Comersus Shop Cart version 7.07 suffers from SQL injection and cross site scripting vulnerabilities.
58ba2fa8052fb0819670006c7bdfa1d55906e1a7c84ecc9a82070d3947e29cc5
W1L3D4 WEBmarket version 0.1 suffers from a SQL injection vulnerability.
433606e9bfbc7fcdd3b374f544107fce3348a6ab959812ba710b2d401261ceef
Various commercial IPS products fail to decode HTTP requests that contain 0x0c, 0x0b, and 0x0d instead of normal 0x20/0x09 separators.
8bd2fb21a6f9fe779b10b9809f5d7d778051d40abcfa264fa44340d85608f90a
A persistent cross site scripting vulnerability exists in the Wordpress.com dashboard.
dfaba2f61102da0059c193b2576ec0cfd98b29788b91f7a724667e8fc3e02e19
YaBB versions 2.1 and below suffer from a local file inclusion vulnerability that allows for remote code execution.
af958fb5a94edadc7e8f93f91b70ddb2da76329318f1774e91870c90573fdf8e
FuseTalk version 2.0 suffers from a SQL injection vulnerability in autherror.cfm.
5ebbcffcaeb54aea7359861858adc1e00f52b63b66cc98e800d62c35c2366cd1
iG Shop version 1.4 suffers from an eval inclusion vulnerability.
503e256e013dda3871574a243225434a0123140b50e47040b3018897fbd6b358
PHP version 5.2.3 Tidy extension local buffer overflow exploit for win32.
77ab4ff0f5a046cb4cf44bd4a513d14d0712af937e419f340866aac22359816d
fuzzylime forum versions 1.01b and below suffer from a cross site scripting vulnerability.
9ad9b369d80b57ebf091d1522196700efe20e03fd1e34f801017dcbdfef0aadc
Webif.cgi suffers from a local file inclusion vulnerability.
d547b0f34f12329ecdd8498cec0bf1512aebabcd06b980ebfceddc93406b6a97
PHP Hosting Biller version 1.0 suffers from a cross site scripting vulnerability.
7e237f155c2757d24d19d980e4a283173fa888e2c6f77f59c9789af664d74eb8
Jasmine CMS version 1.0 SQL injection and remote code execution exploit.
07fd84c504ba9ef31b7ee61355b21a2ed90c49e111f3f274c0add331555c58d8
MiniBill version 1.2.5 suffers from a remote file inclusion vulnerability in run_billing.php.
474f3766765762c9a7a9ccfd2748616e12d51e852b804cbaa5d792606070e5ee
Solar Empire versions 2.9.1.1 and below blind SQL injection and hash retrieval exploit.
5fc0ba250cada89b50bbdf2917ebb50b75cf1a9415a6be0b84099e72d552970a
MiniBB version 2.0.5 local file inclusion exploit.
84a3770e4b1a2c8e8e1ecb284cb3d4115f3ff02a14739544654bc4cc883701a4
YourFreeScreamer version 1.0 suffers from a remote file inclusion vulnerability.
7229cd86b3f1c419c56a46bcf0a792a0335eb626bd17d5c6452273fa308e7f21
phpMyInventory version 2.8 suffers from a remote file inclusion vulnerability in global.inc.php.
3a13280f3a30004485abd8c7cb75aeb8385bd5eaaa3c9efa15e7da27c4f76d14
Simple Machines Forum (aka SMF) version 1.1.2 suffers from PHP injection and a weak CAPTCHA system. Exploit included to break the CAPTCHA.
804c1a0a8f9eac81a336292bc52e53b359f021e708e75f6bfbf33aa684e05734
Utopia News Pro version 1.4.0 suffers from a cross site scripting vulnerability.
d44ae4310ef855d2f6a2512c581ae5743c5bae5757e51c7dc6de8af2e89f8899
WSportal version 1.0 suffers from a SQL injection vulnerability.
63b3914006fdc477bafedb2046b91a6c12a734ab99f02367d62371c9fa3e41ec
Demonstration code that shows how Kaspersky Internet Security 6 hooks many functions in SSDT and in at least nine cases it fails to validate arguments that come from the user mode.
6d0d1ca3bc484c7a00854c53eec72c38dd889b5ea5dde97f8401308d0f41498b
PHP::HTML version 0.6.4 suffers from a remote file inclusion vulnerability in phphtml.php.
bc5775c33dc42ad7966b0eac2926ab62d2be3de0be562f4f6544aa6739c9fa62
Sitellite CMS versions 4.2.12 and below suffer from a remote file inclusion vulnerability in 559668.php.
4ed906fecdcc37bc301b71c285a269be7270b242f3c771741ffd39d6a68690d9
The XOOPS module PopnupBlog suffers from a remote file inclusion vulnerability.
0c8cf5e73633bb3313c3bda90a4aae5f5bbbf02bb6f2313543a48b54d8bd8712
XOOPS module Cjay Content 3 suffers from a remote file inclusion vulnerability.
be91a68f2bca327c5710bbb46b15837b44afbb7c2ae04b0cb24633e5edb1ab23