Spaceacre suffers from cross site scripting, html injection and remote SQL injection vulnerabilities.
83ec74d45fa85be569509c188c8452ef35916350ce27235d46939441f03cf48c
Webit CMS suffers from cross site scripting and html injection vulnerabilities.
05400a90b695fd9ddbf6565252444b9152561f4c2daf6d05863958951783b9b1
Lizzard Active Media suffers from a cross site scripting vulnerability.
a3fb18677f9c6415c64e8e4a0e5f8a85a44eba9ee422a2950d20279f5a442d07
Google Chrome 4 suffers from a javascript filter bypass vulnerability.
055757eecd2c55b15308e775bf09cd18f72a6a408a88dc2fa420e7ce3f0a65e2
Ruubik CMS version 1.0.3 suffers from a cross site scripting vulnerability.
f82278e6284eff50960b4f1409360b91c94cee406b915d5a427c686339107d6a
GetSimple CMS version 2.01 suffers from a cross site scripting vulnerability.
d9c731db83edbf304c2df40653c0adf7bd6973d87f5f54af5cd916b844e14423
Razor CMS version 1.0 stable suffers from a cross site scripting vulnerability.
d00191add5e6aa3226a945fc2f4e61d704367c5235544a64c0668480cf382e80
360 Web Manager version 3.0 suffers from a cross site scripting vulnerability.
a9665a1c7c2b5279d7bb3229fc822c058358363bf52fb99f04db4263dd9ea0b6
This Metasploit module will execute an arbitrary payload on a Microsoft IIS installation that is vulnerable to the CGI double-decode vulnerability of 2001. NOTE: This Metasploit module will leave a metasploit payload in the IIS scripts directory.
641ff99aa7811add9ad4dcc768fb2145b5eaa76f8f0c9f211e656f570bea2703
Design by Web5000 suffer from a remote SQL injection vulnerability.
87444cbc402a3bfc34a4f917e23d240e33168d03ea09bd1fdac2e9e423797ae1
Flock Web Browser version 2.5.6 remote memory corruption denial of service crash exploit.
7ef197701ddf5fce834d394de1ef5458520ee5509fb092bec9ad82205c220504
Open and Compact FTP Server version 1.2 universal pre-auth denial of service exploit.
684440a1375687cbbed6a34317a123196df83653b157c3498e09d81c91f2b0de
Webit CMS suffers from a remote SQL injection vulnerability.
81cdf9b8a8262be39c1200d2a74f6b3636c9d212bb5d1e62126345f3735f0187
Webby Webserver version 1.01 suffers from a buffer overflow vulnerability.
c1efddb1b13c33f48bca2724a4a2cd55dd316b60fd3c13ef1e71beab2ce48b4e
The MKPortal Catphones module suffers from a cross site scripting vulnerability.
6ca0ec49a81b59b7080b28dc1d474161b1e0472fccae6a47fdb409d9e926cca6
Simpleside suffers from a remote SQL injection vulnerability.
240ccd091fe4126ddd2937b1a201957f6ef37c53a9c91ca31c76fe4cdd835a27
Nitro Web Gallery suffers from a remote SQL injection vulnerability.
021be5bdd0f4439a323b8c9b3344415c9024c4d57498f67c6770047df109000f
Website Design and Hosting By Netricks, Inc suffers from a remote SQL injection vulnerability.
2687aea2d8171fd5e4bdcd12db9019770c8976d0e051d175af9a8044e453258e
Month Of PHP Security - PHP's strtr() function can be abused for information leak attacks, similar to all the other interruption exploits. However the interruption is not triggered inside the zend_parse_parameters() function and therefore another fix is required. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
ff1c81a7124ac3182baaf60163657e7a541a27e788975c4c697b8f4c4561a02a
Month Of PHP Security - PHP's strpbrk() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
274ba71a6e53ef04fb807692afac1c424fb46450b6fe5462b7db26ec367c4416
Month Of PHP Security - PHP's http_build_query() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
2114e80fb67165abaa4f330235c37963b5138cfd8dcdb9ba0b476734e41fa993
Month Of PHP Security - PHP's str_getcsv() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
6d847b738c636eb4f640142e72e0b46a26a2e4392356290dcf389a42c4b57155
Month Of PHP Security - PHP’s htmlentities() and htmlspecialchars() functions can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
6d393c315c5467e139f5d0406c2433248990c6ecc6bf52111a89f5d78d6333f9
Real Estate Portal suffers from a shell upload vulnerability.
bc773363b1f3f1f39ab864e23861a3c9c74a5eee069655b206392472ca0f0b33
Month Of PHP Security - It was discovered that access control to the [php] bbcode which allows executing PHP code is wrongly implemented in e107. This allows unauthenticated users to execute arbitrary PHP code easily. e107 versions 0.7.20 and below are affected.
9e5e13070e5b1bbb208fabf81b566739464738bffb9c5bb3ff0a0421519c348e