OTSCMS version 2.1.5 suffers from cross site scripting and SQL injection vulnerabilities.
0565f561bef62cdc8351a4435fbf79816311b335df5eff1de7171a29f225e829
Maian Recipe version 1.0 suffers from a remote file inclusion vulnerability.
0d73f9ccb38e3eeca9e28a978c76404bc3996e8a1b0ff0819b503264147ebfb6
LightRO CMS version 1 beta suffers from a remote file inclusion vulnerability in inhalt.php.
270f4e58bdac1ef845bc43b4c1b29b2a53d69063255d592528bd31d8061aac75
This is a MySQL backdoor kit for Windows based on the UDFs (User Defined Functions) mechanism. It can be used to spawn a reverse shell (netcat UDF on port 80/tcp) or to execute single OS commands (exec UDF). Tested on MySQL 4.0.18-win32 (running on Windows XP SP2), MySQL 4.1.22-win32 (running on Windows XP SP2), MySQL 5.0.27-win32 (running on Windows XP SP2).
15313890177e90628311c6c464cf5a183ed19e89a0eb0fae3370dd041b770aea
Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL injection exploit.
5da3679527ba84f7b21f36ba7d9b950eca072f5b36d1fd021648d1a4da8fd4c0
Geeklog version 2 suffers from a remote file inclusion vulnerability in BaseView.php.
020a17a5d039bcd5f6cb9badf8370da0737693fe9553451ebc835e5a1281336f
SMA-DB versions 0.3.9 and below suffer from a remote file inclusion vulnerability.
51617bc83ceb460927bb96383e952935fb60cd6bc42a7284a233569c1544cdbe
GGCMS versions 1.1.0 RC1 and below remote code execution exploit.
9c4a046334dab11a9dab1b9164db0c1f49ffc786f32fdb20bdfeb3e81412f917
Microsoft Internet Explorer 6 mshtml.dll null pointer derefence exploit.
3d73f7db428d98af7dbd722e320dd226e577a86ac0031666cacc354105d2604a
Mina Ajans Script suffers from a remote file inclusion flaw.
8fa8941eb4ca19e4bde94c86e22ee7e00f59884c0e272f5aae02943dce8278b8
The Cold Fusion web server suffers from a cross site scripting vulnerability.
c6134e49f82cb3a72792bf007c285e2438ecca4f849550526c75b89ecbf0f72e
Uphotogallery version 1.1 is susceptible to cross site scripting attacks.
59252f18f2ce50937d9715492ada82d603c7e61eefec55763422383eacaeefa6
dvddb version 0.6 suffers from a remote file inclusion vulnerability.
88703db88496df688d24e0d1cacc0eb44effd92e50a589aa29f366cb36639206
Joomla! version 1.5.0 Beta suffers from SQL injection vulnerabilities.
b7622a565def445ec0da61a9e888f37a0de5e91edaa09b53cb64ab04c7303807
Wap Portal Server version 1.x suffers from a remote file inclusion vulnerability.
918b8f998f6aadbdf4b3b953ea6945b76631821843a635718da845398c7436e7
DirectAdmin version 1.29.0 is susceptible to cross site scripting attacks.
3950b590fd870a9cd54567c11ca1f1aac504bfe917265d299eacf0c16d8e6c7d
Uebimiau version 2.7.10 is susceptible to cross site scripting attacks.
26130e128e95433dd90db36a156d883554374b2bb9b459c40af4997b62dca22f
cotv 2.0 suffers from a client-side denial of service vulnerability due to a lack of validation. Demonstration exploit included.
f707ee93bda1d6d72d269716afca6da52d47a31e6d5abc8bec288f711a10b6e2
PHP Web Portail suffers from a classic directory traversal flaw and a remote file inclusion vulnerability.
879e4ea28d38fb4e6d238913d060ea127a12373af39eb460346e5a3b6ca73162
EasyMoblog version 0.5.1 suffers from a cross site scripting vulnerability. Details provided.
a6989f7a88416dc8794900029b76069370eb1c18cb0a28e181ff5ef68854b3ee
EasyMoblog version 0.5.1 suffers from another SQL injection vulnerability. Details provided.
e7290bd738849c3b7fdd17d859d2ca260504c556b0813e946fc41060084d6492
EasyMoblog version 0.5.1 suffers from a SQL injection vulnerability. Details provided.
4eb11a7e29c6256280092b5dd8e6e23faf1fe708f1484122c8151780b860f341
Denial of service exploit that demonstrates a lack of argument validation in Comodo Firewall Pro. Affected versions include Comodo Firewall Pro 2.4.16.174 and Comodo Personal Firewall 2.3.6.81.
13c68b8539dddd068e1f16bec0b64cffb60f21947bb4920eac788e41781dc7f6
Omegaboard version 1.0b4 suffers from a remote file inclusion flaw in phpbb_root_path.
2556450b15b5eb4d95e3dde961e5bb7fddda9b0c857a34fcb7b1b306c0ea312e
Cerulean Portal System suffers from a remote file inclusion flaw in phpbb_root_path.
683e57cbdcc617fec0863e350e8532ad01ca481518c5d6a226f658dc56b4ae62