Xmame 0.102 and below local root exploit for Linux.
2c6822915bdcdbefc6d4a8813d3e194cbb6038994934e02de11d2bd3f319d395
RCBlog v1.0.3 suffers from several vulnerabilities which can be used to open arbitrary files and compromise the admin's md5 password hash.
9a5a943ec06cac59377d32cc75369eeea009157b6051a9fe080aa6c64a9651d4
POC Exploit for the MSVC 6.0 run file bug.
8dc1ea0a87aeaf315faada5f0a3e56449a6ecd38e65005ebcc862f8b10894989
geoBlog MOD_1.0 suffers from an SQL injection vulnerability in the $tmpCategory variable.
5e189075c4e8d9d098ef84b254d707b696546daf79c178386d2b39d0ff50cf4a
Multiple buffer overflows are present in the handling of command line arguments in chpasswd leading to the execution of arbitrary code.
0ebfb70ca1e7383337063fc89108d5c1d67d8ded700ce5d04a9207952c6d22bd
Critical Security - 22:03 2006.01.19 - Tftpd32 2.81 Format String + DoS PoC
49cd1a133d19b760994fc7b65be963ff64ea036b547d9b3018548f5a1df333d9
WebspotBlogging v3.0 suffers from SQL injection due to improper input sanitization. POC included.
85a9df049d3f72684a1b10ce845c1dee3ebc9faad3840e981056139f84e67ae0
Land Down Under website engine is vulnerable to HTML injection via a stylesheet tag.
a8cbf703b7746d10df0e7ff480a88000007779de01f74161fce93404a6ebf855
MyBB suffers from HTML code injection in the signature field via an image tag.
c410da084c108cd59068f82241a35d6600c0f7a3a16281bfbfccadcdd1c372d9
XMB Forum suffers from HTML code injection in image tags.
7635b757365c91a8a05b5cf0791a698f16e07b42b86fe7d373ccce24e7b0b875
SaralBlog 1.0 suffers from XSS and SQL injection due to lack of sanitized user input.
94535b50dc337b20cea374c540f4ec94c74b3cbd39b4ecb887439f27c6d6f48b
eggblog v2.0 is vulnerable to XSS and SQL injection.
3aa462996ca11ec741e56a7fdd22879b445af11586c5ab9569118179c6c17f00
An ICQ.com search script (search_result.php) is vulnerable to cross-site scripting attacks. An attacker can exploit the vulnerable script to have arbitrary script code executed in the browser of an authenticated ICQ user in the context of the ICQ webpage. resulting in the theft of cookie-based authentication giving the attacker temporary access to the victim's account, as well as other type of attacks.
a5257e8e1d2af84aed2b72552a5755e7eeb34b71c8d79f623e480c71900ec7bf
ar-blog v 5.2 suffers from several XSS vulnerabilities.
e52814ba6ace4fd1b6449020b50302b0d952dd9587fa59c21d3137813b00171f
phpxplorer allows anyone to view any file on the system via a specially crafted URL.
0e2a165833039e14f64fe587b7e6c02b6d694d30df05d0bd7a27d0241ce52f8f
Phpclanwebsite is vulnerable to XSS in the img tag.
24e50536a0de45843ca0bca1d841e4ae3573c8c09acaaa8735d434ddeea71d2a
CubeCart version 3.0.7-p11 is susceptible to multiple cross site scripting flaws.
be85d0b836d9400f1e9c7f64f1dc26e0cd12128f5a1aeaf27239cd70d4ef9f3d
CaLogic Calendars version 1.2.2 is susceptible to cross site scripting attacks.
2f9db3349ea9dfe11e4161ba71f498d17f7affd9711534dde5b795fa99172eb0
phpXplorer version 0.9.33 is susceptible to a classic directory traversal attack.
ac4ae6dbda767c9e844fa3bd3eca0ecf7a6711db13f20a93a1daa41e9d71e3a5
eyeBeam softphone remote denial of service SIP header mishandling exploit.
c9af2dfdb21e5a5ab2c257b74a84585563a0f0be60d3124fc374306d1a84e010
WHITEAlbum is susceptible to SQL injection attacks via pictures.php.
ae1fcebac9700b83ec80ba4aa8ce091854b6d6537de98123711e7ec7fa906238
Veritas NetBackup v4/v5 "Volume Manager Daemon" remote stack overflow exploit.
6bf7782bcf9b0245b5dabd142ec6d47ca62c1fc2f9680b45ea2ab2ef81f1da93
Bit 5 Blog version 8.01 is susceptible to arbitrary javascript injection. Exploitation details provided.
20802863624b0c230d55b2395c9f22fd31cfe95f68382012775c98d0f8ec744c
Bit 5 Blog version 8.01 is susceptible to SQL injection attacks. Exploitation details provided.
d20f451f887b429370f4acfe04bcd2a7745d6e075c3304a35479ec1277cd9894
Benders Calendar version 1.0 is susceptible to SQL injection attacks. Exploitation details provided.
60854192744acb437eb561a320b50d6ef605efb6442f681091424b95853a7b01