IMail appears to store the password for an account in clear text in cookies issued.
d8338cb4182c4ec4004a9f4df0e8293a7cf7f66851e05a3791e62ac6888ec34f
Exploit that makes use of a PHP injection vulnerability in Drupal.
2950393b3baea1845cb16347e03ac6cafb03d7e51cd06e0ae9094e105086337a
kpopper versions 1.0 and below suffer from an insecure temporary file creation vulnerability. Exploit included.
5e595cc68818ef185cddc15d72da4f21886c1d6c97c53cf9a675490f90ec37d9
ASPJar is susceptible to a SQL injection attack via the password variable when logging in.
1744371333b6a39c3ec78bf9e9876bae660ef924c69ad6618eacd2abfd0e2f2c
PlanetFileServer version 2.0.1.3 is susceptible to a denial of service attack that causes the server to crash. Exploit provided.
068ea01417f9ad0e399b81ab3b7a9174755e126167c392076abf1ecdd89fe778
The Quick and Dirty PHPSource Printer version 1.0 is susceptible to a directory traversal attack. Exploitation provided.
061998888d86c014b05d9604aaf58f6d5469167eeef964535422a7b3559412ac
XMLRPC remote command execution exploit. Original flaw discovered by the people at gulftech.org.
39d8bc75dc5318a886472ee7b9bb3ea89521c077251144a4bbbe8d58658e66b7
Internet Download Manager input URL stack overflow exploit that affects versions 4.05 and below.
69cedfa56b55c0d8992f4038aec6c79f950fdc527f2a789e566bc97ca8653b70
Remote SQL injection exploit for xmlrpc.php that makes use of Xoops versions 2.0.11 and below.
c36f110025d00ce54d8e5068a0152dc03a6eeafd8ffc0733614c5f661c7ebd39
phpBB 2.0.15 exploit that makes use of the flaw in viewtopic.php and retrieves all details related to the database.
d1eefd763f27f54396a23466eaece8ec980dad5696cf5d6f6a85022eaa9efc91
Nokia Affix btftp remote client exploit that affect versions below 3.2.0.
4777fa13b8ddade7061084db8c5d1d768933891c69aa232e4eab34ab153cc7a3
Microsoft Internet Explorer javaprxy.dll COM object exploit that binds a shell to port 28876. Tested on Internet Explorer 6 on Microsoft Windows XP SP1 and SP2.
6c551ef5ab44c97b388f40233250eaa133f2ee1d74c10cb507d45d4bd01988be
php 2.0.15 remote command execution exploit for viewtopic.php. Written in Python.
85149f4b26a8a704dff6d70dabd7614094a6712f06c67d1fdfee0b72b2c51b13
Pear XML-RPC Library 1.3.0 remote PHP code execution exploit.
3d26eb02b57c9a6718c5e4a92e7999018d71a70b03601a471f95bacc49c3ad81
Multiple problems exist on support.msn.com, permitting to a possible attacker to conduct phishing attacks against a user.
73be9442c86ee5ea2be804b72d2cf52f4441182605f16d4c1aa0138aab4795ea
PEAR XML_RPC is vulnerable to a very high risk PHP code injection vulnerability due to unsanitized data being passed into an eval() call. Versions 1.3.0 and below are affected.
3793d7664e029e03c9787f198abb53e4415460735b9d7326c818daf85564aa6a
The multihtml.c exploit from r00tabega suffers from a format string vulnerability.
e6c05c027a849ed520f0d95793331faeabe4b602a5cd8d2f9eaddcacb36d3287