chat.php from PHP Live Help ASP is susceptible to a cross site scripting vulnerability.
22385325e8a45a21c8bf09b58385080408e5a643b0fa03c9e9405454903ddeb7
Foing suffers from a remote file inclusion flaw that allows for arbitrary code execution. Versions 0.2.0 through 0.7.0 are susceptible.
3885475915d3ff6d51dd65ae9d53f538423d7b55905504d6171747951c24f471
SEC-CONSULT Security Advisory 20060512-0 - The Symantec Enterprise Firewall leaks internal IPs of natted machines in response to certain HTTP requests. Version 8.0 is vulnerable.
807aa7028b29ee6916e21a15ef082d41db7b0c19a41584be3677e3145973e8e1
Ipswitch WhatsUp Professional suffers from source disclosure, information disclosure, and cross site scripting flaws. Weaknesses are confirmed in version 2006. Earlier versions may also be susceptible.
a9a7a332f27024112aca7776f100288c07c382051fe5ea02a197f2d35645d3f2
The phpBB charts.php code suffers from cross site scripting and SQL injection flaws.
aac363a8ee7a42ddf9b0b3f9f6c6ffee25b002e6df39300f7adb859ae64df841
Magnolia CMS suffers from a script insertion vulnerability.
dd524302c41665a82915609e959651905f66bfeb0b514c54f69d243a8cd5213e
OZJournals versions 1.2 and below suffer from a cross site scripting vulnerability.
79b5661efdd0636877a1f29e8679765339c3deabe2caacf01d437cb3497b34fb
Remote exploit for an arbitrary file inclusion flaw in Unclassified NewsBoard versions 1.6.1 and below.
0abf7924e12ca0c4cf02b57e277252115334faa389dec0a3d0df88dd9c22be0c
eBusiness Designer versions 3.1.4 and below suffer from arbitrary file upload, code execution, and cross site scripting flaws. Spanish version of this advisory.
4b482fbf333a075d4751aebdbee51b85b7250269c2ca66b3ebfd2e00f6a4cb76
eBusiness Designer versions 3.1.4 and below suffer from arbitrary file upload, code execution, and cross site scripting flaws. English version of this advisory.
5f43f8818b4f40213db564e4798a4d0c1b083d11b61f808f44f657e604a3aea0
Proof of concept CHM file that demonstrates a heap corruption vulnerability in the Microsoft Infotech Storage System Library (itss.dll).
d8ef3858baa50f11d566db9a14b2ab96af1ac5fa8e86c5b98565ed099bd7b0e6
tseekdir.cgi suffers from a local file inclusion vulnerability.
5618b8399e367626eda35829af4f5a279efdc633554693009c62504265d20333
PhpListPro version 2.01 is susceptible to a remote file inclusion vulnerability that allows for remote code execution.
9ccd03ffef783bbbffcededd06910e5e62a26a53399355f089eb41fba6e4873d
PHPFusion versions 6.00.306 and below avatar mod_mime arbitrary file upload and local inclusion exploit.
5e61c05f77a12f36d67b4c5a761b9f9ce21eb52a10a73d49a779f85c63d866fc
ActualAnalyzer version 6.88 suffers from a remote code execution vulnerability.
dc38fc75a68d3e82d49d5485728cedb9905ffa1b7988096b195e17587fb92c55
phpRaid versions 3.0.b3 through 2.9.5 suffer from a remote file inclusion vulnerability when used with SMF.
2620f6b73912889ef72c682aec30b6af9d36a3e71e44e7bbc5ec1afa2a6f434f
phpRaid versions 3.0.b3 through 2.9.5 suffer from a remote file inclusion vulnerability when used with the phpBB portal.
1b570e9cbe4f1c200d5caaf97c6f192c279a31a248d587bf4d7c2a50d0389311
Singapore version 0.9.7 suffers from cross site scripting vulnerabilities.
96b5b40603c1ebeda4080fa0910b9c9820504a0c6b0d5b47a7a4aadc07f0275e
Dokeos Learning Management System version 1.6.4 remote file inclusion exploit.
a65551cfb4daaff3020c323e85bd1c34a82ba4b0333bf1c16b2bdf8a706bcb45
EQdkp versions 1.3.0 and below suffer from a remote file inclusion flaw.
c79d69680a79632b7a7bac18e5fbe9a184a5f820b9d8167a04e11509f94e21d5
OpenEngine CMS versions 1.8 Beta 2 and below are susceptible to directory traversal attacks.
90a511712002f7589378c74448862f3f2e6638f15ca0e988b4047c51dc24e9a7
Phil's Bookmark script allows for direct administrative access without authentication.
3d0a25423fc2198866a5bb2cb42f1119703cecf02bb6b59e811063b5e8f047d1
Limbo CMS remote SQL injection exploit.
5efc47a796f44499977624bd822304165155f3e561af15fd1b2dfb122e3691cb
ISPConfig versions 2.2.2 and below suffer from a remote command execution vulnerability.
3afa11d4e09943f0e83eb84d90ebb26e401ddc3d3d28c6ac7b0108d1353be252
1ASPHost and Domain DLX hosting services suffer from cross site scripting flaws.
23381a3f72a1a116ebfbcc9d32d752b2cf5d56957a239a28aadd37be6c9f6248