Car Portal version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
558fd8c8fa72e46873f15de1adf342ff6ea1765a365617fdd0c8a866f1a58c77
dBpowerAMP Audio Player version 2 local buffer overflow exploit that generates a malicious .pls file that will bind a shell to port 4444.
7b61fef3bf02e8083f6897916f1b3e757353da051d32f656f85b73fd20ff1a58
The Motorola Wimax modem version CPEi300 suffers from directory traversal and cross site scripting vulnerabilities.
c40249b2cc26974cd51cfcdfaae55748fa9d06b6f0d392a4ff8c05c839c7daa2
The Drupal Imagefield module version 5.x-2.2 on Drupal 5.15 suffers file upload and cross site scripting vulnerabilities.
70b7ca51b0395989d6850139e7704f4d0741f5506342259ab3079931a19bdc6f
WFTPD Explorer Pro version 1.0 remote heap overflow exploit that spawns calc.exe.
010a0b8b7f9edfb819701abd6dd9bfe4f94c0ed71d131ae44edf94631623aed9
GLPI version 0.71.3 suffers from multiple remote SQL injection vulnerabilities.
619163e05d96d159e54663d9baedebfb774544a86bcfbcf5fda303dd6eca48cc
Oracle Forms suffers from multiple cross site scripting vulnerabilities.
c58a5fc94e6d0b9193d6a1d5d65986f320efab52758141cc879a447aca844540
Star Articles version 6.0 suffers from a remote contents change vulnerability.
fb087a2a46e4b4469c983a10b3828587f93a9341f69d71c7ae6190748b96b606
Personal Site Manager versions 0.3 and below remote command execution exploit.
372f8d1b42decdc5082a30a955afc5dc085044cd9257dd8eda866dd06344a8ae
Coppermine Photo Gallery version 1.4.19 suffers from a remote PHP file upload vulnerability.
b34c883c7280e4986196f02cc4c43ed2172a37b9cf67b47279be752c4a0556d3
The Oracle Application Server Portal 10g suffers from multiple cross site scripting vulnerabilities.
a2058580468d54d3295d3c90c7ede45a38a5eef3a30cfc9c97d7592c7faa7c26
Internet Explorer 7 clickjacking exploit code.
1e7ddcd6158a18b1a09957183f6b06152f49104e57d017d77e478253b454d6dc
WOW - Web On Windows Active-X control version 2 remote code execution exploit.
8a62e6e8ee1b220696af9d8e99fad8c546353389727e07afaec40abe37633df7
Amaya Web Editor versions 11.0 and below remote buffer overflow proof of concept exploit.
3b33c73eda4691c1ee2f13d78db8f910acfc116cfd3dbca78e2ae3296dbd8dd6
Thomson mp3PRO player/encoder denial of service crash exploit that creates a malicious .m3u file.
85516b60f7f668cadd6f353c364e053293a2abb0dbf27a4483fc826d19df8386
Code that demonstrates the Google Chrome version 1.0.154.43 clickjacking vulnerability.
03574def8d9d7f4c377488d4c1a5b9243ec0d8f75e5d2d7f597a272799ae8201
SmartSiteCMS version 1.0 remote blind SQL injection exploit that uses articles.php.
8dc4d65963b9a2e3ec5485d75b7c08e6c1985ae66c0fe9a9e27eff286bdfcbb5
The Google Chrome browser versions 1.0.154.43 and below suffer from a clickjacking vulnerability.
27dcfcdabbcecce3e8e4b66b1588af2538f343cb247465ef7a0c037215785377
Social Engine suffers from a remote SQL injection vulnerability in blog.php.
250d58cd724dbf96f25515b1811cc40a57dd614cb233d80da00e837194214d87
Community CMS versions 0.4 and below remote blind SQL injection exploit that uses index.php.
2c06704b235eaf18e149f1b6c3fbf06134295427b659e6f5d9ebd948209e2968
Zinf Audio Player version 2.2.1 universal local buffer overflow exploit that creates a malicious .pls file and launches calc.exe.
82389511c38046d9cfc27b5557ecad039256e81f283690cf234c8d68e3071e38
Max.Blog versions 1.0.6 and below suffer from an offline authentication bypass vulnerability in offline_auth.php.
7fbacf2aeb40d0bfed5b5238ae5d62c675412063aee58b207e2ed16e2e5ebcef
Max.Blog versions 1.0.6 and below suffer from a remote SQL injection vulnerabilty in submit_post.php.
039ea77ba9557deb0e5c89b7b7fc9e6fe8f0be1658e75d83a4c117a5882ca7f8
Lore version 1.5.6 blind SQL injection exploit that uses article.php.
162b37cc90e2e08478870b1b63ede365f3f9d5b90c5d9ec360711e24376edc55
Local file inclusion exploit for PHP-List version 2.10.x that performs remote code execution.
1b19a9078c5a8b7604e637366f4a7c7930ad19ab102b1d5f23196e62243d7af5