Linpha 1.1.0 suffers from a XSS vulnerability.
f7e3f5d7e4eb3b1bc3ee23685ee770c5e7307dd23fd9a66a2f4042defa1f53b3
RechnungsZentrale v2 suffers from SQL Injection and Remote File inclusion Vulnerabilities.
199f60d5a50ae67e551c0a6e37b12a5cd7446cbdbfe0fa75e2ffcebfaec62501
Findnot.com DNS Privacy Breach, DNS Spoofing Exposure, and ISP Monitoring Vulnerability - Several vulnerabilities have been reported in Findnot.com's SSH Proxy Service which can cause all DNS requests for lookup of sites visited to be resolved using local DNS servers.
a31794b9b3bd88d68a780c393eeb2de80a451637e98988ab84f8fef14ed66b8c
Findnot.com IP Address Privacy Breach and Unencrypted Data Vulnerability - Several vulnerabilities have been reported in Findnot.com's Microsoft PPTP VPN Service Client, which can cause intermittent immediate loss of anonymity and privacy while using the service.
c0752cb8fe102e220a572433d2dce33f44c4db45a14e50386da67dfd2e8bc542
Defacing The Art Of Hijacking Spamming And EMail Viruses - A paper analyzing the methodology of hijacking a users web browser focusing mainly on Internet Explorer.
a19d8c74cf6da99ca80f6b3a1494254c3e49702f0a7e4c81583dd174eeb52bf6
bloggage suffers from a SQL injection vulnerability. POC included.
7a2ffb82807a4c80dfb88bf703c3f20e81c36ea5204da378e2d297a46d82a022
Mini-NUKE v2.3 suffers from a SQL injection vulnerability.
114b0a0ebc035da9aeb614dc226952c5976517fc0db78b6fd4b1da9be7fdc486
SUSE Security Announcement SUSE-SA:2006:021: various security problems in Mozilla based browsers.
857b5ed50fab95079142b787cc274b3bfa52988e5f7f05515ae658bda0a46019
It is possible to bypass any website that is in the "Uncategorized" Websense Category simply by adding a question mark at the end of the URL.
55611f0cd7905eaaa26e929be292f5754311b45644f74b51d8641148f109ba74
ActualAnalyzer suffers from a remote file inclusion vulnerability if register_globals = On.
d7ae65095b07e73a72f7307ef4ec2e3ffe376ec82b513e546dfba79ea5074470
CuteNews 1.4.1 suffers from XSS.
5907095f8019149d125aa50509e94635b6c059595842c80febd4cd0ce81f8ad4
Remote file open flaw in Firefox 1.5.0.2: It is possible by a malicious web site to open local content in the browser by tricking a user into right-clicking and +choosing "View Image" on a broken image, which is referencing a local resource (e.g. via the file: URI handler).
e147a304405ebb3f6d93391f1d2bd171363d6a3d926e7a0a8292f58a0b83dc2d
Mambo / Joomla do not properly validate user-supplied input in rss.php.A remote user can supply a specially crafted URL to cause the system to display an error message that discloses the installation Path or force the script to create Tons of superfluous xml files which in some cases results in remote DOS attacks against target.
db42190082b571f33f9fecedb2b59dcaab5850e3a505040dbd582a73a9528652
4images versions less than or equal to 1.7 suffer from XSS.
dd4f8ced7053b1dc27882562c980eeb823918049ba52a31e0446db357b2d3041
Oracle Database 10gR1 suffers from a buffer overflow in VERIFY_LOG procedure (DB03) Oracle Database Server provides the DBMS_SNAPSHOT_UTL package that includes capability to manage materialized views. This package contains the public procedure VERIFY_LOG that is vulnerable to buffer overflow. By default DBMS_SNAPSHOT_UTL has EXECUTE permission to PUBLIC so any Oracle database user can exploit this vulnerability.
ea6e241657c9e065a438b5455bcab515b2160933d8125c649d1b3edd73b8d8f6
It is possible to crash a Allied Telesyn AT-9724TS switch by sending it a large stream of UDP data.
50e2df1c017e8cd7389ad0d861ff537254bdfd7c99f45f613c3e628ba242e99e
WWWThread RC 3 suffers from multiple SQL injection vulnerabilities.
9945ef4289547564b7bb8ca997ca31f39f47632c93b0f408b72208a9c4fe4bd1
ASPSitem 1.83 and prior suffer from SQL injection in the id parameter of Haberler.asp.
5232f8c53dd3c171c97ec452b2f0da3388a1e4c96c7aae2ac88deca51b0d0400
EasyGallery CMS is vulnerable to XSS in EasyGallery.php.
b80c54c57e8171cd793813ed58372da55a2e68227059fafc1e798c105b2081c4
ContentBoxX CMS is vulnerable to XSS in login.php.
c7485a4adaa537a5f590f2c4858294aa2ec523db4d8854ab52b52e6bbb81ed4c
dForum versions less than or equal to 1.5 suffer from multiple remote file inclusion vulnerabilities.
16742458901518ce8a3be484666d89ebb8b2c21391c51b2565c764643916fde0
r57shell.php suffers from XSS.
d92a6a3717ee7798169732bfeebfab45026ff281c803ef75059631335db5647a
Simplog 0.93 and earlier suffer from SQL injection in preview.php, archive.php, and comments.php as well as XSS. POC included.
a817a5016933f39da266ee3357cafffc6971069ff9d80b60ec6a498306698745
The MKPortal vBulletin plugin versions 1.1 RC1 and prior suffer from SQL injection in index.php.
79eb44ae1226bb2fe59c30af2c33f93656d0189a49cd7f4d08d2ff8e859b01d4
My Gaming Ladder Combo System versions less than or equal to 7.0 suffer from a remote file inclusion vulnerability.
8d344e5d17ebd2ab053ec6722d22068b796074b4094c4de2dd14db9d988d4783