Netious CMS version 0.4 suffers from a SQL injection vulnerability in index.php.
63326cba45d127b10a96b23ae226808f696e6923d31d7c369a09c109bf418486
MX-System version 2.7.3 suffers from a remote SQL injection vulnerability in index.php.
3a1fd80ea9dd9fc795df567e10b9b2fc86b871412e68eb482303ce190ad26b7a
ComicShout version 2.5 suffers from a remote SQL injection vulnerability in index.php.
552e238f194d7d3b98d6ff0c318c2fd476c3ddd97a90a94e22141bcfa22b0d0a
Mantis Bug Tracker version 1.1.1 suffers from remote code execution, cross site scripting, and cross site request forgery vulnerabilities.
f69ef268367fecefac3205565ba9c1d3f5e36237f4b833741139a9350750a069
eCMS version 0.4.2 suffers from remote SQL injection and bypass vulnerabilities.
f6ff84c0783097a21f22c7185d59fbc46712386c4cc4ec409e38e35e99d39536
Stargames Control Panel versions 4.6.2 and below suffer from a cross site scripting vulnerability.
a7e392cb9b2a900bff037782cbdc3f100c3767c8f715832b9369a1fbfd5f55fe
AppServ Open Project versions 2.5.10 and below suffer from a cross site scripting vulnerability.
54ed458145c4ec35f691ab5d23197dad293dabf759f28984e4ffb1a5a61bce90
EntertainmentScript version 1.4.0 local file inclusion exploit that takes advantage of page.php.
28a6414bbd6b0a8aff27caf50b5106c84959092170e3283996dedc835f609539
EntertainmentScript suffers from a remote SQL injection vulnerability in play.php.
2404fbf0960e44e2e6d66079fda32045c025f00068ac4fc0d27d8f7f9e478ff3
WinPCAP denial of service proof of concept exploit.
1432e8c079069a6ab716069ef7c345128f3cabec56bcb1328e175a03684a451e
Wordpress versions 2.5.1 and below offer the ability to execute arbitrary php code via the administrative functionality. This is a bit obvious to anyone who has used Wordpress installations, but I guess it is useful to note.
b8c00a899b80f40e3c05f1ff4633dd5608f6424a366be2dcb8c711639fbd1703
Bcoos versions 1.0.13 and below suffer from an arbitrary file read vulnerability via highlight.php.
e7ab34aed9514809805b0f909f04ffd546118b7e9e4be88fdd7ef809e613ad38
Microsoft Word versions 2003 and 2007 are susceptible to crash and cross site scripting vulnerabilities via malicious javascript execution.
9450a478f4400a7b5a60736110807c1fa7a8a05c22051c2435fab168d53fed6e
It appears that there is a remote compromise vulnerability in cPanel in relation to reseller accounts.
4745ad393ead10f2841702f3721f0bdf5e6d2f6186ef29c5113b5d64f637e24f
MercuryBoard versions 1.1.5 and below remote blind SQL injection exploit that takes advantage of login.php.
ee32f61af8073052943ef681d36dd47c25af9298f3665b1cf9e3a534a166d182
AlkalinePHP versions 0.80.00 beta and below remote SQL injection exploit that takes advantage of thread.php.
ae83f781db22a9e3e87928c96d77f4a30c0c53f6d4e6537de919558f6b3dab6e
microSSys CMS versions 1.5 and below suffer from a remote file inclusion vulnerability.
551ae3589d809fd7cb1cafebceb3dcbe10ed7df2545764086c02e3e78a0960bd
MeltingIce File System versions 1.0 and below remote arbitrary add user exploit.
0191a133e5722a0fa647c8fa423378617c024b9114236572c158f089f00691cb
PHP AGTC-Membership System version 1.1a and below arbitrary add administrator exploit.
60ac327b922de39519cd24bccf1cc1812c2aa18fa13026d908766ede2ee4a116
MyPicGallery version 1.0 arbitrary add administrator exploit.
3f58e4759f264c770fd1abcf349996596f98650b6cf47ec056b6f280a31917fa
GNU/Gallery versions 1.1.1.0 and below suffer from a local file inclusion vulnerability in admin.php.
b041abbca3d9cba81e19353c085331817f7623ed41864579e36dc48babc70576
easyCMS versions 0.4.2 and below suffer from insecure cookie handling and SQL injection vulnerabilities.
4525fea3087e07b510f74208b5d7ad1810113941bb1a5252bba5a2ce228b9b9f
AlkalinePHP versions 0.77.35 and below suffer from an arbitrary add administrator vulnerability in adduser.php.
38eeafabb6e26508ff52745732afa7a498c8d137154cccb6337821c29c626d8a
LulieBlog version 1.2 suffers from administrative bypass, upload, and blind SQL injection vulnerabilities.
6669581775cef06be7eb599193828cc05d05707eab7406849f2d5c795c858560
The PHP-Nuke module KuraniKerim suffers from a SQL injection vulnerability.
3052a56e095531465a12a611b76bf8ff95cf7b3773b1a487628b281e13d0e502