Contact Us
SECURITY BLOG SECURITY DASHBOARD PARTNERS PRODUCTS JOBS SERVICES COMPANY HOME
 
Knowledgebase  |  Security Focus  |  Security News  |  Exploits  | Advisories  |  Threats  |  Vulnerabilities  |  Risks
1111 Milw0rm Security Exploits Published
 K&S Shopsysteme Arbitrary Remote File Upload Vulnerability2008-12-17
 BP Blog 6.0/7.0/8.0/9.0 Remote Database Disclosure Vulnerability2008-12-17
 phpcksec 0.2.0 (XSS/FD) Multiple Remote Vulnerabilities2008-12-17
 Microsoft SQL Server sp_replwritetovarbin() Heap Overflow Exploit (0day)2008-12-17
 Lizardware CMS <= 0.6.0 Blind SQL Injection Exploit2008-12-17
 FLDS 1.2a report.php (linkida) Remote SQL Injection Exploit2008-12-16
 Realtek Sound Manager (rtlrack.exe v. 1.15.0.0) PlayList BOF Exploit2008-12-16
 Nukedit 4.9.8 Remote Database Disclosure Vulnerability2008-12-16
 Barracuda Spam Firewall v3.5.11.020, Model 600 SQL Injection Vuln2008-12-16
 Gnews Publisher .NET (authors.asp authorID) SQL Injection Vulnerability2008-12-16
 Zelta E Store (RFU/BYPASS/R-SQL/B-SQL) Multiple Vulnerabilities2008-12-16
 Liberum Help Desk 0.97.3 (SQL/DD) Remote Vulnerabilities2008-12-16
 Forest Blog 1.3.2 (blog.mdb) Remote Database Disclosure Vulnerability2008-12-15
 BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit2008-12-15
 FLDS 1.2a (lpro.php id) Remote SQL Injection Vulnerability2008-12-15
 eZ Publish < 3.9.5/3.10.1/4.0.1 (token) Privilege Escalation Exploit2008-12-15
 CodeAvalanche RateMySite (CARateMySite.mdb) Database Disclosure2008-12-15
 CodeAvalanche Articles (CAArticles.mdb) Database Disclosure Vuln2008-12-15
 CodeAvalanche FreeWallpaper Remote Database Disclosure Vulnerability2008-12-15
 CodeAvalanche FreeForAll (CAFFAPage.mdb) Database Disclosure Vuln2008-12-15
 CodeAvalanche Directory (CADirectory.mdb) Database Disclosure Vuln2008-12-15
 Amaya Web Browser 10.0.1/10.1-pre5 (html tag) Buffer Overflow PoC2008-12-15
 Mediatheka 4.2 Remote Blind SQL Injection Expoit2008-12-15
 The Rat Cms Alpha 2 (Auth Bypass) SQL Injection Vulnerability2008-12-15
 WorkSimple 1.2.1 RFI / Sensitive Data Disclosure Vulnerabilities2008-12-15
 CadeNix (cid) Remote SQL Injection Vulnerability2008-12-15
 XOOPS Module Amevents (print.php id) SQL Injection Vulnerability2008-12-15
 Aperto Blog 0.1.1 Local File Inclusion / SQL Injection Vulnerabilities2008-12-15
 Click&Rank (SQL/XSS) Multiple Remote Vulnerabilities2008-12-15
 ClickAndEmaiL (SQL/XSS) Multiple Remote Vulnerabilities2008-12-15
 Click&BaneX Multiple Remote SQL Injection Vulnerabilities2008-12-15
 FLDS 1.2a (redir.php id) Remote SQL Injection Vulnerability 2008-12-14
 ProSysInfo TFTP server TFTPDWIN <= 0.4.2 Univ. Remote BOF Exploit2008-12-14
 PHP Weather 2.2.2 (LFI/XSS) Multiple Remote Vulnerabilities2008-12-14
 FreeForum (CAForum.mdb) Database Disclosure Vulnerability2008-12-14
 iyzi Forum 1.0b3 (iyziforum.mdb) Database Disclosure Vulnerability2008-12-14
 AutositePHP 2.0.3 (LFI/CSRF/Edit File) Multiple Remote Vulnerabilities2008-12-14
 ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln2008-12-14
 ASPired2Quote (quote.mdb) Remote Database Disclosure Vulnerability2008-12-14
 Discussion Web v4 Remote Database Disclosure Vulnerability2008-12-14
 Simple Text-File Login script 1.0.6 (DD/RFI) Multiple Vulnerabilities2008-12-14
 Flatnux html/javascript Injection Cookie Grabber Exploit2008-12-14
 EvansFTP (EvansFTP.ocx) Remote Buffer Overflow PoC2008-12-14
 CFAGCMS v1 Remote File Inclusion Vulnerabilities2008-12-14
 Médiathéka 4.2 (index.php lang) Local File Inclusion Vulnerability2008-12-14
 Availscript Classmate Script Remote File Upload Vulnerability2008-12-14
 Availscript Article Script Remote File Upload Vulnerability2008-12-14
 The Rat Cms Alpha 2 (download.php) Remote Vulnerability2008-12-14
 Linux Kernel 2.6.27.7-generic - 2.6.18 - 2.6.24-1 Local DoS Exploit2008-12-14
 IsWeb CMS 3.0 (SQL/XSS) Multiple Remote Vulnerabilities2008-12-14
 ASPSiteWare RealtyListing V1/V2 SQL Injection Vulnerabilities2008-12-14
 ASPSiteWare Automotive Dealer V1/V2 SQL Injection Vulnerability2008-12-14
 ASPSiteWare Home Builder 1.0/2.0 SQL Injection Vulnerability2008-12-14
 Social Groupie (group_index.php id) Remote SQL Injection Vulnerability2008-12-12
 Xpoze 4.10 (home.html menu) Blind SQL Injection Vulnerability2008-12-12
 MS Visual Basic ActiveX Controls mscomct2.ocx Buffer Overflow PoC2008-12-12
 SUMON <= 0.7.0 (chg.php host) Command Execution Vulnerability2008-12-12
 ASP-CMS 1.0 (index.asp cha) SQL Injection Vulnerability2008-12-12
 The Net Guys ASPired2Protect Database Disclosure Vulnerability2008-12-12
 The Net Guys ASPired2Blog (SQL/DD) Multiple Remote Vulnerabilities2008-12-12
 Social Groupie (create_album.php) Remote File Upload Vulnerability2008-12-12
 Wysi Wiki Wyg 1.0 Remote Password Retrieve Exploit2008-12-12
 Moodle 1.9.3 Remote Code Execution Vulnerability2008-12-12
 Joomla Live Chat (SQL/Proxy) Multiple Remote Vulnerabilities2008-12-12
 ColdFusion Scripts Red_Reservations Database Disclosure Vulnerability2008-12-12
 Umer Inc Songs Portal Script (id) SQL Injection Vulnerability2008-12-12
 VP-ASP Shopping Cart 6.50 Database Disclosure Vulnerability2008-12-12
 TmaxSoft JEUS Alternate Data Streams File Disclosure Vulnerability2008-12-12
 eZ Publish 3.9.0/3.9.5/3.10.1 Command Execution Exploit (admin req)2008-12-11
 MyCal Personal Events Calendar (mycal.mdb) Database Disclosure Vuln2008-12-11
 evCal Events Calendar Database Disclosure Vulnerability2008-12-11
 PhpAddEdit 1.3 (Cookie) Login Bypass Vulnerability2008-12-11
 Banner Exchange Java (Auth Bypass) SQL Injection Vulnerability2008-12-11
 Ad Management Java (Auth Bypass) SQL Injection Vulnerability2008-12-11
 Affiliate Software Java 4.0 (Auth Bypass) SQL Injection Vulnerability2008-12-11
 Feed Cms 1.07.03.19b (lang) Local File Inclusion Vulnerability2008-12-11
 PHP Support Tickets 2.2 Remote File Upload Vulnerability2008-12-11
 The Net Guys ASPired2Poll Remote Database Disclosure Vulnerability2008-12-11
 Linux Kernel <= 2.6.27.8 ATMSVC Local Denial of Service Exploit2008-12-10
 HTMPL 1.11 (htmpl_admin.cgi help) Command Execution Vulnerability2008-12-10
 MS Internet Explorer XML Parsing Remote Buffer Overflow Exploit2008-12-10
 Pro Chat Rooms 3.0.2 (XSS/CSRF) Multiple Vulnerabilities2008-12-10
 Living Local 1.1 (XSS-RFU) Multiple Remote Vulnerabilities2008-12-10
 Webmaster Marketplace (member.php u) SQL Injection Vulnerability2008-12-10
 eZ Publish < 3.9.5/3.10.1/4.0.1 Privilege Escalation Exploit2008-12-10
 MS Internet Explorer XML Parsing Buffer Overflow Exploit (vista)2008-12-10
 CF_Forum Blind SQL Injection Vulnerability2008-12-10
 CFMBLOG (index.cfm categorynbr) Blind SQL Injection Vulnerability2008-12-10
 CF_Auction (forummessage) Blind SQL Injection Vulnerability2008-12-10
 CF_Calendar (calendarevent.cfm) Remote SQL Injection Vulnerabilty2008-12-10
 CF SHOPKART 5.2.2 (SQL/DD) Multiple Remote Vulnerabilities2008-12-10
 Butterfly Organizer 2.0.1 (view.php id) SQL Injection Vulnerability2008-12-10
 phpAddEdit 1.3 (editform) Local File Inclusion Vulnerability2008-12-10
 PHPmyGallery 1.0beta2 (RFI/LFI) Multiple Remote Vulnerabilities2008-12-09
 Poll Pro 2.0 (Auth Bypass) Remote SQL Injection Vulnerability2008-12-09
 Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln2008-12-09
 PHP safe_mode can be bypassed via proc_open() and custom environment2008-12-09
 Peel Shopping 3.1 (index.php rubid) SQL Injection Vulnerability2008-12-09
 PHP Multiple Newsletters 2.7 (LFI/XSS) Multiple Vulnerabilities2008-12-09
 PHPmyGallery 1.5beta (common-tpl-vars.php) LFI/RFI Vulnerabilities2008-12-09
 PostEcards (SQL/DD) Multiple Remote Vulnerabilities2008-12-09
 ProQuiz 1.0 (Auth Bypass) SQL Injection Vulnerability2008-12-09
 Netref 4.0 Multiple Remote SQL Injection Vulnerabilities2008-12-09
 Vinagre < 2.24.2 show_error() Remote Format String PoC2008-12-09
 EasyMail ActiveX (emmailstore.dll 6.5.0.3) Buffer Overflow Exploit2008-12-09
 XOOPS 2.3.1 Multiple Local File Inclusion Vulnerabilities2008-12-08
 MG2 0.5.1 (filename) Remote Code Execution Vulnerability2008-12-08
 XAMPP 1.6.8 (XSRF) Change Administrative Password Exploit2008-12-08
 Simple Directory Listing 2 Cross Site File Upload Vulnerability2008-12-08
 phpMyAdmin 3.1.0 (XSRF) SQL Injection Vulnerability2008-12-08
 SIU Guarani Multiple Remote Vulnerabilities2008-12-08
 phpBB 3 (Mod Tag Board <= 4) Remote Blind SQL Injection Exploit2008-12-08
 Secure Downloads v2.0.0r for vBulletin SQL Injection Vulnerability2008-12-08
 DD-WRT v24-sp1 (XSRF) Cross Site Reference Forgery Exploit2008-12-08
 WebCAF <= 1.4 (LFI/RCE) Multiple Remote Vulnerabilities2008-12-08
 Neostrada Livebox Router Remote Network Down PoC Exploit2008-12-08
 PayPal eStore Admin Password Changing Exploit2008-12-07
 Bonza Cart <= 1.10 Admin Password Changing Exploit2008-12-07
 DL PayCart <= 1.34 Admin Password Changing Exploit2008-12-07
 IPNPro3 <= 1.44 Admin Password Changing Exploit2008-12-07
 ASP Talk (SQL/CSS) Multiple Remote Vulnerabilities2008-12-07
 PHPmyGallery Gold 1.51 (index.php) Directory Traversal Vulnerability2008-12-07
 QMail Mailing List Manager 1.2 Database Disclosure Vulnerability2008-12-07
 Mini-CMS 1.0.1 (index.php) Multiple Local File Inclusion Vulnerabilities2008-12-07
 Mini Blog 1.0.1 (index.php) Multiple Local File Inclusion Vulnerabilities2008-12-07
 ASPManage Banners (RFU/DD) Multiple Remote Vulnerabilities2008-12-07
 Ikon AdManager 2.1 Remote Database Disclosure Vulnerability2008-12-07
 Professional Download Assistant 0.1 Database Disclosure Vulnerability2008-12-07
 NatterChat 1.12 (natterchat112.mdb) Database Disclosure Vulnerability2008-12-07
 w3blabor CMS 3.0.5 Arbitrary File Upload & LFI Exploit2008-12-07
 ASP PORTAL (xportal.mdb) Remote Database Disclosure Vulnerability2008-12-06
 ASP AutoDealer Remote Database Disclosure Vulnerability2008-12-06
 phpPgAdmin <= 4.2.1 (_language) Local File Inclusion Vulnerability2008-12-06
 DesignWorks Professional 4.3.1 Local .CCT File Stack BOF PoC2008-12-06
 PEiD <= 0.92 Malformed PE File Universal Buffer Overflow Exploit2008-12-05
 Multiple Membership Script 2.5 (id) SQL Injection Vulnerability2008-12-05
 Merlix Educate Servert (Bypass/DD) Multiple Remote Vulnerabilities2008-12-05
 NightFall Personal Diary 1.0 (XSS/DD) Multiple Remote Vulnerabilities2008-12-05
 RankEm (auth bypass) Remote SQL Injection Vulnerability2008-12-05
 RankEm (rankup.asp siteID) Remote SQL Injection Vulnerability2008-12-05
 Tizag Countdown Creator .v.3 Insecure Upload Vulnerability2008-12-05
 Cold BBS (cforum.mdb) Remote Database Disclosure Vulnerability2008-12-05
 Merlix Teamworx Server (DD/Bypass) Multiple Remote Vulns2008-12-05
 NULL FTP Server 1.1.0.7 SITE Parameters Command Injection Vuln2008-12-05
 ASP PORTAL Multiple Remote SQL Injection Vulnerabilities2008-12-05
 ASP AutoDealer (SQL/DD) Multiple Remote Vulnerabilities2008-12-05
 ASP Ticker (news.mdb) Remote Database Disclosure Vulnerability2008-12-05
 Visagesoft eXPert PDF EditorX (VSPDFEditorX.ocx) Insecure Method2008-12-05
 Wbstreet v.1.0 (SQL/DD) Multiple Remote Vulnerabilities2008-12-04
 ccTiddly 1.7.4 (cct_base) Multiple Remote File Inclusion Vulnerabilities2008-12-04
 User Engine Lite ASP (users.mdb) Database Disclosure Vulnerability2008-12-04
 Template Creature (SQL/DD) Multiple Remote Vulnerabilities2008-12-04
 Joomla Component mydyngallery 1.4.2 (directory) SQL Injection Vuln2008-12-04
 My Simple Forum 3.0 (index.php action) Local File Inclusion Vulnerability2008-12-04
 lcxbbportal 0.1 Alpha 2 Remote File Inclusion Vulnerability2008-12-04
 Easy News Content Management (News.mdb) Database Disclosure Vuln2008-12-04
 BNCwi <= 1.04 Local File Inclusion Vulnerability2008-12-04
 Gravity GTD <= 0.4.5 (rpc.php objectname) LFI/RCE Vulnerability2008-12-04
 Calendar MX Professional 2.0.0 Blind SQL Injection Vulnerability2008-12-03
 Gallery MX 2.0.0 (pics_pre.asp ID) Blind SQL Injection Vulnerability2008-12-03
 Check New 4.52 (findoffice.php search) Remote SQL Injection Exploit2008-12-03
 Cain & Abel 4.9.23 (rdp file) Buffer overflow Exploit2008-12-03
 Joomla Component com_jmovies 1.1 (id) SQL Injection Exploit2008-12-03
 ClamAV < 0.94.2 (JPG File) Stack Overflow PoC2008-12-03
 RadAsm <= 2.2.1.4 (.RAP File) WindowCallProcA Pointer Hijack Exploit2008-12-03
 Rae Media Contact MS (Auth Bypass) SQL Injection Vulnerability2008-12-03
 ASP User Engine .NET Remote Database Disclosure Vulnerability2008-12-03
 Multi SEO phpBB 1.1.0 (pfad) Remote File Inclusion Vulnerability2008-12-03
 Ocean12 Mailing List Manager Gold (DD/SQL/XSS) Vulnerabilities2008-12-02
 Rapid Classified 3.1 (cldb.mdb) Database Disclosure Vulnerability2008-12-02
 SunByte e-Flower (id) Remote SQL Injection Vulnerability2008-12-02
 CMS MAXSITE Component Guestbook Remote Command Execution Exploit2008-12-02
 Codefixer MailingListPro (MailingList.mdb) Database Disclosure Vuln2008-12-02
 Andy's PHP Knowledgebase 0.92.9 Arbitrary File Upload Vulnerability2008-12-01
 z1exchange 1.0 (edit.php site) Remote SQL Injection Vulnerability2008-12-01
 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC2008-12-01
 E.Z. Poll v.2 (Auth Bypass) Remote SQL Injection Vulnerability2008-12-01
 Maxum Rumpus 6.0 Multiple Remote Buffer Overflow Vulnerabilities2008-12-01
 bcoos 1.0.13 (viewcat.php cid) Remote SQL Injection Exploit2008-12-01
 ASPPortal 3.2.5 (ASPPortal.mdb) Database Disclosure Vulnreability2008-12-01
 PacPoll 4.0 (poll.mdb/poll97.mdb) Database Disclosure Vulnerability2008-12-01
 KTP Computer Customer Database CMS Blind SQL Injection Vulnerability2008-11-30
 KTP Computer Customer Database CMS Local File Inclusion Vulnerability2008-11-30
 Quick Tree View .NET 3.1 (qtv.mdb) Database Disclosure Vulnerability2008-11-30
 Active Business Directory v 2 Remote blind SQL Injection Vulnerability2008-11-30
 Active Time Billing 3.2 (Auth Bypass) SQL Injection Vulnerability 2008-11-30
 Active Price Comparison v 4 (ProductID) Blind SQL Injection Vulnerability2008-11-30
 Active Photo Gallery 6.2 (Auth Bypass) SQL Injection Vulnerability2008-11-30
 Active Web Helpdesk v 2 (CategoryID) Blind SQL Injection Vulnerability2008-11-30
 Cain & Abel 4.9.23 (rdp file) Buffer Overflow PoC2008-11-30
 Itunes 8.0.2.20/Quicktime 7.5.5 (.mov File) Multiple Off By Overflow PoC2008-11-30
 cpCommerce 1.2.6 (URL Rewrite) Input variable overwrite / Auth bypass PoC2008-11-30
 Electronics Workbench (EWB File) Local Stack Overflow PoC2008-11-30
 Minimal Ablog 0.4 (SQL/FU/Bypass) Multiple Remote Vulnerabilities2008-11-30
 Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerabilities2008-11-30
 Cain & Abel <= v4.9.24 .RDP Stack Overflow Exploit2008-11-30
 Star Articles 6.0 Remote Blind SQL Injection exploit2008-11-27
 Web Calendar System 3.12/3.30 Multiple Remote Vulnerabilities2008-11-27
 TxtBlog (index.php m) Local File Inclusion Vulnerability2008-11-27
 Ocean12 Calendar Manager Gold Database Disclosure Vulnerability2008-11-27
 Ocean12 Poll Manager Pro Database Disclosure Vulnerability2008-11-27
 Ocean12 Membership Manager Pro Database Disclosure Vulnerability2008-11-27
 Ocean12 Contact Manager Pro (SQL/XSS/DDV) Multiple Vulnerabilities2008-11-27
 RakhiSoftware Shopping Cart (subcategory_id) SQL Injection Vulnerability2008-11-27
 i.Scribe SMTP Client <= 2.00b (wscanf) Remote Format String PoC2008-11-27
 Family Project 2.x (Auth Bypass) SQL Injection Vulnerability2008-11-27
 WebStudio CMS (pageid) Remote Blind SQL Injection Vuln (mil mixup)2008-11-26
 Post Affiliate Pro v.3 (umprof_status) Blind SQL Injection Vulnerability2008-11-26
 CMS Ortus <= 1.13 Remote SQL Injection Vulnerability2008-11-26
 Star Articles 6.0 Remote Blind SQL Injection Vulnerability2008-11-26
 ParsBlogger (blog.asp wr) Remote SQL Injection Vulnerability2008-11-26
 FAQ Manager 1.2 (categorie.php cat_id) SQL Injection Vulnerability2008-11-25
 WebStudio eCatalogue (pageid) Blind SQL Injection Vulnerability2008-11-25
 WebStudio eHotel (pageid) Blind SQL Injection Vulnerability2008-11-25
 Pie Web M{a,e}sher Mod Rss 0.1 Remote File Inclusion Vulnerability2008-11-25
 Chipmunk Topsites (Auth Bypass/XSS) Multiple Remote Vulnerabilities2008-11-25
 Google Chrome Browser MetaCharacter URI Obfuscation Vulnerability2008-11-25
 FAQ Manager 1.2 (config_path) Remote File Inclusion Vulnerability2008-11-25
 Clean CMS 1.5 (Blind SQL Injection/XSS) Multiple Remote Vulnerabilities2008-11-25
 Clean CMS 1.5 (full_txt.php id) Blind SQL Injection Exploit2008-11-25
 fuzzylime cms 3.03 (track.php p) Local File Inclusion Vulnerability2008-11-25
 SimpleBlog 3.0 (simpleBlog.mdb) Database Disclosure Vulnerability2008-11-25
 Jamit Job Board 3.4.10 (show_emp) Blind SQL Injection Vulnerability2008-11-25
 VideoGirls BiZ (view_snaps.php type) Blind SQL Injection Vulnerability2008-11-25
 LoveCMS 1.6.2 Final (Download Manager 1.0) File Upload Exploit2008-11-25
 Nero ShowTime 5.0.15.0 m3u Playlist File Remote Buffer Overflow PoC2008-11-24
 NetArtMedia Real Estate Portal 1.2 (ad_id) SQL Injection Vuln2008-11-24
 Goople Cms 1.7 Arbitrary Code Execution Vulnerability2008-11-24
 W3C Amaya 10.1 Web Browser (URL Bar) Remote Stack Overflow PoC2008-11-24
 W3C Amaya 10.1 Web Browser (id) Remote Stack Overflow PoC2008-11-24
 VideoScript 3.0 <= 4.1.5.55 Unofficial Shell Injection Exploit2008-11-24
 VideoScript 3.0 <= 4.0.1.50 Official Shell Injection Exploit2008-11-24
 Quicksilver Forums <= 1.4.2 RCE Exploit (windows only)2008-11-24
 WebStudio CMS (index.php pageid) Blind SQL Injection Vulnerability2008-11-24
 Bandwebsite 1.5 (SQL/XSS) Multiple Remote Vulnerabilities2008-11-24
 FTPzik (XSS/LFI) Multiple Remote Vulnerabilities2008-11-24
 Pie Web M{a,e}sher 0.5.3 Multiple Remote File Inclusion Vulnerability2008-11-24
 Siemens C450IP/C475IP Remote Denial of Service Vulnerability2008-11-24
 Total Video Player (vcen.dll) Remote off by one Crash Exploit2008-11-24
 Nitrotech 0.0.3a (RFI/SQL) Multiple Remote Vulnerabilities2008-11-24
 Microsoft XML Core Services DTD Cross-Domain Scripting PoC (MS08-069)2008-11-23
 Prozilla Hosting Index (id) Remote SQL Injection Vulnerability2008-11-23
 PG Job Site (poll_view_id) Blind SQL Injection Vulnerability2008-11-23
 PG Roomate Finder Solution (Auth Bypass) SQL Injection Vulnerability2008-11-23
 PG Real Estate (Auth Bypass) SQL Injection Vulnerability2008-11-23
 NetArtMedia Blog System (image.php id) SQL Injection Vulnerability2008-11-23
 NetArtMedia Cars Portal 2.0 (image.php id) SQL Injection Vulnerability2008-11-23
 Goople Cms 1.7 Remote File Upload Vulnerability2008-11-23
 MauryCMS <= 0.53.2 (fckeditor) Remote Arbitrary File Upload Vuln2008-11-23
 Goople Cms 1.7 Insecure Cookie Handling Vulnerability2008-11-23
 MODx CMS <= 0.9.6.2 (RFI/XSS) Multiple Remote Vulnerabilities2008-11-23
 PHP Classifieds Script Remote Database Disclosure Vulnerability2008-11-23
 Vlog System 1.1 (blog.php user) Remote SQL Injection Vulnerability2008-11-22
 Discuz! Remote Reset User Password Exploit2008-11-22
 e107 Plugin ZoGo-Shop 1.15.4 (product) SQL Injection Vulnerability2008-11-22
 LoveCMS 1.6.2 Final (Simple Forum 3.1d) Change Admin Password Exploit2008-11-22
 Ez Ringtone Manager Multiple Remote File Disclosure Vulnerabilities2008-11-22
 getaphpsite Auto Dealers Remote File Upload Vulnerability2008-11-22
 getaphpsite Real Estate Remote File Upload Vulnerability2008-11-22
 KVIrc 3.4.2 Shiny (uri handler) Remote Command Execution Exploit2008-11-21
 Joomla Component Thyme 1.0 (event) SQL Injection Vulnerability2008-11-21
 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability2008-11-21
 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit2008-11-20
 PunBB Mod PunPortal 0.1 Local File Inclusion Exploit2008-11-20
 wPortfolio <= 0.3 Admin Password Changing Exploit2008-11-20
 PHP 5.2.6 (error_log) safe_mode Bypass Vulnerability2008-11-20
 NatterChat 1.1 (Auth Bypass) Remote SQL Injection Vulnerability2008-11-20
 vBulletin 3.7.3 Visitor Message XSS/XSRF + worm Exploit2008-11-20
 PHP-Fusion 7.00.1 (messages.php) Remote SQL Injection Exploit2008-11-20
 Oracle Database Vault ptrace(2) Privilege Escalation Exploit2008-11-20
 ToursManager (tourview.php tourid) Blind SQL Injection Vulnerability2008-11-20
 Natterchat 1.12 (Auth Bypass) Remote SQL Injection Vulnerability2008-11-20
 BitDefender (module pdf.xmd) Infinite Loop Denial of Service PoC2008-11-20
 VCalendar (VCalendar.mdb) Remote Database Disclosure Vulnerability2008-11-20
 NatterChat 1.1 Remote Admin Bypass Vulnerability2008-11-20
 Alex Article-Engine 1.3.0 (fckeditor) Arbitrary File Upload Vulnerability2008-11-19
 Alex News-Engine 1.5.1 Remote Arbitrary File Upload Vulnerability2008-11-19
 PunBB (Private Messaging System 1.2.x) Multiple LFI Exploit2008-11-19
 MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit2008-11-19
 RevSense (Auth bypass) Remote SQL Injection Vulnerability2008-11-19
 MauryCMS <= 0.53.2 Remote Shell Upload Exploit2008-11-19
 AskPert (Auth bypass) Remote SQL Injection Vulnerability2008-11-19
 wPortfolio <= 0.3 Remote Arbitrary File Upload Exploit2008-11-19
 Pre Job Board (Auth Bypass) Remote SQL Injection Vulnerability2008-11-19
 No-IP DUC <= 2.1.7 Remote Code Execution Exploit2008-11-18
 CUPS 1.3.7 CSRF (add rss subscription) Remote Crash Exploit2008-11-18
 Pluck CMS 4.5.3 (g_pcltar_lib_dir) Local File Inclusion Vulnerability2008-11-18
 Musicbox 2.3.8 (viewalbums.php artistId) SQL Injection Vulnerability2008-11-18
 Free Directory Script 1.1.1 (API_HOME_DIR) RFI Vulnerability 2008-11-18
 E-topbiz Link Back Checker 1 Insecure Cookie Handling Vulnerability2008-11-18
 Opera 9.62 file:// Local Heap Overflow Exploit2008-11-17
 Q-Shop 3.0 Remote XSS/SQL Injection Vulnerabilities2008-11-17
 FREEze Greetings 1.0 Remote Password Retrieve Exploit2008-11-17
 Myiosoft easygallery (catid) Blind SQL Injection Vulnerability2008-11-17
 E-topbiz AdManager 4 (group) Blind SQL Injection Vulnerability2008-11-17
 OpenASP <= 3.0 Blind SQL Injection Vulnerability2008-11-17
 mxCamArchive 2.2 Bypass Config Download Vulnerability2008-11-17
 Chilkat Socket activex 2.3.1.1 Remote Arbitrary File Creation Exploit2008-11-17
 Jadu Galaxies (categoryID) Blind SQL Injection Vulnerability2008-11-17
 phpfan 3.3.4 (init.php includepath) Remote File Inclusion Vulnerability2008-11-17
 SaturnCMS (view) Blind SQL Injection Vulnerability2008-11-17
 Simple Customer 1.2 (Auth Bypass) SQL Injection Vulnerability2008-11-17
 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Vulnerability2008-11-17
 Ultrastats 0.2.144/0.3.11 (index.php serverid) SQL Injection Vulnerability2008-11-17
 VideoScript <= 4.0.1.50 Admin Change Password Exploit2008-11-17
 FloSites Blog Multiple Remote SQL Injection Vulnerabilities2008-11-16
 MS Windows Server Service Code Execution Exploit (MS08-067) (2k/2k3)2008-11-16
 yahoo answers (id) Remote SQL Injection Vulnerability2008-11-16
 phpstore Wholesale (track.php?id) SQL Injection Vulnerability2008-11-16
 Lazarus Guestbook 1.x Insecure Cookie Handling Vulnerability2008-11-15
 VeryPDF PDFView OCX ActiveX OpenPDF Heap Overflow PoC2008-11-15
 ClipShare Pro 2006-2007 (chid) SQL Injection Vulnerability2008-11-15
 Sudo <= 1.6.9p18 (Defaults setenv) Local Privilege Escalation Exploit2008-11-15
 Minigal b13 (index.php list) Remote File Disclosure Exploit2008-11-15
 SlimCMS <= 1.0.0 (edit.php) Remote SQL Injection Exploit2008-11-14
 Bankoi Webhost Panel 1.20 (Auth Bypass) SQL Injection Vulnerability2008-11-14
 Discuz! 6.x/7.x Remote Code Execution Exploit2008-11-14
 turnkeyforms Text Link Sales Auth Bypass Vulnerability2008-11-14
 GS Real Estate Portal US/International Module Multiple Vulnerabilities2008-11-14
 AlstraSoft Web Host Directory 1.2 Multiple Vulnerabilities2008-11-14
 turnkeyforms Text Link Sales (id) XSS/SQL Injection Vulnerability2008-11-14
 X7 Chat 2.0.5 (Auth Bypass) SQL Injection Vulnerability2008-11-14
 GS Real Estate Portal Multiple SQL Injection Vulnerability2008-11-14
 SmbRelay3 NTLM Replay Attack Tool/Exploit (MS08-068)2008-11-14
 Pi3Web <= 2.0.13 (ISAPI) Remote Denial of Service Exploit2008-11-13
 BandSite CMS 1.1.4 Insecure Cookie Handling Vulnerability2008-11-13
 ScriptsFeed (SF) Recipes Listing Portal Remote File Upload Vulnerability2008-11-13
 ScriptsFeed (SF) Auto Classifieds Software Remote File Upload Vuln2008-11-13
 ScriptsFeed (SF) Real Estate Classifieds Software File Upload Vuln2008-11-13
 MemHT Portal 4.0.1 SQL Injection Code Execution Exploit2008-11-13
 Castle Rock Computing SNMPc < 7.1.1 (Community) Remote BOF PoC2008-11-12
 Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC2008-11-12
 MS Windows Server Service Code Execution Exploit (MS08-067)2008-11-12
 AlstraSoft Web Host Directory (Auth Bypass) SQL Injection Vuln2008-11-12
 AlstraSoft Article Manager Pro (Auth Bypass) SQL Injection Vuln2008-11-12
 AlstraSoft SendIt Pro Remote File Upload Vulnerability2008-11-12
 Quick Poll Script (code.php id) Remote SQL Injection Vulnerability2008-11-12
 turnkeyforms Web Hosting Directory Multiple Vulnerabilities2008-11-12
 turnkeyforms Local Classifieds Auth Bypass Vulnerability2008-11-12
 ooVoo 1.7.1.35 (URL Protocol) Remote Unicode Buffer Overflow PoC2008-11-11
 Aj Classifieds Authentication Bypass Vulnerability2008-11-11
 smcFanControl 2.1.2 Multiple Buffer Overflow Vulnerabilities PoC (OSX)2008-11-11
 Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit2008-11-11
 Pre Real Estate Listings File Upload Vulnerability2008-11-11
 Joomla Component Contact Info 1.0 SQL Injection Vulnerability2008-11-11
 Joomla Component com_books (book_id) SQL Injection Vulnerability2008-11-11
 Joomla/ Mambo com_catalogproduction (id) SQL Injection Vulnerability2008-11-11
 PozScripts Business Directory Script (id) Remote SQL Injection Vuln2008-11-11
 Joomla Component com_marketplace 1.3.1 (catid) SQL Injection Vuln2008-11-11
 Joomla Component Simple RSS Reader 1.0 RFI Vulnerability2008-11-11
 Collabtive 0.4.8 (XSS/Auth Bypass/Upload) Multiple Vulnerabilities2008-11-10
 Joomla Component JooBlog 0.1.1 (PostID) SQL Injection Vulnerability2008-11-10
 OTManager CMS 2.4 (Tipo) Remote File Inclusion Vulnerability2008-11-10
 Fresh Email Script 1.0 Multiple Remote Vulnerabilities2008-11-10
 FREEsimplePHPguestbook (guestbook.php) Remote Code Execution Vulnerability 2008-11-10
 PHPStore Real Estate Remote File Upload Vulnerability2008-11-10
 PHPStore Complete Classifieds Script File Upload Vulnerability2008-11-10
 PHPStore PHP Job Search Script Remote File Upload Vulnerability2008-11-10
 PHPStore Car Dealers Remote File Upload Vulnerability2008-11-10
 AJ ARTICLE Remote Authentication Bypass Vulnerability2008-11-10
 AJ Auction Authentication Bypass Vulnerability2008-11-10
 AJSquare Free Polling Script (DB) Multiple Vulnerabilities2008-11-10
 ExoPHPDesk 1.2 Final (Auth Bypass) SQL Injection Vulnerability2008-11-09
 ZEEMATRI 3.0 (bannerclick.php adid) SQL Injection Vulnerability2008-11-09
 Openfire Server <= 3.6.0a (Auth Bypass/SQL/XSS) Multiple Vulnerabilities2008-11-09
 X10media Mp3 Search Engine <= 1.6 Remote File Disclosure Vulnerability2008-11-09
 MemHT Portal <= 4.0 Remote Code Execution Exploit2008-11-08
 GE Proficy Real Time Information Portal Credentials Leak Sniffer (meta)2008-11-08
 V3 Chat Profiles/Dating Script 3.0.2 (Auth Bypass) SQL Injection Vuln2008-11-08
 2WIRE DSL Router (xslt) Denial of Service Vulnerability2008-11-08
 Enthusiast 3.1.4 (show_joined.php path) Remote File Inclusion Vuln2008-11-08
 zeeproperty 1.0 (Upload/XSS) Multiple Remote Vulnerabilities2008-11-08
 V3 Chat - Profiles/Dating Script 3.0.2 Insecure Cookie Handling Vuln2008-11-08
 ZEEJOBSITE 2.0 Remote File Upload Vulnerability2008-11-08
 Mambo Component n-form (form_id) Blind SQL Injection Exploit2008-11-08
 Cyberfolio <= 7.12.2 (css.php theme) Local File Inclusion Vulnerability2008-11-08
 DigiAffiliate <= 1.4 (Auth Bypass) SQL Injection Vulnerability2008-11-08
 Zeeways Shaadi Clone 2.0 Auth Bypass Vulnerability2008-11-08
 Zeeways PHOTOVIDEOTUBE 1.1 Auth Bypass Vulnerability2008-11-08
 V3 Chat Live Support 3.0.4 Insecure Cookie Handling Vulnerability2008-11-08
 Mole Group Airline Ticket Script (Auth Bypass) SQL Injection Vuln2008-11-08
 turnkeyforms Business Survey Pro 1.0 (id) SQL Injection Vuln2008-11-07
 turnkeyforms Entertainment Portal 2.0 Insecure Cookie Handling Vuln2008-11-07
 E-topbiz Domain Shop v2.0 (Auth Bypass) SQL Injection Vulnerability2008-11-07
 E-topbiz Slide Popups 1.0 (Auth Bypass) SQL Injection Vuln2008-11-07
 turnkeyforms Local Classifieds (XSS/SQL) Multiple Vulnerabilities2008-11-07
 U&M Software Event Lister 1.0 Auth Bypass Vulnerability2008-11-07
 U&M Software JustBookIt 1.0 Auth Bypass Vulnerability2008-11-07
 U&M Software Signup 1.1 Auth Bypass Vulnerability2008-11-07
 e-Vision CMS <= 2.0.2 Multiple Local File Inclusion Exploit2008-11-07
 Mole Group Pizza (manufacturers_id) Script SQL Injection Vuln2008-11-07
 E-topbiz Online Store 1 (Auth Bypass) SQL Injection Vuln2008-11-07
 Joomla Component Feederator 1.0.5 Multiple RFI Vulnerabilities2008-11-07
 Joomla Component Recly!Competitions 1.0.0 Multiple RFI Vulnerabilities2008-11-07
 Joomla Component Clickheat 1.0.1 Multiple RFI Vulnerabilities2008-11-07
 DeltaScripts PHP Classifieds <= 7.5 SQL Injection Vulnerability2008-11-07
 MyioSoft EasyCalendar (Auth Bypass) Remote SQL Injection Vulnerability2008-11-07
 MyioSoft EasyBookMarker (Auth Bypass) SQL Injection Vulnerability2008-11-07
 MyioSoft Ajax Portal 3.0 (Auth Bypass) QL Injection Vulnerability2008-11-07
 Mole Group Rental Script (Auth Bypass) SQL Injection Vuln2008-11-07
 PHP Auto Listings Script (Auth Bypass) SQL Injection Vuln2008-11-07
 E-topbiz Number Links 1 (id) Remote SQL Injection Vulnerability2008-11-07
 Mini Web Calendar 1.2 (File Disclosure/XSS) Multiple Vulnerabilities2008-11-07
 E-topbiz Online Store 1 (cat_id) SQL Injection Vulnerability2008-11-07
 Anti-Keylogger Elite 3.3.0 (AKEProtect.sys) Privilege Escalation Exploit2008-11-07
 Myiosoft EasyBookMarker v4 (Parent) SQL Injection Vulnerability2008-11-07
 Domain Seller Pro 1.5 (id) Remote SQL Injection Vulnerability2008-11-07
 VLC Media Player < 0.9.6 .RT Stack Buffer Overflow Exploit2008-11-07
 SpeedStream 5200 Authentication Bypass Config Download Vulnerability2008-11-07
 DevelopItEasy Photo Gallery 1.2 SQL Injection Vulnerabilities2008-11-06
 DevelopItEasy Membership System 1.3 (Auth Bypass) SQL Injection2008-11-06
 DevelopItEasy News And Article System 1.4 SQL Injection Vulns2008-11-06
 DevelopItEasy Events Calendar 1.2 Multiple SQL Injection Vulnerabilities2008-11-06
 hMAilServer 4.4.2 (PHPWebAdmin) File Inclusion Vulnerabilities2008-11-06
 Pre ADS Portal <= 2.0 (Auth Bypass/XSS) Multiple Vulnerabilities2008-11-06
 Arab Portal 2.1 Remote File Disclosure Vulnerability (win only)2008-11-06
 NICE FAQ Script (Auth Bypass) SQL Injection Vulnerability2008-11-06
 LoveCMS 1.6.2 Final Arbitrary File Delete Vulnerability2008-11-06
 SoftComplex PHP Image Gallery 1.0 (Auth Bypass) SQL Injection Vuln2008-11-06
 MySQL Quick Admin 1.5.5 Local File Inclusion Vulnerability2008-11-06
 DeltaScripts PHP Shop 1.0 (Auth Bypass) SQL Injection Vulnerability2008-11-06
 DeltaScripts PHP Links <= 1.3 (Auth Bypass) SQL Injection Vuln 2008-11-06
 DeltaScripts PHP Classifieds <= 7.5 (Auth Bypass) SQL Injection Vuln2008-11-06
 turnkeyforms Software Directory (XSS/SQL) Multiple Vulnerabilities2008-11-06
 SoftComplex PHP Image Gallery (ctg) SQL Injection Vulnerability2008-11-06
 Adobe Reader / Acrobat <= 8.1.2 Code Execution Exploit (APSB08-19)2008-11-05
 Pre Podcast Portal (Tour.php id) SQL Injection Vulnerability2008-11-05
 PHPX 3.5.16 (news_id) Remote SQL Injection Exploit2008-11-05
 phpBB Mod Small ShoutBox 1.4 Remote Edit/Delete Messages Vuln2008-11-05
 Pre Classified Listings Insecure Cookie Handling Vulnerability2008-11-05
 Pre Multi-Vendor Shopping Malls Multiple Remote Vulnerabilities2008-11-05
 Pre Shopping Mall Insecure Cookie Handling Vulnerability2008-11-05
 PHP JOBWEBSITE PRO (Auth Bypass) SQL Injection Vulnerability2008-11-05
 Pre Simple CMS (Auth Bypass) SQL Injection Vulnerability2008-11-05
 PHP Auto Listings (moreinfo.php pg) SQL Injection Vulnerability2008-11-05
 Joomla Component Dada Mail Manager 2.6 RFI Vulnerability2008-11-05
 DFLabs PTK <= 1.0 Local Command Execution Vulnerability2008-11-05
 Mole Group Taxi Calc Dist Script (Auth Bypass) SQL Injection Vuln2008-11-05
 Mole Group Airline Ticket Script SQL Injection Vulnerability2008-11-05
 Pre Real Estate Listings (Auth Bypass) SQL Injection Vulnerability2008-11-05
 HarlandScripts drinks (recid) Remote SQL Injection Velnerability2008-11-05
 Adobe Reader util.printf() JavaScript Function Stack Overflow Exploit #22008-11-05
 Simple Machines Forum <= 1.1.6 (LFI) Code Execution Exploit2008-11-05
 TBmnetCMS 1.0 (index.php content) Local File Inclusion Vulnerability2008-11-04
 Joomla Component VirtueMart Google Base 1.1 RFI Vulnerability2008-11-04
 Multi Languages WebShop Online 1.02 (SQL/XSS) Multiple Vulnerabilities2008-11-04
 Joomla Component ongumatimesheet20 4b RFI Vulnerability2008-11-04
 Vibro-CMS Multiple Remote SQL Injection Vulnerabilities2008-11-04
 WEBBDOMAIN Post Cart <= 1.02 (catid) SQL Injection Vulnerability2008-11-04
 Tours Manager v1 (cityview.php cityid) SQL Injection Vulnerability2008-11-04
 Simple Document Management System 1.1.4 SQL Injection Auth Bypass2008-11-04
 WEBBDOMAIN Webshop <= 1.02 (SQL Injection) Auth Bypass Vuln2008-11-04
 WEBBDOMAIN Quiz <= 1.02 (Auth Bypass) SQL Injection Vulnerability2008-11-04
 WEBBDOMAIN Polls 1.01 (SQL Injection) Auth Bypass Vulnerability2008-11-04
 WEBBDOMAIN Petition 1.02/2.0/3.0 (SQL Injection) Auth Bypass Vuln2008-11-04
 CMS-School 2005 (showarticle.php) Remote SQL injection Vulnerability2008-11-04
 Vibro-School-CMS (nID) Remote SQL injection Vulnerability2008-11-04
 Joomla Component ProDesk 1.0/1.2 Local File Inclusion Vulnerability2008-11-04
 nicLOR Puglia Landscape (id) Local File Inclusion Vulnerability2008-11-04
 nicLOR Sito includefile Local File Inclusion Vulnerabilities2008-11-04
 WEBBDOMAIN Post Cart <= 1.02 (SQL Injection) Auth Bypass Vuln2008-11-04
 Simple Machines Forum (SMF) 1.1.6 Remote Code Execution Exploit2008-11-04
 wotw <= 5.0 Local/Remote File Inclusion Vulnerability2008-11-04
 TR News <= 2.1 (login.php) Remote Login Bypass Exploit2008-11-04
 Acc PHP eMail 1.1Insecure Cookie Handling Vulnerability2008-11-03
 Acc Statistics 1.1Insecure Cookie Handling Vulnerability2008-11-03
 Acc Real Estate 4.0 Insecure Cookie Handling Vulnerability2008-11-03
 Chilkat Crypt Activex Arbitrary File Creation/Execution PoC2008-11-03
 BosDev BosClassifieds (cat_id) SQL Injection Vulnerability2008-11-03
 Apoll 0.7b (SQL Injection) Remote Auth Bypass Vulnerability2008-11-03
 Acc Autos 4.0 Insecure Cookie Handling Vulnerability2008-11-03
 MatPo Link 1.2b (view.php id) Remote SQL Injection Vulnerability2008-11-03
 MatPo Link 1.2b (Blind SQL Injection/XSS) Multiple Vulnerabilities2008-11-03
 Agavi 1.0.0 beta 5 (cmplang) Remote File Disclosure Vulnerability2008-11-03
 pppBlog <= 0.3.11 (randompic.php) File Disclosure Vulnerability2008-11-03
 NetRisk <= 2.0 (XSS/SQL Injection) Remote Vulnerabilities2008-11-02
 Apartment Search Script (RFU/XSS) Multiple Remote Vulnerabilities2008-11-02
 Joovili 3.1.4 Insecure Cookie Handling Vulnerability2008-11-02
 Maran PHP Shop (admin.php) Insecure Cookie Handling Vulnerability2008-11-02
 Maran PHP Shop (prod.php cat) SQL Injection Vulnerability2008-11-02
 YourFreeWorld Shopping Cart (index.php c) Blind SQL Injection Vuln2008-11-02
 Downline Goldmine newdownlinebuilder (tr.php id) SQL Injection Vuln2008-11-02
 Downline Goldmine paidversion (tr.php id) SQL Injection Vulnerability2008-11-02
 deV!Lz Clanportal [DZCP] <= 1.4.9.6 Blind SQL Injection Exploit2008-11-02
 1st News (products.php id) Remote SQL Injection Vulnerability2008-11-02
 Chipmunk CMS (reguser.php) Add Admin Exploit (html)2008-11-02
 Maran PHP Shop (prodshow.php) SQL Injection Vulnerability2008-11-02
 GE Fanuc Real Time Information Portal 2.6 writeFile() API Exploit (meta)2008-11-01
 SFS EZ Gaming Cheats (id) Remote SQL Injection vulnerability2008-11-01
 SFS EZ Pub Site (directory.php cat) SQL Injection Vulnerability2008-11-01
 SFS EZ Webstore (where) Remote SQL Injection Vulnerability2008-11-01
 Article Publisher PRO 1.5 Insecure Cookie Handling Vulnerability2008-11-01
 Joomla Component Flash Tree Gallery 1.0 RFI Vulnerability2008-11-01
 AJ ARTICLE (featured_article.php mode) SQL injection Vulnerability2008-11-01
 FTP Now 2.6 Server Response Remote Crash PoC2008-11-01
 Bloggie Lite 0.0.2 Beta SQL Injection by Insecure Cookie Handling2008-11-01
 GO4I.NET ASP Forum 1.0 (forum.asp iFor) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Autoresponder Hosting (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Blog Blaster (id) Remote SQL Injection Vulnerability2008-11-01
 YourFreeWorld Banner Management (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Downline Builder (id) Remote SQL Injection Vulnerability2008-11-01
 Shahrood (ndetail.php id) Blind SQL Injection Vulnerability2008-11-01
 Micro CMS <= 0.3.5 Remote (Add/Delete/Password Change) Exploit2008-11-01
 AJ ARTICLE (SQL Injection) Remote Auth Bypass Vulnerability2008-11-01
 YourFreeWorld Programs Rating (details.php id) SQL Injection Vuln2008-11-01
 YourFreeWorld Classifieds Hosting (id) SQL Injection Vulnerability2008-11-01
 Downline Goldmine Category Addon (id) SQL Injection Vulnerability2008-11-01
 Downline Goldmine Builder (tr.php id) Remote SQL Injection Vulnerability2008-11-01
 YourFreeWorld Classifieds (category) Remote SQL Injection Vulnerability2008-11-01
 YourFreeWorld Classifieds Blaster (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Reminder Service (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Scrolling Text Ads (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Viral Marketing (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld Short Url & Url Tracker (id) SQL Injection Vuln2008-11-01
 YourFreeWorld Forced Matrix Script (id) SQL Injection Vulnerability2008-11-01
 YourFreeWorld URL Rotator (id) Remote SQL Injection Vulnerability2008-11-01
 Tribiqcms 5.0.9a (beta) Insecure Cookie Handling Vulnerability2008-10-31
 e107 Plugin lyrics_menu (lyrics_song.php l_id) SQL Injection Vulnerability2008-10-31
 Cybershade CMS 0.2b Remote File Inclusion Vulnerability2008-10-31
 Absolute Control Panel XE 1.5 Insecure Cookie Handling Vulnerability2008-10-31
 Absolute Live Support 5.1 Insecure Cookie Handling Vulnerability2008-10-31
 Absolute Form Processor 4.0 Insecure Cookie Handling Vulnerability2008-10-31
 Absolute Banner Manager Insecure Cookie Handling Vulnerability2008-10-31
 Absolute Content Rotator 6.0 Insecure Cookie Handling Vulnerability2008-10-31
 Tribiq CMS 5.0.10a Local File Inclusion Vulnerability (win)2008-10-31
 SFS EZ Adult Directory (directory.php id) SQL Injection Vulnerability2008-10-31
 SFS EZ Gaming Directory (directory.php id) SQL Injection Vulnerability2008-10-31
 Absolute News Manager 5.1 Insecure Cookie Handling Vulnerability2008-10-31
 A-Link WL54AP3 and WL54AP2 CSRF+XSS Vulnerability2008-10-31
 U-Mail Webmail 4.91 (edit.php) Arbitrary File Write Vulnerability2008-10-31
 cpanel 11.x XSS / Local File Inclusion Vulnerability2008-10-31
 Logz podcast CMS 1.3.1 (add_url.php art) SQL Injection Vulnerability2008-10-31
 SFS EZ BIZ PRO (track.php id) Remote SQL Injection Vulnerability2008-10-31
 Adult Banner Exchange Website (targetid) SQL Injection Vulnerability2008-10-31
 SFS EZ Link Directory (cat_id) Remote SQL Injection Vulnerability2008-10-31
 SFS EZ Home Business Directory (cat_id) SQL Injection Vulnerability2008-10-31
 SFS EZ Gaming Directory (cat_id) Remote SQL Injection Vulnerability2008-10-31
 SFS EZ Hosting Directory (cat_id) Remote SQL Injection Vulnerability2008-10-31
 Absolute Newsletter 6.1 Insecure Cookie Handling Vulnerability2008-10-31
 SFS EZ Hotscripts-like Site (cid) Remote SQL Injection Vulnerability2008-10-31
 Absolute FAQ Manager 6.0 Insecure Cookie Handling Vulnerability2008-10-31
 Absolute News Feed 1.0 Remote Insecure Cookie Handling Vulnerability2008-10-31
 SFS EZ Webring (cat) Remote SQL Injection Vulnerability2008-10-31
 Article Publisher PRO 1.5 (SQL Injection) Auth Bypass Vulnerability2008-10-31
 SFS EZ Affiliate (cat_id) Remote SQL Injection Vulnerability2008-10-31
 SFS EZ Top Sites (topsite.php ts) Remote SQL Injection Vulnerability2008-10-31
 SFS EZ Career (content.php topic) SQL Injection Vulnerability2008-10-31
 SFS EZ Auction (viewfaqs.php cat) Blind SQL Injection Vulnerability2008-10-31
 Article Publisher PRO (userid) Remote SQL Injection Exploit2008-10-31
 ModernBill <= 4.4.x XSS / Remote File Inclusion Vulnerability2008-10-31
 SFS EZ Software (id) Remote SQL Injection Vulnerability2008-10-31
 SFS EZ Hot or Not (phid) Remote SQL Injection Vulnerability2008-10-31
 DjVu ActiveX Control 3.0 ImageURL Property Overflow Exploit2008-10-30
 MyPHP Forum <= 3.0 Edit Topics/Blind SQL Injection Vulnerabilities2008-10-30
 Opera 9.61 opera:historysearch Code Execution Exploit PoC2008-10-30
 Absolute Poll Manager XE 4.1 Cookie Handling Vulnerability2008-10-30
 Absolute Podcast 1.0 Remote Insecure Cookie Handling Vulnerability2008-10-30
 Absolute File Send 1.0 Remote Cookie Handling Vulnerability2008-10-30
 Opera 9.62 (opera:allinone) Remote Code Execution Exploit PoC2008-10-30
 PacketTrap TFTPD 2.2.5459.0 Remote Denial of Service Exploit2008-10-29
 H2O-CMS <= 3.4 Insecure Cookie Handling Vulnerability2008-10-29
 Wordpress Plugin e-Commerce <= 3.4 Arbitrary File Upload Exploit2008-10-29
 7Shop <= 1.1 Remote Arbitrary File Upload Exploit2008-10-29
 e107 Plugin fm pro v1 (FD/Upload/DT) Multiple Remote Vulnerabilities2008-10-29
 Sepal SPBOARD 4.5 (board.cgi) Remote Command Exec Vulnerability2008-10-29
 MW6 PDF417 ActiveX (MW6PDF417.dll) Remote Insecure Method Exploit2008-10-29
 MW6 DataMatrix ActiveX (DataMatrix.dll) Insecure Method Exploit2008-10-29
 MW6 Barcode ActiveX (Barcode.dll) Insecure Method Exploit2008-10-29
 MW6 Aztec ActiveX (Aztec.dll) Remote Insecure Method Exploit2008-10-29
 WebCards <= 1.3 Remote SQL Injection Vulnerability2008-10-29
 Mambo Component SimpleBoard <= 1.0.1 Arbitrary File Upload Exploit2008-10-29
 Venalsur on-line Booking Centre (OfertaID) XSS/SQL Injection Vulns2008-10-29
 Visagesoft eXPert PDF ViewerX (VSPDFViewerX.ocx) File Overwrite2008-10-29
 Harlandscripts Pro Traffic One (mypage.php) SQL Injection Vulnerability2008-10-29
 Pro Traffic One (poll_results.php id) Remote SQL Injection Vulnerability2008-10-29
 e107 Plugin BLOG Engine 2.1.4 Remote SQL Injection Vulnerability2008-10-28
 PersianBB (iranian_music.php id) Remote SQL Injection Vulnerability2008-10-28
 MyForum 1.3 Insecure Cookie Handling Vulnerability2008-10-28
 TlGuestBook 1.2 Insecure Cookie Handling Vulnerability2008-10-28
 Agares ThemeSiteScript 1.0 (loadadminpage) RFI Vulnerability2008-10-28
 H2O-CMS <= 3.4 Remote Command Execution Exploit (mq = off)2008-10-28
 TlAds v1 Remote Insecure Cookie Handling Vulnerability2008-10-27
 Persia BME E-Catalogue Remote SQL Injection Vulnerability2008-10-27
 MyForum 1.3 (padmin) Local File Inclusion Vulnerability2008-10-27
 MyKtools 2.4 (langage) Local File Inclusion Vulnerability2008-10-27
 e107 Plugin alternate_profiles (id) SQL Injection Vulnerability2008-10-27
 Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit2008-10-27
 Aiocp 1.4 (poll_id) Remote SQL Injection Vulnerability2008-10-27
 Questcms (XSS/Directory Traversal/SQL) Multiple Remote Vulnerabilities2008-10-27
 e107 Plugin EasyShop (category_id) Blind SQL Injection Exploit2008-10-27
 MyKtools 2.4 Arbitrary Database Backup Vulnerability2008-10-27
 PozScripts Classified Ads Script (gotourl.php id) SQL Injection Vuln2008-10-26
 PowerTCP FTP module Multiple Technique Exploit (SEH/HeapSpray)2008-10-26
 WordPress Media Holder (mediaHolder.php id) SQL Injection Vuln2008-10-26
 MS Windows Server Service Code Execution Exploit (MS08-067) (cn univ.)2008-10-26
 Ads Pro (dhtml.pl page) Remote Command Execution Exploit2008-10-26
 MyForum 1.3 (lecture.php id) Remote SQL Injection Exploit2008-10-26
 SFS Ez Forum (forum.php id) SQL Injection Vulnerability2008-10-26
 Kasra CMS (index.php) Multiple SQL Injection Vulnerabilities2008-10-25
 Tlnews 2.2 Insecure Cookie Handling Vulnerability2008-10-25
 PumpKIN TFTP Server 2.7.2.0 Denial of Service Exploit (meta)2008-10-25
 Joomla Component Kbase 1.0 Remote SQL Injection Vulnerability2008-10-24
 Joomla Component Archaic Binary Gallery Directory Traversal Vuln2008-10-24
 db Software Laboratory VImpX (VImpX.ocx) Multiple Vulnerabilities2008-10-24
 NEPT Image Uploader 1.0 Arbitrary Shell Upload Vulnerability2008-10-24
 Aj RSS Reader (EditUrl.php url) SQL Injection Vulnerability2008-10-24
 BuzzyWall 1.3.1 (download id) Remote File Disclosure Vulnerability2008-10-24
 vicFTP 5.0 (LIST) Remote Denial of Service Exploit2008-10-24
 PHPdaily (SQL/XSS/LFD) Multiple Remote Vulnerabilities2008-10-24
 KVIrc 3.4.0 Virgo Remote Format String Exploit PoC2008-10-24
 TUGzip 3.00 archiver .ZIP File Local Buffer Overflow Exploit2008-10-24
 txtshop 1.0b (language) Local File Inclusion Vulnerability (win only)2008-10-23
 SilverSHielD 1.0.2.34 (opendir) Denial of Service Exploit2008-10-23
 CSPartner 1.0 (Delete All Users/SQL Injection) Remote Exploit2008-10-23
 Opera 9.52/9.60 Stored Cross Site Scripting Code Exec PoC2008-10-23
 Joomla Component RWCards 3.0.11 Local File Inclusion Vulnerability2008-10-23
 MindDezign Photo Gallery 2.2 Arbitrary Add Admin Exploit2008-10-23
 MindDezign Photo Gallery 2.2 (index.php id) SQL Injection Vulnerability2008-10-23
 aflog 1.01 Multiple Insecure Cookie Handling Vulnerabilies2008-10-23
 miniPortail <= 2.2 (XSS/LFI) Remote Vulnerabilities2008-10-23
 WebSVN <= 2.0 (XSS/FH/CE) Multiple Remote Vulnerabilities 2008-10-23
 VLC 0.9.4 .TY File Buffer Overflow Exploit (SEH)2008-10-23
 MS Windows Server Service Code Execution PoC (MS08-067)2008-10-23
 SiteEngine 5.x Multiple Remote Vulnerabilities2008-10-23
 freeSSHd 1.2.1 sftp rename Remote Crash Exploit2008-10-22
 Opera <= 9.60 Stored Cross Site Scripting Vulnerability2008-10-22
 Joomla Component Daily Message 1.0.3 (id) SQL Injection Vuln2008-10-22
 Iamma Simple Gallery 1.0/2.0 Arbitrary File Upload Vulnerability2008-10-22
 GoodTech SSH (SSH_FXP_OPEN) Remote Buffer Overflow Exploit2008-10-22
 freeSSHd 1.2.1 sftp realpath Remote Buffer Overflow PoC (auth)2008-10-22
 YDC (kdlist.php cat) Remote SQL Injection Vulnerability2008-10-22
 DorsaCms (ShowPage.aspx) Remote SQL Injection Vulnerability2008-10-22
 Joomla Component ionFiles 4.4.2 File Disclosure Vulnerability2008-10-22
 LoudBlog <= 0.8.0a (ajax.php) SQL Injection Vulnerability (auth)2008-10-22
 phpcrs <= 2.06 (importFunction) Local File Inclusion Vulnerability2008-10-22
 LibSPF2 < 1.2.8 DNS TXT Record Parsing Bug Heap Overflow PoC2008-10-22
 Limbo CMS (Private Messaging Component) SQL Injection Vulnerability2008-10-21
 LightBlog 9.8 (GET,POST,COOKIE) Multiple LFI Vulnerabilities2008-10-21
 VLC Media Player TY File Stack Based Buffer Overflow Exploit2008-10-21
 ShopMaker 1.0 (product.php id) Remote SQL Injection Vulnerability2008-10-21
 Joomla Component Nice Talk (tagid) SQL Injection Vulnerability2008-10-20
 Dart Communications PowerTCP FTP module Remote BOF Exploit2008-10-20
 Joomla Component ds-syndicate (feed_id) SQL Injection Vulnerability2008-10-20
 XOOPS Module makale Remote SQL Injection Vulnerability2008-10-20
 Wysi Wiki Wyg 1.0 (LFI/XSS/PHPInfo) Remote Vulnerabilities2008-10-20
 Fast Click SQL 1.1.7 Lite (init.php) Remote File Inclusion Vulnerability2008-10-19
 BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit2008-10-19
 Solaris 9 [UltraSPARC] sadmind Remote Root Exploit2008-10-19
 yappa-ng <= 2.3.3-beta0 (album) Local File Inclusion Vulnerability2008-10-19
 e107 <= 0.7.13 (user_hidden_fields) Remote Blind SQL Injection Exploit2008-10-19
 WBB Plugin rGallery 1.09 (itemID) Blind SQL Injection Exploit2008-10-19
 Vivvo CMS <= 3.4 Multiple Vulnerabilities Destroyer Exploit2008-10-19
 PHP Easy Downloader <= 1.5 Remote File Creation Exploit2008-10-18
 Nuke ET <= 3.4 (fckeditor) Remote Arbitrary File Upload Exploit2008-10-18
 miniBloggie 1.0 (del.php) Remote Blind SQL Injection Exploit2008-10-18
 Meeting Room Booking System (MRBS) < 1.4 SQL Injection Exploit2008-10-18
 zeeproperty (adid) Remote SQL Injection Vulnerability2008-10-18
 phpFastNews 1.0.0 Insecure Cookie Handling Vulnerability2008-10-18
 XOOPS Module GesGaleri (kategorino) Remote SQL Injection Exploit2008-10-18
 Solaris 9 PortBind XDR-DECODE taddr2uaddr() Remote DoS Exploit2008-10-17
 Hummingbird Deployment Wizard 2008 Registry Values Creation/Change2008-10-17
 Hummingbird Deployment Wizard 2008 ActiveX Command Execution2008-10-17
 Hummingbird Deployment Wizard 2008 ActiveX File Execution(2)2008-10-17
 Wordpress Plugin st_newsletter (stnl_iframe.php) SQL Injection Vuln2008-10-17
 Hummingbird <= 13.0 ActiveX Remote Buffer Overflow PoC2008-10-16
 Kure 0.6.3 (index.php post,doc) Local File Inclusion Vulnerability2008-10-16
 PokerMax Poker League Insecure Cookie Handling Vulnerability2008-10-16
 IP Reg <= 0.4 Multiple Remote SQL Injection Vulnerabilities2008-10-16
 Mic_blog 0.0.3 (SQL Injection/Privilege Escalation) Remote Exploit2008-10-16
 Mosaic Commerce (category.php cid) SQL Injection Vulnerability2008-10-16
 CafeEngine Multiple Remote SQL Injection Vulnerabilities2008-10-16
 Calendars for the Web 4.02 Admin Auth Bypass Vulnerability2008-10-16
 PHP Easy Downloader 1.5 (file) File Disclosure Vulnerability2008-10-16
 iGaming CMS 2.0 Alpha 1 (search.php) Remote SQL Injection Exploit2008-10-16
 Mantis Bug Tracker <= 1.1.3 Remote Code Execution Exploit2008-10-16
 Post Affiliate Pro 2.0 (index.php md) Local File Inclusion Vulnerability2008-10-16
 myEvent 1.6 (viewevent.php) Remote SQL Injection Vulnerability2008-10-15
 myStats (hits.php) Multiple Remote Vulnerabilities Exploit2008-10-15
 AstroSPACES (id) Remote SQL Injection Vulnerability2008-10-15
 MS Windows XP/2003 AFD.sys Privilege Escalation Exploit (K-plugin) 2008-10-15
 WP Comment Remix 1.4.3 Remote SQL Injection Exploit2008-10-14
 XOOPS Module xhresim (index.php no) Remote SQL Injection Vuln2008-10-14
 Nuked-klaN <= 1.7.7 / <= SP4.4 Multiple Vulnerabilities Exploit2008-10-14
 Telecom Italia Alice Pirelli routers Backdoor from internal LAN/WAN2008-10-14
 Eserv 3.x FTP Server (ABOR) Remote Stack Overflow PoC2008-10-14
 SezHoo 0.1 (IP) Remote File Inclusion Vulnerability2008-10-14
 Titan FTP server 6.26 build 630 Remote Denial of Service Exploit2008-10-14
 VLC 0.9.2 Media Player XSPF Memory Corruption Vulnerability2008-10-14
 PhpWebGallery <= 1.7.2 Session Hijacking / Code Execution Exploit2008-10-14
 My PHP Dating (success_story.php id) SQL Injection Vulnerability2008-10-14
 RaidenFTPD 2.4 build 3620 Remote Denial of Service Exploit2008-10-13
 XM Easy Personal FTP Server 5.6.0 Remote Denial of Service Exploit2008-10-13
 LokiCMS 0.3.4 Remote Command Execution Exploit2008-10-13
 LokiCMS 0.3.4 (admin.php) Create Local File Inclusion Exploit2008-10-13
 IndexScript 3.0 (sug_cat.php parent_id) SQL Injection Vulnerability2008-10-13
 ParsBlogger (links.asp id) Remote SQL Injection Vulnerability2008-10-13
 MS Windows InternalOpenColorProfile Heap Overflow PoC (MS08-046)2008-10-12
 mini-pub 0.3 (FD/CE) Multiple Remote Vulnerabilities2008-10-12
 mini-pub 0.3 Local Directory Traversal / File Disclosure Vulnerabilities2008-10-12
 Real Estate Scripts 2008 (index.php cat) SQL Injection Vulnerability2008-10-12
 Globsy <= 1.0 Remote File Rewriting Exploit2008-10-12
 LokiCMS <= 0.3.4 (index.php page) Arbitrary Check File Exploit2008-10-12
 My PHP Indexer 1.0 (index.php) Local File Download Vulnerability2008-10-12
 NewLife Blogger <= 3.0 Insecure Cookie Handling / SQL Injection Vuln2008-10-12
 GuildFTPd 0.999.8.11/0.999.14 Heap Corruption PoC/DoS Exploit2008-10-12
 Joomla Component ownbiblio 1.5.3 (catid) SQL Injection Vulnerability2008-10-11
 Absolute Poll Manager XE 4.1 (xlacomments.php) SQL Injection Vulnerability2008-10-11
 NoticeWare E-mail Server 5.1.2.2 (POP3) Pre-Auth DoS Exploit2008-10-10
 Konqueror 3.5.9 (load) Remote Crash Vulnerability2008-10-10
 Ayco Okul Portali (linkid) SQL Injection Vulnerability (tr)2008-10-10
 Easynet4u Forum Host (forum.php) SQL Injection Vulnerability2008-10-10
 Nokia Mini Map Browser (array sort) Silent Crash Vulnerability2008-10-10
 MunzurSoft Wep Portal W3 (kat) SQL Injection Vulnerability2008-10-10
 Joomla Component mad4joomla SQL Injection Vulnerability2008-10-10
 Joomla Component Ignite Gallery 0.8.3 SQL Injection Vulnerability2008-10-10
 Easynet4u faq Host (faq.php faq) Remote SQL Injection Vulnerability2008-10-10
 Easynet4u Link Host (cat_id) SQL Injection Vulnerability2008-10-10
 SlimCMS <= 1.0.0 (redirect.php) Privilege Escalation Exploit2008-10-10
 Joomla Component Joomtracker 1.01 Remote SQL injection Vulnerability2008-10-09
 Gforge <= 4.6 rc1 (skill_edit) SQL Injection Vulnerability2008-10-09
 Gforge <= 4.5.19 Multiple Remote SQL Injection Vulnerabilities2008-10-09
 Kusaba <= 1.0.4 Remote Code Execution Exploit2008-10-09
 Camera Life 2.6.2b4 (SQL/XSS) Multiple Remote Vulnerabilities2008-10-09
 ScriptsEz Mini Hosting Panel (members.php) LFI Vulnerability2008-10-09
 IranMC Arad Center (news.php id) SQL Injection Vulnerability2008-10-09
 Kusaba <= 1.0.4 Remote Code Execution Exploit #22008-10-09
 MS Windows GDI+ Proof of Concept (MS08-052) #22008-10-09
 ScriptsEz Easy Image Downloader Local File Download Vulnerability2008-10-09
 Stash 1.0.3 (SQL) User Credentials Disclosure Exploit2008-10-09
 WinFTP 2.3.0 (PASV mode) Remote Denial of Service Exploit2008-10-09
 Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC2008-10-08
 DFF PHP Framework API (Data Feed File) RFI Vulnerabilities2008-10-08
 AdMan 1.1.20070907 (campaignId) SQL Injection Vulnerability2008-10-08
 HispaH textlinksads (index.php) Remote SQL Injection Vulnerability2008-10-08
 Konqueror 3.5.9 (font color) Multiple Remote Crash Vulnerabilities2008-10-08
 WebBiscuits Modules Controller <= 1.1 (RFI/RFD) Remote Vulnerabilities2008-10-08
 MS Windows 2003 Token Kidnapping Local Exploit PoC 2008-10-08
 Yerba SACphp <= 6.3 Multiple Remote Vulnerabilities2008-10-07
 Skype extension for Firefox BETA 2.2.0.95 Clipboard Writing Vulnerability2008-10-07
 Joomla Component com_hotspots (w) Remote SQL Injection Vulnerability2008-10-07
 PHP Autos 2.9.1 (searchresults.php catid) SQL Injection Vulnerability2008-10-07
 PHP Auto Dealer 2.7 (view_cat.php v_cat) SQL Injection Vulnerability2008-10-07
 PHP Realtor 1.5 (view_cat.php v_cat) Remote SQL Injection Vulnerability2008-10-07
 YourOwnBux 4.0 (COOKIE) Remote SQL Injection Vulnerability2008-10-07
 TorrentTrader Classic <= 1.04 Blind SQL Injection Vulnerability2008-10-07
 Built2Go PHP RealEstate 1.5 (event_detail.php) SQL Injection Vuln2008-10-07
 asiCMS alpha 0.208 Multiple Remote File Inclusion Vulnerabilities2008-10-06
 Hammer Software MetaGauge 1.0.0.17 Directory Traversal Vulnerability2008-10-06
 Yerba SACphp <= 6.3 (mod) Local File Inclusion Exploit2008-10-06
 Konqueror 3.5.9 (font color) Remote Crash Vulnerability2008-10-06
 FastStone Image Viewer 3.6 (malformed bmp image) DoS Exploit2008-10-05
 AyeView 2.20 (invalid bitmap header parsing) DoS Exploit2008-10-05
 FOSS Gallery Public <= 1.0 Arbitrary Upload / Information c99 Expoit2008-10-05
 Galerie 3.2 (pic) WBB Lite Addon Blind SQL Injection Exploit2008-10-05
 OpenNMS < 1.5.96 Multiple Remote Vulnerabilities2008-10-05
 PHP-Fusion Mod triscoop_race_system (raceid) SQL Injection Vuln2008-10-05
 PHP-Fusion Mod recept (kat_id) SQL Injection Vulnerability2008-10-05
 PHP-Fusion Mod raidtracker_panel (INFO_RAID_ID) SQL Injection2008-10-05
 PHP-Fusion Mod manuals (manual) Remote SQL Injection Vulnerability2008-10-05
 FOSS Gallery Public <= 1.0 Arbitrary File Upload Vulnerabilities2008-10-05
 phpAbook <= 0.8.8b (COOKIE) Local File Inclusion Vulnerability2008-10-05
 Fastpublish CMS 1.9999 (LFI/SQL) Multiple Remote Vulnerabilities2008-10-05
 geccBBlite 2.0 (leggi.php id) Remote SQL Injection Exploit2008-10-05
 Simple Machines Forum 1.1.6 Filter Post Bypass Vulnerability2008-10-04
 mIRC 6.34 Remote Buffer Overflow Exploit2008-10-04
 JMweb Multiple (src) Local File Inclusion Vulnerabilities2008-10-04
 AyeView 2.20 (malformed gif image) Local DoS Exploit2008-10-04
 pPIM 1.01 (notes.php id) Local File Inclusion Vulnerability2008-10-04
 MS Windows Vista Access Violation from Limited Account Exploit (BSoD)2008-10-04
 FOSS Gallery Admin <= 1.0 Remote Arbitrary Upload Vulnerability2008-10-04
 Full PHP Emlak Script (arsaprint.php id) SQL Injection Vulnerability2008-10-03
 VBA32 Personal Antivirus 3.12.8.x (malformed archive) DoS Exploit2008-10-03
 IP Reg <= 0.4 Remote Blind SQL Injection Exploit2008-10-03
 AdaptCMS Lite <= 1.3 Blind SQL Injection Exploit2008-10-03
 Serv-U 7.2.0.1 Remote FTP File Replacement Vulnerability (auth)2008-10-03
 Serv-U 7.2.0.1 (stou con:1) Denial of Service Vulnerability (auth)2008-10-03
 CCMS 3.1 (skin) Multiple Local File Inclusion Vulnerabilities2008-10-03
 Kwalbum <= 2.0.2 Arbitary File Upload Vulnerability2008-10-03
 vxFtpSrv 2.0.3 CWD command Remote Buffer Overflow PoC2008-10-02
 Bux.to Clone Script Insecure Cookie Handling Vulnerability2008-10-02
 OLIB 7 WebView 2.5.1.1 (infile) Local File Inclusion Vulnerability2008-10-02
 MS Windows GDI (EMR_COLORMATCHTOTARGETW) Exploit MS08-0212008-10-02
 OpenX 2.6 (ac.php bannerid) Remote Blind SQL Injection Exploit2008-10-02
 mIRC 6.34 Remote Buffer Overflow PoC2008-10-02
 ADN Forum <= 1.0b Blind SQL Injection Exploit2008-10-01
 MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability2008-10-01
 ESET SysInspector - 1.1.1.0 (esiadrv.sys) Proof of Concept Exploit2008-10-01
 phpScheduleIt <= 1.2.10 (reserve.php) Remote Code Execution Exploit2008-10-01
 Crux Gallery <= 1.32 (index.php theme) Local File Inclusion Vulnerability2008-10-01
 Noname CMS 1.0 Multiple SQL Injection Vulnerabilities2008-10-01
 Discussion Forums 2k v3.3 Multiple SQL Injection Vulnerabilities 2008-10-01
 BMForum 5.6 (tagname) Remote SQL Injection Vulnerability2008-10-01
 RPortal 1.1 (file_op) Remote File Inclusion Vulnerability2008-10-01
 Link Trader (ratelink.php lnkid) Remote SQL Injection Vulnerability2008-10-01
 phpscripts Ranking Script Insecure Cookie Handling Vulnerability2008-10-01
 MiNBank 1.5.0 Multiple Remote File Inclusion Vulnerability2008-09-30
 SG Real Estate Portal 2.0 Blind SQL Injection/Local File Inclusion Vulns2008-09-30
 Autodesk DWF Viewer Control / LiveUpdate Module Remote Exploit2008-09-30
 FAQ Management Script (catid) Remote SQL Injection Vulnerability2008-09-30
 eFront <= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability2008-09-30
 SG Real Estate Portal 2.0 Insecure Cookie Handling Vulnerability2008-09-30
 SG Real Estate Portal 2.0 Blind SQL Injection Exploit2008-09-30
 Printlog <= 0.4 (filename) Remote File Disclosure Vulnerability2008-09-30
 GdPicture Pro ActiveX (gdpicture4s.ocx) File Overwrite / Exec Exploit2008-09-30
 BookMarks Favourites Script (view_group.php id) SQL Injection Vuln2008-09-30
 Rianxosencabos CMS 0.9 Remote Blind SQL Injection Vulnerability2008-09-30
 Wireshark 1.x Malformed .ncf packet capture Local Denial of Service PoC2008-09-29
 Post Comments 3.0 Insecure Cookie Handling Vulnerability2008-09-29
 Arcadem Pro (articlecat) Remote SQL Injection Vulnerability2008-09-29
 Events Calendar 1.1 Remote File Inclusion Vulnerability2008-09-29
 PG Matchmaking Script Multiple SQL Injection Vulnerabilities2008-09-29
 ArabCMS (rss.php rss) Local File Inclusion Vulnerability2008-09-29
 ParsaWeb CMS (Search) Remote SQL Injection Vulnerability2008-09-28
 Google Chrome 0.2.149.30 Window Object Suppressing DoS Exploit2008-09-28
 ZEELYRICS 2.0 (bannerclick.php adid) SQL Injection Vulnerability2008-09-28
 Pro Chat Rooms 3.0.3 (guid) SQL Injection Vulnerabilities2008-09-28
 PHPcounter <= 1.3.2 (index.php name) Remote SQL Injection Exploit2008-09-28
 Opera 9.52 Window Object Suppressing Remote Denial of Service Exploit2008-09-28
 Mozilla Firefox 3.0.3 User Interface Null Pointer Dereference Crash 2008-09-28
 Pilot Group eTraining (news_read.php id) SQL Injection Vulnerability2008-09-28
 BbZL.PhP 0.92 (lien_2) Local Directory Traversal Vulnerability2008-09-28
 MS Windows Explorer Unspecified .ZIP File Denial of Service Exploit2008-09-28
 Joomla Component imagebrowser <= 0.1.5 RC2 Directory Traversal Vuln2008-09-28
 MS Internet Explorer GDI+ Proof of Concept (MS08-0520)2008-09-28
 BbZL.PhP 0.92 Insecure Cookie Handling Vulnerability2008-09-28
 PHP-Fusion Mod freshlinks (linkid) Remote SQL Injection Vuln2008-09-28
 X7 Chat 2.0.5.1 (mini.php help_file) Local File Inclusion Vulnerability2008-09-27
 RPG.Board <= 0.0.8Beta2 Insecure Cookie Handling Vulnerability2008-09-27
 ASPapp KnowledgeBase (catid) Remote SQL Injection Vulnerability2008-09-27
 Real Estate Manager (cat_id) Remote SQL injection vulnerability2008-09-27
 CoAST 0.95 (sections_file) Remote File Inclusion Vulnerability2008-09-27
 E-Uploader Pro <= 1.0 Multiple Remote SQL Injection Vulnerabilities2008-09-27
 Joovili <= 3.0 Multiple SQL Injection Vulnerabilities2008-09-27
 Camera Life 2.6.2b4 Arbitrary File Upload Vulnerability2008-09-27
 Vbgooglemap Hotspot Edition 1.0.3 Remote SQL Injection Vulnerability2008-09-27
 PlugSpace 0.1 (index.php navi) Local File Inclusion Vulnerability2008-09-27
 LnBlog <= 0.9.0 (plugin) Local File Inclusion Vulnerability2008-09-27
 Chilkat IMAP ActiveX 7.9 File Execution / IE DoS Exploit2008-09-27
 PowerPortal 2.0.13 (path) Local Directory Traversal Vulnerability2008-09-27
 MyCard 1.0.2 (gallery.php id) Remote SQL Injection Vulnerability2008-09-27
 Yoxel <= 1.23beta (itpm_estimate.php a) Remote Code Execution Vuln2008-09-27
 PHP-Lance 1.52 (show.php catid) Remote SQL Injection Vulnerability2008-09-27
 X7 Chat <= 2.0.1A1 Local File Inclusion Vulnerability (original find)2008-09-27
 Atomic Photo Album 1.1.0pre4 Blind SQL Injection Exploit2008-09-26
 Libra PHP File Manager <= 1.18 Insecure Cookie Handling Vulnerability2008-09-26
 212cafe Board 0.07 (view.php qID) SQL Injection Vulnerability2008-09-26
 PromoteWeb MySQL (go.php id) Remote SQL Injection Vulnerability2008-09-26
 Ultimate Webboard 3.00 (Category) SQL Injection Vulnerability2008-09-26
 barcodegen <= 2.0.0 (class_dir) Remote File Inclusion Vulnerability2008-09-26
 Crux Gallery <= 1.32 Insecure Cookie Handling Vulnerability2008-09-26
 openEngine 2.0 beta2 Remote File Inclusion Vulnerability2008-09-26
 The Gemini Portal <= 4.7 Insecure Cookie Handling Vulnerability2008-09-26
 Esqlanelapse Software Project <= 2.6.2 Insecure Cookie Handling Vuln2008-09-26
 Windows Mobile 6.0 Device long name Remote Reboot Exploit 2008-09-26
 WinFTP Server 2.3.0 (NLST) Denial of Service Exploit2008-09-26
 Atomic Photo Album 1.1.0pre4 Insecure Cookie Handling Vulnerability2008-09-26
 The Gemini Portal (lang) Remote File Inclusion Vulnerabilities2008-09-26
 MS Windows GDI+ (.ico File) Remote Division By Zero Exploit2008-09-26
 RPG.Board <= 0.0.8Beta2 (showtopic) SQL Injection Vulnerability2008-09-26
 MS Windows Wordpad .doc File Local Denial of Service PoC2008-09-25
 Vikingboard <= 0.2 Beta (task) Local File Inclusion Vulnerability2008-09-25
 phpOCS <= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability2008-09-25
 LanSuite 3.3.2 (design) Local File Inclusion Vulnerability2008-09-25
 AJ Auction Pro Platinum (seller_id) SQL Injection Vulnerability2008-09-25
 PHP infoBoard v.7 Plus Multiple Remote Vulnerabilities2008-09-25
 K-Lite Mega Codec Pack 3.5.7.0 Local Windows Explorer DoS PoC2008-09-25
 PHP infoBoard v.7 Plus Insecure Cookie Handling Vulnerability2008-09-25
 Libra PHP File Manager <= 1.18 Local File Inclusion Exploit2008-09-25
 Vikingboard <= 0.2 Beta SQL Column Truncation Vulnerability2008-09-25
 LanSuite 3.3.2 (fckeditor) Arbitrary File Upload Exploit2008-09-25
 Atomic Photo Album 1.1.0pre4 (XSS/SQL) Multiple Remote Vulnerabilities2008-09-25
 openEngine <= 2.0 beta4 Remote File Inclusion Vulnerability2008-09-25
 ICONICS Vessel / Gauge / Switch 8.02.140 ActiveX BOF Exploit (meta)2008-09-25
 Hotscripts Clone (cid) Remote SQL Injection Vulnerability2008-09-24
 Ol Bookmarks Manager 0.7.5 RFI / LFI / SQL Injection Vulnerabilities2008-09-24
 Rianxosencabos CMS 0.9 Remote Add Admin Exploit2008-09-24
 mailwatch <= 1.0.4 (docs.php doc) Local File Inclusion Vulnerability2008-09-24
 emergecolab 1.0 (sitecode) Local File Inclusion Vulnerability2008-09-24
 AJ Auction Pro Platinum Skin #2 (detail.php item_id) SQL Injection Vuln2008-09-24
 Jetik Emlak ESA 2.0 Multiple Remote SQL Injection Vulnerabilities2008-09-24
 BurnAware NMSDVDXU ActiveX Remote Arbitrary File Creation/Execution2008-09-24
 PHPcounter <= 1.3.2 (defs.php l) Local File Inclusion Vulnerability2008-09-24
 webcp 0.5.7 (filelocation) Remote File Disclosure Vulnerability2008-09-24
 Jadu CMS for Government (recruit_details.php) SQL Injection Vulnerability2008-09-24
 Google Chrome Browser Carriage Return Null Object Memory Exhaustion2008-09-24
 ADN Forum <= 1.0b Insecure Cookie Handling Vulnerability2008-09-24
 Observer 0.3.2.1 Multiple Remote Command Execution Vulnerabilities2008-09-24
 barcodegen <= 2.0.0 Local File Inclusion Vulnerability2008-09-24
 OpenRat <= 0.8-beta4 (tpl_dir) Remote File Inclusion Vulnerability2008-09-23
 Chilkat XML ActiveX Remote Arbitrary File Creation/Execution Exploit2008-09-23
 iGaming CMS <= 1.5 Multiple Remote SQL Injection Exploit2008-09-23
 Sofi WebGui <= 0.6.3 PRE (mod_dir) Remote File Inclusion Vulnerability2008-09-23
 Galmeta Post CMS <= 0.2 Remote Code Execution / Arbitrary File Upload Vulns2008-09-23
 JETIK-WEB Software (sayfa.php kat) SQL Injection Vulnerability2008-09-23
 WebPortal CMS <= 0.7.4 (code) Remote Code Execution Vulnerability2008-09-23
 Ol Bookmarks Manager 0.7.5 Local File Inclusion Vulnerability2008-09-23
 WCMS v.1.0b Arbitrary Add Admin Exploit2008-09-22
 BuzzyWall <= 1.3.1 (search.php search) SQL Injection Vulnerability2008-09-22
 PHP iCalendar <= 2.24 Insecure Cookie Handling Vulnerability 2008-09-22
 WSN Links 2.20 (comments.php) SQL Injection Vulnerability2008-09-22
 WSN Links 2.22/2.23 (vote.php) Remote SQL Injection Vulnerability2008-09-22
 WSN Links Free 4.0.34P (comments.php) Blind SQL Injection Exploit2008-09-22
 WCMS v.1.0b (news_detail.asp id) Remote SQL Injection Vulnerability2008-09-22
 MyBlog <= 0.9.8 Insecure Cookie Handling Vulnerability 2008-09-22
 OpenElec <= v3.01 (form.php obj) Local File Inclusion Vulnerability2008-09-22
 Debian Sarge Multiple IMAP Server Denial of Service Exploit2008-09-22
 basebuilder <= 2.0.1 (main.inc.php) Remote File Inclusion Vulnerability2008-09-22
 Sagem Routers F@ST Remote CSRF Exploit (dhcp hostname attack)2008-09-22
 CJ Ultra Plus <= 1.0.4 Cookie Remote SQL Injection Exploit2008-09-22
 Fez 1.3/2.0 RC1 (list.php) Remote SQL Injection Vulnerability2008-09-22
 PHPKB 1.5 Professional Multiple Remote SQL Injection Vulnerabilities2008-09-21
 TWiki <= 4.2.2 (action) Remote Code Execution Vulnerability2008-09-21
 Basic PHP Events Lister 1.0 Remote SQL Injection Vulnerability2008-09-21
 Invision Power Board <= 2.3.5 Remote SQL Injection Exploit2008-09-21
 Unreal Tournament 3 v1.3 Remote Directory Traversal Vulnerability2008-09-21
 NetArtMedia Real Estate Portal 2.0 SQL Injection Vulnerability2008-09-21
 NetArtMedia Jobs Portal 1.3 Multiple SQL Injection Vulnerabilities2008-09-21
 e107 Plugin my_gallery (image) Remote SQL Injection Vulnerability2008-09-21
 DESlock+ 3.2.7 (vdlptokn.sys) Local Denial of Service Exploit2008-09-21
 Availscript Jobs Portal Script File Upload Vulnerability (auth)2008-09-21
 Rianxosencabos CMS 0.9 Arbitrary Add-Admin Vulnerability2008-09-21
 Diesel Job Site (job_id) Blind SQL Injection Vulnerability2008-09-21
 6rbScript 3.3 (singerid) Remote SQL Injection Vulnerability2008-09-21
 PHP iCalendar <= 2.24 (cookie_language) LFI / File Upload Exploit2008-09-21
 Availscript Article Script (view.php v) SQL Injection Vulnerability2008-09-21
 Rianxosencabos CMS 0.9 Insecure Cookie Handling Vulnerability 2008-09-21
 6rbScript 3.3 (section.php name) Local File Inclusion Vulnerability2008-09-21
 Diesel Pay Script (area) Remote SQL Injection Vulnerability2008-09-20
 MyFWB 1.0 (index.php page) Remote SQL Injection Vulnerability2008-09-20
 Explay CMS <= 2.1 Insecure Cookie Handling Vulnerability2008-09-20
 Advanced Electron Forum <= 1.0.6 Remote Code Execution Vulnerability2008-09-20
 DESlock+ <= 3.2.7 (probe read) Local Kernel Denial of Service PoC2008-09-20
 DESlock+ <= 3.2.7 Local Kernel Race Condition Denial of Service PoC2008-09-20
 DESlock+ <= 3.2.7 Local Kernel Overflow PoC2008-09-20
 Oceandir <= 2.9 (show_vote.php id) Remote SQL Injection Vulnerability2008-09-20
 Plaincart 1.1.2 (p) Remote SQL Injection Vulnerability2008-09-20
 jPORTAL 2 (humor.php id) Remote SQL Injection Vulnerability2008-09-20
 Pluck 4.5.3 (update.php) Remote File Corruption Exploit2008-09-19
 NuMedia Soft NMS DVD Burning SDK Activex (NMSDVDX.dll) Exploit2008-09-19
 fhttpd 0.4.2 un64() Remote Denial of Service Exploit2008-09-19
 easyLink 1.1.0 (detail.php) Remote SQL Injection Vulnerability2008-09-19
 Explay CMS <= 2.1 Persistent XSS and CSRF Vulnerability2008-09-19
 E-Php CMS (article.php es_id) Remote SQL Injection Vulnerability2008-09-18
 addalink <= 4 (category_id) Remote SQL Injection Vulnerability2008-09-18
 addalink <= 4 Arbitrary Admin Access Vulnerability Exploit2008-09-18
 ProArcadeScript 1.3 (random) Remote SQL Injection Vulnerability2008-09-18
 Diesel Joke Site (picture_category.php id) SQL Injection Vulnerability2008-09-18
 CYASK 3.x (collect.php neturl) Local File Disclosure Vulnerability2008-09-18
 AssetMan v2.5-b SQL Injection using Session Fixation Attack2008-09-18
 ProActive CMS (template) Local File Inclusion Vulnerability2008-09-18
 phpRealty 0.3 (INC) Remote File Inclusion Vulnerability2008-09-17
 PHP Crawler 0.8 (footer) Remote File Inclusion Vulnerability2008-09-17
 WonderWare SuiteLink 2.0 Remote Denial of Service Exploit (meta)2008-09-17
 Cisco Router HTTP Administration CSRF Command Execution Exploit 22008-09-17
 Cisco Router HTTP Administration CSRF Command Execution Exploit2008-09-17
 Technote 7 (shop_this_skin_path) Remote File Inclusion Vulnerability2008-09-17
 X10media Mp3 Search Engine 1.5.5 Remote File Inclusion Vulnerability2008-09-17
 addalink <= 4 Write Approved Links Remote Vulnerability2008-09-17
 Femitter FTP Server 1.03 (RETR) Remote Denial of Service Exploit PoC2008-09-17
 iScripts EasyIndex (produid) Remote SQL Injection Vulnerability2008-09-16
 Attachmax Dolphin <= 2.1.0 Multiple Remote Vulnerabilities2008-09-16
 Hotel reservation System (city.asp city) Blind SQL Injection Vulnerability2008-09-16
 Gonafish LinksCaffePRO 4.5 (index.php) SQL Injection Vulnerability2008-09-16
 QuickTime 7.5.5 / ITunes 8.0 Remote Heap Overflow Crash Exploit2008-09-16
 Postfix < 2.4.9, 2.5.5, 2.6-20080902 (.forward) Local DoS Exploit2008-09-16
 CzarNews <= 1.20 (Cookie) Remote SQL Injection Exploit2008-09-15
 CzarNews <= 1.20 (Account Hijacking) Remote SQL Injection Vuln2008-09-15
 MS Windows WRITE_ANDX SMB command handling Kernel DoS (meta)2008-09-15
 Link Bid Script 1.5 Multiple Remote SQL Injection Vulnerabilities2008-09-15
 Pre Real Estate Listings (search.php c) SQL Injection Vulnerability2008-09-15
 Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability2008-09-14
 Kasseler CMS 1.1.0/1.2.0 Lite Remote SQL Injection Vulnerabilities2008-09-14
 Nokia e90 (s60v3) Remote Denial of Service Vulnerability2008-09-14
 The Personal FTP Server 6.0f RETR Denial of Service Exploit2008-09-14
 Cpanel <= 11.x (Fantastico) Local File Inclusion Vulnerability (sec bypass)2008-09-14
 Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit2008-09-13
 pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit 2008-09-13
 Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure Vulns2008-09-13
 FoT Video scripti 1.1b (oyun) Remote SQL Injection Vulnerability2008-09-13
 phpSmartCom 0.2 (LFI/SQL) Multiple Remote Vulnerabilities2008-09-13
 Windows Media Encoder wmex.dll ActiveX Control BOF Exploit (MS08-053)2008-09-13
 Free PHP VX Guestbook 1.06 Arbitrary Database Backup Vulnerability2008-09-13
 Linkarity (link.php) Remote SQL Injection Vulnerability2008-09-13
 PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit2008-09-12
 Sports Clubs Web Panel 0.0.1 Remote File Upload Vulnerability2008-09-12
 pForum 1.30 (showprofil.php id) Remote SQL Injection Vulnerability2008-09-12
 vbLOGIX Tutorial Script <= 1.0 (cat_id) SQL Injection Vulnerability2008-09-12
 SkaLinks 1.5 (register.php) Remote Arbitrary Add Editor Vulnerability2008-09-12
 iBoutique 4.0 (cat) Remote SQL Injection Vulnerability2008-09-12
 WebPortal CMS <= 0.7.4 (download.php aid) SQL Injection Exploit2008-09-12
 WebPortal CMS <= 0.7.4 (fckeditor) Remote Arbitrary File Upload Vulnerability2008-09-12
 pNews 2.03 (newsid) Remote SQL Injection Vulnerability2008-09-12
 Adobe Acrobat 9 ActiveX Remote Denial of Service Exploit2008-09-11
 PhpWebGallery 1.3.4 (XSS/LFI) Multiple Vulnerabilities2008-09-11
 minb 0.1.0 Remote Code Execution Exploit2008-09-11
 phsBlog 0.2 Bypass SQL Injection Filtering Exploit2008-09-11
 D-iscussion Board 3.01 (topic) Local File Inclusion Vulnerability2008-09-11
 Grafitti Forums 1.0 Remote SQL Injection/HTML Injection Vulnerabilities2008-09-11
 Ezphotogallery 2.1 XSS/FD/Bypass/SQL Injection Exploit2008-09-11
 Sports Clubs Web Panel 0.0.1 (p) Local File Inclusion Vulnerability2008-09-11
 Autodealers CMS AutOnline (pageid) SQL Injection Vulnerability2008-09-11
 Autodealers CMS AutOnline (id) SQL Injection Vulnerability2008-09-11
 Maxthon Browser 2.1.4.443 UNICODE Remote Denial of Service PoC2008-09-11
 Sports Clubs Web Panel 0.0.1 (id) SQL Injection Vulnerabilities2008-09-11
 Yourownbux 4.0 (COOKIE) Authentication Bypass Exploit2008-09-11
 Easy Photo Gallery 2.1 Arbitrary Add Admin / remove user Vulnerability2008-09-11
 PhpWebGallery 1.3.4 (cat) Blind SQL Injection Vulnerability2008-09-11
 Ananta 10b6 (fckeditor) Remote Arbitrary File Upload Vulnerability2008-09-10
 Peachtree Accounting 2004 (PAWWeb11.ocx) ActiveX Insecure Method2008-09-10
 Zanfi CMS lite 1.2 Multiple Local File Inclusion Vulnerabilities2008-09-10
 Availscript Jobs Portal Script (jid) SQL Injection Vulnerability (auth)2008-09-10
 Libera CMS <= 1.12 (Cookie) Remote SQL Injection Exploit2008-09-10
 aspWebAlbum 3.2 Multiple Remote Vulnerabilities2008-09-10
 Zanfi CMS lite / Jaw Portal free (fckeditor) Arbitrary File Upload Vuln2008-09-10
 Zanfi CMS lite / Jaw Portal free (page) SQL Injection Vulnerability2008-09-10
 phpVID 1.1 (XSS/SQL) Multiple Remote Vulnerabilities2008-09-10
 Wordpress 2.6.1 (SQL Column Truncation) Admin Takeover Exploit2008-09-10
 Alstrasoft Forum (catid) Remote SQL Injection Vulnerability2008-09-09
 Creator CMS 5.0 (sideid) Remote SQL Injection Vulnerability2008-09-09
 Live TV Script (index.php mid) SQL Injection Vulnerability2008-09-09
 Hot Links SQL-PHP 3 (report.php) Multiple Vulnerabilities2008-09-09
 Stash 1.0.3 Multiple SQL Injection Vulnerabilities2008-09-09
 CMS Buzz (id) Remote SQL Injection Vulnerability2008-09-09
 Microworld Mailscan 5.6.a Password Reveal Exploit2008-09-09
 Stash 1.0.3 Insecure Cookie Handling Vulnerability2008-09-09
 Availscript Article Script (articles.php) Multiple Vulnerabilities2008-09-09
 Availscript Classmate Script (viewprofile.php) SQL Injection Vulnerability2008-09-09
 Availscript Photo Album (pics.php) Multiple Vulnerabilities2008-09-09
 Kim Websites 1.0 (fckeditor) Remote Arbitrary File Upload Vulnerability2008-09-09
 Masir Camp E-Shop Module <= 3.0 (ordercode) SQL Injection Vuln2008-09-07
 Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC2008-09-07
 Altrasoft Forum (cat) Remote SQL Injection Vulnerability2008-09-07
 Wordpress 2.6.1 SQL Column Truncation Vulnerability2008-09-07
 E-Shop Shopping Cart Script (search_results.php) SQL Injection Vuln2008-09-07
 IntegraMOD 1.4.x (Insecure Directory) Download Database Vulnerability2008-09-06
 Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit2008-09-06
 Vastal I-Tech Dating Zone (fage) SQL Injection Vulnerability2008-09-06
 Flock Social Web Browser 1.2.5 (loop) Remote Denial of Service Exploit2008-09-06
 MemHT Portal <= 3.9.0 Remote Create Shell Exploit2008-09-06
 Simple Machines Forum <= 1.1.5 Admin Reset Password Exploit (win32)2008-09-06
 MicroTik RouterOS <= 3.13 SNMP write (Set request) PoC2008-09-05
 Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit2008-09-05
 AWStats Totals (awstatstotals.php sort) Remote Code Execution Exploit2008-09-05
 Vastal I-Tech Agent Zone (ann_id) SQL Injection Vulnerability2008-09-05
 WebCMS Portal Edition (index.php id) Blind SQL Injection Exploit2008-09-05
 devalcms 1.4a XSS / Remote Code Execution Exploit2008-09-05
 Vastal I-Tech Cosmetics Zone (cat_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Freelance Zone (coder_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Mag Zone (cat_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech MMORPG Zone (game_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Jobs Zone (news_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Software Zone (cat_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech DVD Zone (cat_id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Share Zone (id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Toner Cart (id) SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Visa Zone (news_id) SQL Injection Vulnerability2008-09-05
 EsFaq 2.0 (idcat) Remote SQL Injection Vulnerability2008-09-05
 Vastal I-Tech Shaadi Zone 1.0.9 (tage) SQL Injection Vulnerability2008-09-05
 Google Chrome Browser 0.2.149.27 Inspect Element DoS Exploit2008-09-05
 CitectSCADA ODBC Server Remote Stack Buffer Overflow Exploit (meta)2008-09-05
 ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability2008-09-04
 Qwicsite Pro (SQL/XSS) Multiple Remote Vulnerabilities 2008-09-04
 Google Chrome Browser 0.2.149.27 (1583) Remote Silent Crash PoC2008-09-04
 ACG-ScriptShop (cid) Remote SQL Injection Vulnerability2008-09-04
 aspWebAlbum 3.2 (Upload/SQL/XSS) Multiple Remote Vulnerabilities2008-09-03
 Moodle <= 1.8.4 Remote Code Execution Exploit2008-09-03
 Google Chrome Browser 0.2.149.27 Automatic File Download Exploit2008-09-03
 Spice Classifieds (cat_path) Remote SQL Injection Vulnerability2008-09-03
 Google Chrome Browser 0.2.149.27 malicious link DoS Vulnerability2008-09-03
 Living Local Website (listtest.php r) SQL Injection Vulnerability2008-09-03
 TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Vulnerability2008-09-03
 Reciprocal Links Manager 1.1 (site) SQL Injection Vulnerability2008-09-02
 Coupon Script 4.0 (id) Remote SQL Injection Vulnerability2008-09-02
 myPHPNuke < 1.8.8_8rc2 (artid) SQL Injection Vulnerability2008-09-02
 CS-Cart <= 1.3.5 (Auth Bypass) SQL Injection Vulnerability2008-09-02
 AJ HYIP ACME (readarticle.php artid) SQL Injection Vulnerability2008-09-02
 AJ HYIP ACME (comment.php artid) SQL Injection Vulnerability2008-09-02
 WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit2008-09-01
 CMSbright (id_rub_page) Remote SQL Injection Vulnerability2008-09-01
 EasyClassifields 3.0 (go) Remote SQL Injection Vulnerability2008-09-01
 WeBid 0.5.4 (item.php id) Remote SQL Injection Vulnerability2008-09-01
 e107 Plugin BLOG Engine 2.2 (uid) SQL Injection Exploit2008-09-01
 VMware COM API ActiveX Remote Buffer Overflow PoC2008-09-01
 WeBid 0.5.4 Multiple Remote Vulnerabilities2008-08-31
 myPHPNuke < 1.8.8_8rc2 (XSS/SQL) Multiple Remote Vulnerabilities2008-08-31
 Postfix <= 2.6-20080814 (symlink) Local Privilege Escalation Exploit2008-08-31
 Words tag script 1.2 (word) Remote SQL Injection Vulnerability2008-08-31
 Web Directory Script 1.5.3 (site) SQL Injection Vulnerability2008-08-31
 Friendly Technologies Read/Write Registry/Read Files Exploit2008-08-30
 Acoustica Beatcraft 1.02 Build 19 (bcproj file) Local BOF Exploit2008-08-30
 Brim 2.0.0 (SQL/XSS) Multiple Remote Vulnerabilities2008-08-30
 LogMeIn Remote Access Utility ActiveX Memory Corruption DoS2008-08-29
 Sun Solaris <= 10 snoop(1M) Utility Remote Exploit2008-08-29
 Najdi.si Toolbar ActiveX Remote Buffer Overflow PoC2008-08-29
 Invision Power Board <= 2.3.5 Multiple Vulnerabilities Exploit (revised)2008-08-29
 Acoustica MP3 CD Burner 4.51 Build 147 (asx file) Local BOF Exploit2008-08-29
 Micrsoft Windows GDI (CreateDIBPatternBrushPt) Heap Overflow PoC2008-08-29
 Friendly Technologies (fwRemoteCfg.dll) ActiveX Command Exec Exploit2008-08-28
 Friendly Technologies (fwRemoteCfg.dll) ActiveX Remote BOF Exploit2008-08-28
 Acoustica Mixcraft <= 4.2 Build 98 (mx4 file) Local BOF Exploit2008-08-28
 phpMyRealty <= 1.0.9 Multiple Remote SQL Injection Vulnerabilities2008-08-27
 Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit2008-08-27
 Ultra Office ActiveX Control Remote Buffer Overflow Exploit2008-08-27
 YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability2008-08-27
 Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Exploit2008-08-26
 MyBulletinBoard (MyBB) <= 1.2.11 private.php SQL Injection Exploit (2)2008-08-26
 iFdate <= 2.0.3 Remote SQL Injection Vulnerability2008-08-26
 Thickbox Gallery v2 (admins.php) Admin Data Disclosure Vulnerability2008-08-26
 CMME 1.12 (LFI/XSS/CSRF/Backup/MkDir) Multiple Vulnerabilities2008-08-26
 K-Rate (SQL/XSS) Multiple Remote Vulnerabilities2008-08-26
 Simple PHP Blog (SPHPBlog) <= 0.5.1 Code Execution Exploit2008-08-26

Contact Us

Security Penetration Testing

Security Questions

Security Dashboard

Emagined Security Blog featuring Dr. Eugene Schultz
Site Updated June 19, 2013
©2000-2013 Emagined Security
All Rights Reserved

Secure Web Programming
by Vizual Services
Reactive Response Real-Time Monitoring Proactive Consulting Support Services Licensing Advisory Executive Advisory