Packet Storm new exploits for April, 2005.
b037cc5b0bf138c22345d028f0f1abe9e783d6cb542cc195c5a4b1ae924cee0a
Ocean12 Mailing List Manager PRO 1.06 suffers from SQL injection flaws.
63728d2df2d8c5edbaa7402f8052a43e4d333d98bf462dc7d902b3d0829c5900
MaxDB Webtools 7.5.00.24 % overflow that makes use of the POST method.
acde9995ca9951b25b47906518f53a6a9fd08a8db3ee0d284e95247f554e63e5
koobi-cms 4.2.3 is susceptible to SQL injection attacks.
6bd4dc672ea366510896c4cecd7c7df7b8b5c4e357ceb00b84a6777bf1918209
A buffer overflow exists in KMiNT21 Software Golden FTP Server Pro version 2.52.
1a0a99671467a7f1942f1ac05379950a44c6102d6fa6190bdd51c998d91389cd
Multiple Cross site scripting, 10 SQL injection, 7 directory traversal and 4 remote file inclusion vulnerabilities have been found in Claroline versions 1.6 and below.
052e9365cb9d1fd65a53162363bd9fa05dd0a5aa01b916faa3eafffc8e316c8a
phpMyVisites 1.3 is susceptible to a local file retrieval vulnerability.
7241f2f8a76c391ae05432c0793f5990820b2fed8cb51db642a54432b01a251b
Net-ftpd 4.2.2 user authentication buffer overflow exploit.
72f965dfa751226b8f04994db3d8b59dd1d522f4aab9d051dde412a75f316e79
phpBB 2.0.14 suffers from various cross site scripting flaws.
ee024debdb52106fa23484c02ebbb9c2c78307481e1985c44c278dba87455d2b
using net::packet allows an attacker to take advantage of the MS05-019 vulnerability allowing remote command execution and denial of service.
aa7cc3acb178d16703da6d5d8b2a2722d5c69cc910a12a1c0e6c1151329c4e4a
artmedic_links5 remote file access exploit.
9e67672b845828367bde9de18a165c0bdffd6ad8e7514174a7941f877fa6fd5c
BK Forum version 4 is susceptible to SQL injection attacks.
a512cecf40d797596c6f2bae6fc4d511e3d8a078ce88159cf0adebb516fef8d6
BitDefender 8 suffers from a race condition.
144ed35679c7a23080f5531a8b32b1563435c1fab49422956aae4a75e3491e13
Woltlab Burning Board versions 2.3.1 and below suffer from cross site scripting vulnerabilities.
6fd4ea8f1ac5b793c50dfdbb68a87da068debbff2b6cbe1ece0f3f5e4a881fbc
ASP NUKE 0.80 and below Comments.asp SQL injection exploit.
981d3f36902696faecf7a43a4d797bb696472092239b78de66bda029cb1f7d1e
ASP NUKE 0.80 and below Details.asp SQL injection exploit.
72c4ff5b2772a277406869c2f29d056924f410322f486103fc3d8fe6e4ce2b33
Kali's tagboard allows for remote command execution.
5d979e79e6dc02951be37826d1ce5fc6cf06f268e8c20212f58a00eb94c57e4a
E-Cart version 1.1 remote command execution exploit.
575b7215f959d66769b1032e70023be88c3fe7affcae81a5810a504a97e4be9b
Yawcam 0.2.5 suffers from a directory traversal flaw.
b182d057b90cd3f81c55e8e073477556ee02a409f252428b6e2bfb479dd98c59
PayProCart versions 3.0 and below suffer from multiple cross site scripting flaws.
d3290939d4dbf61bb90cdf17383c0e72a809f38a0a5aecbfd15e950038d1445f
PMsoftware miniature HTTP server remote stack overflow exploit.
9525ff54f4bce796e7a507b8bf3f2f24b8bf70434b720199a4b7d4e40cca4562
Netmailshar 4.0 (Build 15) directory traversal and user enumeration exploit.
52cbfce163e380cfe2d16daca8dcc0d9d49a78abc847d7fed42838566979d9ef
Coppermine Photo Gallery 1.3.2 suffers from multiple SQL injection vulnerabilities.
dffcd6ac14b44ebb73b028fa0dc6fb6228b85e86bf5a48cfe1e6b89d3ae54462
A denial of service vulnerability exists that could allow an attacker to send a specially crafted Internet Control Message Protocol (ICMP) message to an affected system. An attacker who successfully exploited this vulnerability could cause the affected system to reset existing TCP connections, reduce the throughput in existing TCP connections, or consume large amounts of CPU and memory resources. This exploit affects various Cisco, AIX, and Windows versions.
c38bf63263b456c9b7c004c4c24fa3d01dfd91eac3ac084536fbdffe4d081a45
DUportal 3.1.2 suffers from numerous SQL injection flaws.
8ff5cf542f2fde8de91d5e43f21fe46d56ea3cef30968cbfe7b65b49548c95a0