Creditee: AutoSec Tools

Known Contact Information:

  • (as of 2011-01-23)
  • (as of 2011-01-27)

Known Affiliations:

Disclosed Vulnerabilities (96):

Disc. DateOSVDB IDCVEIDTitle
2011-11-13 77183 2011-4828 V-CMS includes/inline_image_upload.php File Upload Arbitrary PHP Code Execution
2011-11-13 77180 2011-4827 V-CMS redirect.php p Parameter XSS
2011-11-13 77181 2011-4827 V-CMS includes/TrueColorPicker/index.php box Parameter XSS
2011-11-13 77182 2011-4826 V-CMS process.php user Parameter SQL Injection
2011-06-01 72972 TeleData Contact Management Server URI Traversal Arbitrary File Access
2011-06-01 72725 Nakid CMS assets/addons/kcfinder/browse.php CKEditorFuncNum Parameter XSS
2011-05-14 72364 openQRM base/plugins/zfs-storage/zfs-storage-action.php source_tab Parameter XSS
2011-05-14 72390 Vanilla Forums index.php p Parameter Traversal Local File Inclusion
2011-05-12 72355 DocMGR history.php f Parameter XSS
2011-05-12 72368 Jcow index.php p Parameter Traversal Local File Inclusion
2011-05-12 72363 allocPSA login/login.php sessID Parameter XSS
2011-05-10 72365 NoticeBoardPro deleteItem3.php Multiple Parameter SQL Injection
2011-05-10 72366 NoticeBoardPro editItem1.php File Upload Arbitrary PHP Code Execution
2011-05-07 72231 Serva HTTP Request Processing DoS
2011-05-05 72228 Ampache login.php username Parameter XSS
2011-05-04 72229 GetSimple CMS index.php set Parameter Traversal Arbitrary File Access
2011-05-04 72241 Exponent CMS content_selector.php controller Parameter Traversal Local File Inclusion
2011-05-04 72242 Exponent CMS framework/modules/pixidou/download.php file Parameter Traversal Arbitrary File Access
2011-05-01 72223 TCExam /admin/code/tce_xml_user_results.php Multiple Parameter SQL Injection
2011-05-01 72222 TCExam /admin/code/tce_xml_user_results.php order_field Parameter SQL Injection
2011-05-01 72108 Tine library/vcardphp/vbook.php file Parameter XSS
2011-04-28 72098 LDAP Account Manager templates/login.php selfserviceSaveOk Parameter XSS
2011-04-28 72112 FrontAccounting (FA) admin/users.php Arbitrary Admin User Creation CSRF
2011-04-27 72107 Time and Expense Management System lookup.php form Parameter XSS
2011-04-27 72106 Time and Expense Management System systemadmin/BackupData.php Multiple Parameter Command Injection
2011-04-27 72105 Time and Expense Management System systemadmin/Edit.php processIncomingFormData() Function Arbitrary File Upload
2011-04-25 72006 OrangeHRM plugins/PluginController.php path Parameter Encoded Traversal Arbitrary File Access
2011-04-25 86985 phpMyChat plus/install/old/install.php Multiple Parameter Traversal Local File Inclusion
2011-03-27 71287 2011-1556 Andy's PHP Knowledgebase (aphpkb) plugins/pdfClasses/pdfgen.php pdfa Parameter SQL Injection
2011-03-24 71280 netjukebox message.php skin Parameter XSS
2011-03-23 71312 Claroline auth/inscription.php Multiple Parameter XSS
2011-03-23 71293 osCSS2 admin/editeur/tiny_mce/plugins/tinybrowser/upload.php feid Parameter XSS
2011-03-23 71294 osCSS2 admin/index.php page_admin Parameter Traversal Local File Inclusion
2011-03-23 71295 osCSS2 admin/popup_image.php page_admin Parameter Traversal Local File Inclusion
2011-03-15 71192 b2evolution blogs/htsrv/comment_post.php p Parameter XSS
2011-03-15 71283 Group-Office Admin User Creation CSRF
2011-03-13 71311 wodWebServer.NET URL Traversal Arbitrary File Access
2011-03-11 71070 2011-5267 Xinha plugins/SpellChecker/spell-check-savedicts.php Multiple Parameter XSS
2011-03-11 71313 PyroCMS index.php website Parameter XSS
2011-03-11 71286 OrangeHRM templates/recruitment/jobVacancy.php recruitcode Parameter XSS
2011-03-06 71018 Automne admin/upload-controler.php atm-regen Parameter Arbitrary File Upload
2011-03-04 71010 InterPhoto Gallery about.php IPLANG Parameter Traversal Arbitrary File Access
2011-03-03 70971 RhinOS admin/lib/gradient/gradient.php Multiple Parameter Encoded Traversal Arbitrary File Access
2011-03-03 71273 Support Incident Tracker (SiT!) lib/magpierss/scripts/magpie_debug.php url Parameter XSS
2011-03-03 71274 Support Incident Tracker (SiT!) lib/magpierss/scripts/magpie_simple.php url Parameter XSS
2011-03-03 71275 Support Incident Tracker (SiT!) lib/magpierss/scripts/magpie_slashbox.php rss_url Parameter XSS
2011-03-03 71276 Support Incident Tracker (SiT!) feedback.php ax Parameter XSS
2011-03-02 71263 phpWebSite javascript/editors/fckeditor/editor/custom.php local Parameter XSS
2011-02-25 71107 OPS Old Post Spinner Plugin for WordPress wp-content/plugins/old-post-spinner/logview.php ops_file Parameter Traversal Arbitrary File Access
2011-02-25 71166 jQuery Mega Menu Widget Plugin for WordPress wp-content/plugins/jquery-mega-menu/skin.php skin Parameter Traversal Arbitrary File Access
2011-02-23 71168 ComicPress Manager Plugin for WordPress wp-content/plugins/comicpress-manager/jscalendar-1.0/test.php lang Parameter XSS
2011-02-23 71190 Local Market Explorer Plugin for WordPress wp-content/plugins/local-market-explorer/modules/walk-score-iframe.php api-key Parameter XSS
2011-02-23 71215 Zotpress Plugin for WordPress wp-content/plugins/zotpress/zotpress.image.php citation Parameter XSS
2011-02-23 71226 YT-Audio Plugin for WordPress wp-content/plugins/yt-audio-streaming-audio-from-youtube/frame.php v Parameter XSS
2011-02-20 71093 Batavi /admin/templates/pages/templates_boxes/info.php module Parameter Traversal Local File Inclusion
2011-02-20 71092 Batavi admin/templates/pages/event_manager/edit.php mID Parameter XSS
2011-02-20 71091 Batavi admin/ext/color_picker/default.php store_root Parameter XSS
2011-02-20 71090 Batavi ext/xmlrpc/debugger/controller.php altmethodpayload Parameter XSS
2011-02-20 71094 Batavi /admin/templates/pages/images/main.php module Parameter Traversal Local File Inclusion
2011-02-20 71095 Batavi /admin/templates/pages/statistics/main.php module Parameter Traversal Local File Inclusion
2011-02-20 71096 Batavi /admin/templates/pages/templates/batch_delete.php template Parameter Traversal Local File Inclusion
2011-02-20 71097 Batavi /admin/templates/pages/templates/delete_rule.php template Parameter Traversal Local File Inclusion
2011-02-20 71103 Batavi /admin/templates/pages/templates/edit.php template Parameter Traversal Local File Inclusion
2011-02-20 71098 Batavi /admin/templates/pages/templates/edit_rule.php template Parameter Traversal Local File Inclusion
2011-02-20 71099 Batavi /admin/templates/pages/templates/info.php template Parameter Traversal Local File Inclusion
2011-02-20 71100 Batavi /admin/templates/pages/templates/uninstall.php template Parameter Traversal Local File Inclusion
2011-02-20 71101 Batavi /admin/templates/pages/export/download.php file Parameter Traversal Local File Inclusion
2011-02-20 71102 Batavi /admin/templates/pages/page_layout/main.php filter Parameter Traversal Local File Inclusion
2011-02-19 70880 2012-0873 Dolphin explanation.php explain Parameter XSS
2011-02-12 70949 Dokeos main/inc/latex.php code Parameter XSS
2011-02-02 70864 CiviCRM Component for Joomla! administrator/components/com_civicrm/civicrm/packages/OpenFlashChart/php-ofc-library/ofc_upload_image.php defaultPath Parameter XSS
2011-02-02 70865 CiviCRM Component for Joomla! administrator/components/com_civicrm/civicrm/packages/PHPgettext/examples/pigs_dropin.php lang Parameter XSS
2011-02-02 70866 CiviCRM Component for Joomla! administrator/components/com_civicrm/civicrm/packages/PHPgettext/examples/pigs_fallback.php lang Parameter XSS
2011-02-02 70867 CiviCRM Component for Joomla! administrator/components/com_civicrm/civicrm/packages/amfphp/browser/methodTable.php class Parameter XSS
2011-02-02 70860 CiviCRM Module for Drupal sites/all/modules/civicrm/packages/OpenFlashChart/php-ofc-library/ofc_upload_image.php defaultPath Parameter XSS
2011-02-02 70861 CiviCRM Module for Drupal sites/all/modules/civicrm/packages/amfphp/browser/details.php class Parameter XSS
2011-02-02 70862 CiviCRM Module for Drupal sites/all/modules/civicrm/packages/amfphp/browser/methodTable.php class Parameter XSS
2011-02-02 70863 CiviCRM Module for Drupal sites/all/modules/civicrm/packages/amfphp/browser/code.php class Parameter XSS
2011-01-31 70736 Simple Web Content Management System /admin/item_delete.php id Parameter SQL Injection
2011-01-31 70750 TCExam /public/code/tce_user_registration.php user_password Parameter XSS
2011-01-30 70737 TagNinja Plugin for WordPress wp-content/plugins/tagninja/fb_get_profile.php id Parameter XSS
2011-01-27 70735 2011-4280 Moodle lib/spikephpcoverage/src/phpcoverage.remote.top.inc.php PHPCOVERAGE_HOME Parameter XSS
2011-01-24 70643 BezahlCode-Generator Plugin for WordPress wp-content/plugins/bezahlcode-generator/der_generator.php gen_name Parameter XSS
2011-01-24 70646 WP Publication Archive Plugin for WordPress wp-content/plugins/wp-publication-archive/includes/openfile.php file Parameter Arbitrary File Access
2011-01-24 70647 Videox7 UGC Plugin for WordPress wordpress/wp-content/plugins/x7host-videox7-ugc-plugin/x7listplayer.php listid Parameter XSS
2011-01-24 70649 Uploader Plugin for WordPress wp-content/plugins/uploader/views/notify.php num Parameter XSS
2011-01-24 70648 Uploader Plugin for WordPress wp-content/plugins/uploader/uploadify/uploadify.php Arbitrary File Upload
2011-01-24 70747 2011-5210 Limny admin/preview.php theme Parameter Traversal Local File Inclusion
2011-01-24 70664 Recip.ly Plugin for WordPress wp-content/plugins/reciply/uploadImage.php Arbitrary File Upload
2011-01-24 70662 Conduit Banner Plugin for WordPress wp-content/plugins/conduit-banner-selector/conduit-banner-selector-banners.php banner-index-field-id Parameter XSS
2011-01-24 70663 Featured Content Plugin for WordPress wp-content/plugins/featured-content/js/modalbox/tests/functional/_ajax_method_get.php param Parameter XSS
2011-01-23 70640 Audio Plugin for WordPress wp-content/plugins/audio/getid3/demos/demo.browse.php showfile Parameter XSS
2011-01-23 70644 2011-0740 RSS Feed Reader for WordPress Plugin wp-content/plugins/rss-feed-reader/magpie/scripts/magpie_slashbox.php rss_url Parameter XSS
2011-01-23 70645 FCChat Widget Plugin for WordPress wp-content/plugins/fcchat/js/import.config.php path Parameter XSS
2011-01-23 70672 2011-0773 PivotX pivotx/modules/module_image.php image Parameter XSS
2011-01-23 70679 WP Featured Post with Thumbnail Plugin for WordPress wp-content/plugins/wp-featured-post-with-thumbnail/scripts/timthumb.php src Parameter XSS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
License - Privacy Statement - Terms of Use