Remote proof of concept buffer overflow exploit for the IMAP server in FTGate4 Groupware version 4.1.
407fcb6c333d58d2349fad1a8b780a19e4b7926bc74f534bc88f3a61e8b5177b
Revize(r) CMS is susceptible to SQL injection and cross site scripting attacks. Exploitation details provided.
dd1ed25f98fe01cfca72917e5e732ba9d6ca3112d046e105c1601701928ccbb6
PHPWebThings version 1.4 suffers from SQL injection, credential disclosure, and remote command execution vulnerabilities.
6be81293ca11a04a30ed83c549ba3d0dab5beb1adc40f38bc72c767652bbc5d7
Affiliate Network Pro version 7.2 suffers from SQL injection, code execution, and cross site scripting flaws.
b68e33f43a3e04ebcaa708511893cd0724696a199e0423be9e92141c50125a03
PHPNuke version 7.8 is susceptible to SQL injection attacks. Exploitation details provided.
21b8d150f83a85c6b7a830edacbb89dc5a9a8dae43863c11ad091c4d36771c70
PHPWCMS 1.2.5-DEV is susceptible to multiple cross site scripting and directory traversal attacks. Exploit details provided.
03939668efd23b836d4ebf352a7ce435dcca79d5e8e8db44df52321906754b46
Walla Telesite versions 3.0 and below are susceptible to cross site scripting, SQL injection, and more. Details provided.
3029dba35a73a6580ed83f41cb04ab6b626605998100431382b494603a6fcab4
KAPDA Advisory - ekinboard version 1.0.3 is susceptible to cross site scripting and html injection flaws.
f2e17a9c85b4d4db9dda650d51963910482d98e209bc126458dbbef1ebcbe96f
Unclassified NewsBoard version 1.5.3 patch level 3 DateFrom and DateUntil blind SQL injection remote exploit.
22deafafcb2fa5cf284ca67667292d8daa35ffabb767aa74fbebc0a1de799792
master.passwd disclosure local exploit for FreeBSD versions 4.11 and below and 5.4 and below.
3a61fec1748cbc5fd100cae534599348960f67d0d18a74422f337336777b870f
Denial of service exploit that makes use of a memory leak when sending a specially crafted upnp_getdevicelist request.
c4ad49a26be74e913688c536620eb0a55ff34d9b4d6b43f53754461c413ae7c8
PollVote is susceptible to a remote file inclusion flaw.
284b9ec1459b822c63882279347e143a6f762f1fd9128b0b675fbc1a93eedfd5
fipsCMS is susceptible to cross site scripting.
d30e2a08fb610241f8c040d9943b0f66bf652eee6f38565ebbddc2c539d1e258
Cyphor versions 0.19 and below suffer from a SQL injection attack. Exploit provided.
f0ff18d36ebedf80f58b098297e039e3a6ce902578726def5279e9a35264baf6
EasyPageCMS is susceptible to cross site scripting attacks. Details provided.
bb5df34d5c7cc6efd88bea73311464dd7b653e7a8b51dd4b8d42eae260645bb0
A remote code execution vulnerability has been discovered in various CodeGrrl products including PHPCalendar, PHPClique, PHPFanBase, PHPCurrently, and PHPQuotes.
2539e6a0a10e5c9a163b673cf8ee1861d726956268b445b7b8fd95553d9bb737
phpSysInfo versions 2.4 and below suffer from cross site scripting, HTTP response splitting, and arbitrary file inclusion flaws.
0e06964507a7ccca53a11efcf06c1e94edfb9afdc2311b04881c95bf3b588fcd
Wizz Forum is susceptible to multiple SQL injection attacks. Exploit provided.
892dd79222d9cd846ba10ecb938506a65059ffc81e6c80a8a0a09134ee751b69
Midicart is susceptible to a SQL injection attack in search_list.asp.
8283bf34eaa3cb519c16ce50c1dd3428e9119c6f871a60491507a21dc17a761d
1-2-All Broadcast email software is susceptible to SQL injection attacks.
31ca02b5f82ace90ba5a6bb890159183fd8c5afc0eae186ef195ca4ad2d61ed0
phpWebThings version 1.4.4 is susceptible to SQL injection attacks in download.php.
acddaf6e32dab9902b44b291240cac0d2abd8c645b5d0d0d1ff513130abb2920
Veritas Storage Foundation 4.0 local root exploit that takes advantage of a buffer overflow in the VCSI18N_LANG environment variable.
587a778f72ac01b11f2daf11d28d6e33a3c6d445c52a6d3b53972ceb9b9746b2
XOOPS 2.2.3 is susceptible to a local file inclusion flaw and XOOPS WF-Downloads module version 2.05 is susceptible to SQL injection, credential disclosure, and remote command execution flaws. Exploitation details included.
59511afa72fdf7c3314190b12b28476f8de5b259d05a221512df44e94c35d119
aMember is susceptible to cross site scripting attacks via an unsanitized login variable.
09aeaa3107c25b1d5b405d6859a0ea1c2e31810c27dd8609186079c15aad9c49
Zone-H Research Center Security Advisory 200502 - phpAdsNew versions 2.0.6 and below suffer from SQL injection flaws. Exploitation details provided.
2bb01d8a857a347319337c91c213000292e3c3de4261bf1f0a85cb37550308b2