Author: x0r

Country:

Reported research: 22

Advisories

Risk	Topic & Details
High	The Rat Cms Alpha 2 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-08-24
High	Absolute Newsletter 6.1 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-07-15
High	FlexPHPDirectory 0.0.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-04-27
Med.	Flexphplink 0.0.x (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-04-20
High	WEBBDOMAIN Post Card <= 1.02 (SQL Injection) Auth Bypass Vuln (CVE assigned) Remote \| 2009-04-09
High	PhpAddEdit 1.3 (Cookie) Login Bypass Vulnerability (CVE assigned) Remote \| 2009-04-04
Med.	pHNews Alpha 1 (genbackup.php) Database Disclosure Vulnerability (CVE assigned) Remote \| 2009-03-14
High	S-Cms 1.1 Stable Insecure Cookie Handling / Mass Page Delete Vulns (CVE assigned) Remote \| 2009-03-13
High	smNews 1.0 Auth Bypass/Column Truncation Vulnerabilities (CVE assigned) Remote \| 2009-03-04
High	E-topbiz Link Back Checker 1 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-03-01
High	Acc Autos 4.0 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-03-01
High	BlueBird Pre-Release (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-28
High	AuthPhp 1.0 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-28
High	Mynews 0_10 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-28
High	Potato News 1.0.0 (user) Local File Inclusion Vulnerability (CVE assigned) Remote \| 2009-02-27
Med.	Flexphpsite 0.0.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-25
Med.	SFS EZ Software (id) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-25
High	Chipmunk Blog (Auth Bypass) Add Admin Exploit (CVE assigned) Remote \| 2009-02-05
High	Gobbl CMS 1.0 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-01-10
High	TlGuestBook 1.2 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2008-11-15
High	MyKtools 2.4 (langage) Local File Inclusion Vulnerability (CVE assigned) Remote \| 2008-10-30
High	Tlnews 2.2 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2008-10-29

Author: x0r

Country:

Reported research: 22

Advisories

High

The Rat Cms Alpha 2 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-08-24

High

Absolute Newsletter 6.1 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-07-15

High

FlexPHPDirectory 0.0.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-04-27

Med.

Flexphplink 0.0.x (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-04-20

High

WEBBDOMAIN Post Card <= 1.02 (SQL Injection) Auth Bypass Vuln (CVE assigned)

Remote | 2009-04-09

High

PhpAddEdit 1.3 (Cookie) Login Bypass Vulnerability (CVE assigned)

Remote | 2009-04-04

Med.

pHNews Alpha 1 (genbackup.php) Database Disclosure Vulnerability (CVE assigned)

Remote | 2009-03-14

High

S-Cms 1.1 Stable Insecure Cookie Handling / Mass Page Delete Vulns (CVE assigned)

Remote | 2009-03-13

High

smNews 1.0 Auth Bypass/Column Truncation Vulnerabilities (CVE assigned)

Remote | 2009-03-04

High

E-topbiz Link Back Checker 1 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-03-01

High

Acc Autos 4.0 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-03-01

High

BlueBird Pre-Release (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-28

High

AuthPhp 1.0 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-28

High

Mynews 0_10 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-28

High

Potato News 1.0.0 (user) Local File Inclusion Vulnerability (CVE assigned)

Remote | 2009-02-27

Med.

Flexphpsite 0.0.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-25

Med.

SFS EZ Software (id) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-25

High

Chipmunk Blog (Auth Bypass) Add Admin Exploit (CVE assigned)

Remote | 2009-02-05

High

Gobbl CMS 1.0 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-01-10

High

TlGuestBook 1.2 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2008-11-15

High

MyKtools 2.4 (langage) Local File Inclusion Vulnerability (CVE assigned)

Remote | 2008-10-30

High

Tlnews 2.2 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2008-10-29

Do you know.. we can display your:

- Twitter Link - Website Link - Zone-H Link - Description of profile - email (let us know if you want show public)

Let's us know! submit@cxsec.org

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)