross-Site Scripting Header Injection	webapps	Yasser ABOUKIR
2011-06-11	Trend Micro Data Loss Prevention Virtual Appliance 5.5 – Directory Traversal	webapps	White Hat Consultores
2011-06-11	SUBRION CMS – Multiple Vulnerabilities	webapps	Karthik R
2011-06-11	Technote 7.2 – Blind SQL Injection	webapps	BlueH4G
2011-06-10	Tolinet Agencia – ‘id’ SQL Injection	webapps	Andrea Bocchetti
2011-06-10	Tele Data Contact Management Server – Directory Traversal	webapps	AutoSec Tools
2011-06-10	Angora Guestbook 1.5 – Local File Inclusion	webapps	AutoSec Tools
2011-06-10	Pacer Edition CMS 2.1 – ‘l’ Local File Inclusion	webapps	LiquidWorm
2011-06-10	Pacer Edition CMS 2.1 – ‘rm’ Arbitrary File Deletion	webapps	LiquidWorm
2011-06-09	Polycom IP Phone – Web Interface Data Disclosure	webapps	Yakir Wizman
2011-06-09	Aastra IP Phone 9480i – Web Interface Data Disclosure	webapps	Yakir Wizman
2011-06-09	EquiPCS – SQL Injection	webapps	Sideswipe
2011-06-08	WordPress Plugin GD Star Rating – ‘votes’ SQL Injection	webapps	anonymous
2011-06-07	The Pacer Edition CMS 2.1 – ’email’ Cross-Site Scripting	webapps	LiquidWorm
2011-06-07	Blog:CMS 4.2 – Multiple Cross-Site Scripting Vulnerabilities	webapps	Stefan Schurtz
2011-06-07	Xataface 1.x – ‘action’ Local File Inclusion	webapps	ITSecTeam
2011-06-07	Dataface – Local File Inclusion	webapps	ITSecTeam
2011-06-06	vBulletin vBExperience 3 – ‘sortorder’ Cross-Site Scripting	webapps	Mr.ThieF
2011-06-06	Squiz Matrix 4 – ‘colour_picker.php’ Cross-Site Scripting	webapps	Patrick Webster