uTorrent, Azurues, and TorrentFlux all suffer from cross site request forgery vulnerabilities in their WebUI functionality.
0c77874a8b315936bd78c690d6f9b19703cbc2bb9b80c1c2a0634de438d0f5935th Avenue Shopping Cart suffers from a SQL injection vulnerability.
c3347d26806a3a9bf8defc0a08b1b3ebfc609c226cf7e49df31eb7b0e7beab54Grape Statistics version 0.2a suffers from a remote file inclusion vulnerability.
c91ba6bb013188d59e737a144c56f7fbf67b7ae0e7fcc0da9aad995bddcf056bDivX Player version 6.6.0 .SRT file handling SEH buffer overflow exploit.
d0c776b167346cb7b3bbbba959c1a956ee1363a07541a2a131ddbbc93d0153b6Wikepage Wiki version 2007-2 suffers from a cross site scripting vulnerability.
bf7afc8adcdb16585234069a3235ecf8c4c4c3a9475da8f024eace13aa7fd537LightNEasy version 1.2.2 suffers from cross site scripting, directory traversal, and arbitrary file creation vulnerabilities.
c036ba9a8d83262e206b26bc2adc802e00d6193acf1fc6e3c8bdb9c594453dc1This Metasploit module exploits a stack overflow in the w22n51.sys driver provided with the Intel 2200BG integrated wireless adapter. This stack overflow allows remote code execution in kernel mode. The stack overflow is triggered when a 802.11 Probe response frame is received that contains multi vendor specific tag and "\x00" as essid and essid length element. This exploit was tested with version 8.0.12.20000 of the driver and an Intel Centrino 2200BG integrated wireless adapter.
abd019c52643a22cde8cd84dcaa500474c643265057b4aed5651a541e999c587xine-lib versions 1.1.12 and below suffer from a stack-based buffer overflow vulnerability in the NES sound format demuxer (demux_nsf.c).
091bbf5d39beb0c8cf8db84e31934c03fcce9f420df92d712585dade81a50370The E107 Chat module 123FlashChat version 6.8.0 suffers from a remote file inclusion vulnerability.
a2e1bbee70342d3d6e4a2e87fdde34fd15740e940272077089f485efa0211beaMicrosoft Works 7 crash proof of concept exploit that makes use of WkImgSrv.dll.
5f85f952e577de03ad55b796a0f89e467803815f3d1289a2a63b56809088e35cCarbon Communities Forum versions 2.4 and below suffer from SQL injection and cross site scripting vulnerabilities.
ec8b6da167cb0ac04f04778c691d037a9cd993aa0d5833d3b0c4f5594180c62eBS.Player version 2.27 Build 959 .SRT file buffer overflow exploit.
8cfbd5de445f4718c1656cc8b0690b95807d0e631cd49dd835765144bcb2a3beXplodPHP AutoTutorials versions 2.1 and below suffer from a remote SQL injection vulnerability.
de86652c23159fe36ac35481dc7fe41b5c2e8656a4bb6abf46056f585ab7c0cdLasernet CMS version 1.5 suffers from a remote SQL injection vulnerability.
fc72773e3a46fb2aa6f60be12009e84b233fcdf36cbcd4f457ebe1ca79cf2957DIVX Player versions 6.7.0 and below .SRT file buffer overflow proof of concept exploit.
a2c4196ad2a87b326c43c3596267b0413b7ce0811516ec6293eead33e494f776Wordpress version 2.5 suffers from a salt cracking vulnerability. Exploit included.
257f8090d1ae9f2d4bc67d88531f37050bfb63f7bb37c505d07788bf5f40eff7Istant-Replay Forums appear susceptible to a remote file inclusion vulnerability.
573c0ba8aeadf65e16ad28677a60372aeaf356a8be7911c582ca3f6f77e1c69cW2B Online Banking appears susceptible to a remote file inclusion vulnerability.
13060104ca0d841b96bd106ed98769c95345ace7f7719f58e6bcb76651502e6dBosNews versions 2002-2006 appear to allow direct user addition without authentication.
78e19f2cd939715bf2b0c793c675f249d1d56722bf567907c927f2ddfe5b6d49BosNews version 4.0 appears to allow direct user addition without authentication.
2589ceb6a2f35fe93bf57df5083da3f3a1dd0f4ccd3e274ce5c2f9ff8207e7aaLightNEasy SQLite / no database versions 1.2.2 and below suffer from code execution, SQL injection, file disclosure, and other vulnerabilities.
4ae586772da13e3cd993c941d350c352d377be625415ae3185b3d5119a5dc502Gallarific appears susceptible to persistent cross site scripting vulnerabilities.
ae434659923a53d098c9cd586d971e9f78ffb1cda3c7df241b89ec7c108592e1BigAnt Server version 2.2 pre-auth remote SEH overflow exploit for Windows 2000 SP4 English that binds a shell to port 6080.
686272c27038e11de7c9e4ab5049521055d0aff4cb2b0da06793f5ea631ad9aaClassifieds Caffe suffers from a remote SQL injection vulnerability in index.php.
77e326ebe8e421ce1bde7808a05b7f14984ebed5472d6dbeaff8edf59a973987Cezanne version 7 suffers from a remote SQL injection vulnerability.
4f513e27a069c861f54191d62da844a44fef875775d97ab20369bdb7cbd7f1e4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed