Future Internet suffers from cross site scripting and SQL injection vulnerabilities.
23b3648d959a2432644b69686201d460dcc02c858994d6991d9ae318136b2e66
Keep It Simple Guest Book version 5.0.0 suffers from remote file inclusion vulnerabilities.
c627cff3eb5c559feb07dae01c335ab111cfb6454af87ed59eb8510cbb412b24
Efkan Forum version 1.0 suffers from a SQL injection vulnerability.ShaFuck31
abf997c7e80ce8c1795252fe574e4a9ab059d19df0b7dac1b6e70ea94036e9a1
Oracle Applications/Portal versions 9i and 10g suffer from cross site scripting vulnerabilities.
5b903f77def68bd3894d4ffe4af3835c54da78e7599fb0ef3aad439f57a5fd37
Xt-News version 0.1 suffers from cross site scripting and SQL injection vulnerabilities.
c79a86210fc91a389f13db530a4a2f177cb36fdc3e0bfc918fb30b9c4f6a8b12
Ixprim version 1.2 remote blind SQL injection exploit.
aec29fc93d3d359b2ff53e290036f5098f53c7fa9975ee28b67553cea97daac1
SEC-CONSULT Security Advisory - Typo3 CMS versions 4.0.0 through 4.0.3 (along with other variants) suffer from a remote command execution flaw. Proof of concept included.
855559bf26aa89e08a42b32a4a13e9d2151e9b5cca1e5cb32c2673a8d897c507
Mini Web Shop version 2.1.c suffers from a cross site scripting flaw.
970873219107890b1946642cf65764cbf57ed2a3ecf4f22de9e3d32e36d4e031
Oracle 9i and 10g file system access via utl_file exploit.
6a855c171229fa36b67fcac3d0b5386b14c748ade5343c12a88b8cf49a41e5f0
This PL/SQL code exploits the Oracle extproc directory traversal bug to remotely execute arbitrary OS commands with the privileges of the DBMS user. All versions of Oracle 9i are susceptible. Oracle 10g versions prior to 10.1.0.3 are susceptible.
a20687baa07c822bd25b99c3cf83c52490637e73c8ad269208f88421d3667d01
Burak Yilmaz Download Portal suffers from a SQL injection vulnerability in down.asp.
232bf4511ed710d75dcf4e2107d1a0f12dd68cfad98c046d6e17f5efc754481a
Proof of concept exploit for a buffer overflow in HP printers version 2.4.5.
69f9673d5776cf059960d159011db90e25de5744eec07788625ef0371546d631
Proof of concept exploit for a buffer overflow in HP printers version 2.4.
878780372ce18dd4260343d191ceacba34ff580b3d2b0ce26ea978001aec6871
Multiple cross site scripting and SQL injection vulnerabilities were found in Inetmedia's web services cityinfo.pl and cityaz.de, which my be exploited by attackers to gain confidential information and/or modify the database.
75f8727ef771eee315605520f22f5035089f32572f68229450267bfd4ae19a0d
WebCalendar version 1.0 suffers from a cross site scripting flaw.
863a1b3f6f497af73a21ad920a18a305d2ac98959cfa77f7fd67a50abe569230
WGet version 1.10.2 and below suffer from an unchecked boundary condition. Proof of concept included.
0b8cd699959612ccb566a5227b9e6bd38d4243e7bc9fe86ad24ee53ca26f80a3
All versions of RateMe suffer from a remote file inclusion vulnerability.
5fd0b1eb6e69f394227a39535ab4bd6b2e9569b4efa94935d925dc7e73685d46
HyperVM suffers from a cross site scripting flaw.
f4d64a82678f1e1d3cae469eeb0972495ea7cecd7ff01c60bad253834ddf2714
The Intel 2200BG card suffers from a race condition vulnerability. Proof of concept code included.
52fece9a4bfaaa83265054f29f2318eb916e0cfd1bd0d159da6c9810cca9d699
SiteCatalyst Web Login suffers from a cross site scripting vulnerability.
b68439465f459d877475fca3dcfae504ab97ef806f993b557a4dc66764527594
Contra Haber Sistemi version 1.0 suffers from a SQL injection vulnerability.
70a57e138a9e7bd20ea033594c126e40d5850f840553e204bce54c11ee0c5663
Google G-Mail is susceptible to a cross site scripting issue.
9107c5c69f9ee356156461a6e9cc89465ff08a69bbf2f1be6cecec0e1b432459
FTP server (GNU inetutils 1.4.2) remote root exploit.
81d267bd998486271614f006dda20ed2e6cc01138b7d623d0680a0b57fcb857c
Multiple CRLF injection aka HTTP response splitting vulnerabilities have been identified in Google AdWords which may be exploited to inject arbitrary HTTP headers.
062562a8590bce4277ad7237fb661cbe785c2f43af14a6b3863075554454d6bd
Kerio MailServer version 6.2.2 preauth remote denial of service exploit.
06693eabdbec0e07d5c362d68827a5701df047b339ad16062f4a59c06535f14b