BLOG:CMS versions 4.2.1e and below suffer from cross site request forgery and cross site scripting vulnerabilities.
ddc26b3fa1bcdf7e1487319c93eac4eb1e64a80447f44813930a4ae823627b75
DorsaCMS suffers from a remote SQL injection vulnerability.
5f470d63c307ec009fbc2e0017592777c57a7eb044452c526018dc51a76bfcae
A vulnerability exists in the Pointter PHP Content Management System version 1.0 authentication system which allows for administrative privileges by crafting two specific cookies with arbitrary values.
383447dee593575552b4ff1eaf381e999b313af64904e3e28897fc874dcfacd7
A vulnerability exists in the Pointter PHP Micro-Blogging Social Network version 1.8 authentication system which allows for administrative privileges by crafting two specific cookies with arbitrary values.
5ed06a82856703845c31dcfc2e60d5e2c275c982d313bdc9e171cebe44ca0cc1
Easy DVD Creator local crash proof of concept exploit.
3c7a275d3effdb21eefadb086122bb81b6c00d7edee39d6e2a578ebe14296530
Digital Audio Editor version 7.6.0.237 local crash proof of concept exploit.
820e081085fd1ca4bcfd6c2a2807c9a1dfc73c0f4ac9523a262e5382d1c95d93
slickMsg version 0.7-alpha suffers from a BBCode CSS cross site scripting vulnerability.
9c4afcd68a7d3392a71f0c50f9628856f356b810d66910a21a8546f1d0fe0a75
This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
c5af90428a60eae212629d6165cc2ab369c2d3111464b63c3d7505ceda36a191
BlogCFC suffers from multiple cross site scripting vulnerabilities.
4a5f358eaed72d5ca282ae8e50804475f5e28c6ce5892b58a294a6f1fbd50eca
Google Urchin version 5.7.03 suffers from a local file inclusion vulnerability.
5e4cb1f96abd4d0dba19822c6f4cb88dbe18e99c1e9e68021ef02e64759e4502
slickMsg version 0.7-alpha suffers from a cross site scripting vulnerability.
c47f15d291a098777d8049b7c442a0f27bae35a13d72423b9d87eaea12757872
FontForge version 0.0.20100501-2 is vulnerable to a .bdf file font file stack-based buffer overflow vulnerability.
89e18269a2ce0ac9a0deb84e3e64b9bcd74d7342f689b5a63d8c76e42afc7f22
Mura CMS version 5.2.2085 suffers from multiple cross site scripting vulnerabilities.
9d4bb82fb22f559637164afc13054f172d012612b19b9a0b1fbc6c059f0d39aa
PmWiki suffers from a cross site scripting vulnerability.
fd530d072de60d1dc61f0016345caa92e6bea5cf292c3253c19715c220fb7c7d
Crystal Reports Viewer version 12.0.0.549 Active-X exploit that leverages PrintControl.dll.
edfb2794dd9dc50c64d7695bd3ed012142a7294f0256ed3b4f7e0ce7bd780306
It appears that the HP MSA2000 G3 may have a hardcoded admin account backdoor.
5693ad888ffbeb2a3080f85bf7cbfdabba3178387f4a6f8d1f51b2f6cd45aa25
PHP Top Sites suffers from cross site scripting and remote SQL injection vulnerabilities.
c8192bcf03e28e2a7361ecccc26e001882bc9dc6962685702841213293c057d1
MyBB suffers from a cross site scripting vulnerability in tags.php.
1c6e41739e839a6a02b401181bf3082349b3d0c71d058cd8d2ee3be9b322bcae
Cetera eCommerce versions 14.0 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
1d1ff6a0a3c08e87af39210f69111097127477626d24a7391577ac45704127e4
slickMsg version 0.7-alpha suffers from a cross site scripting vulnerability.
d49ba5a63777654e5e71d5273dc76eba90400c207eac1e240f3dc099826a0275
FreeAmp version 2.0.7 buffer overflow exploit that creates a malicious .m3u file.
4ca55d2f913072949c21c06bae327598a2c6fa9f441d8ca79b80bd9c1de1073c
SnackAmp version 3.1.3 suffers from a malicious SMP buffer overflow vulnerability.
1e7b97a8e0b60ec21c3dd744fc4813734ac1a7dee05b6c87cd45a4aa8dc56586
Godaddy's Workspace versions 5.3 and below suffers from a cross site scripting vulnerability.
ef9935ed4bcaf70501af3f24ea41d2050e62b8f73f4f677fda64607046750b4e
PowerShell XP version 3.0.1 buffer overflow exploit.
446a585e1ae00a3128deb6fbcfbf923285a37b0964c09c0fb89942ac45f96c79
Exim version 4.63 remote root exploit that uses a connect-back shell. Works on RedHat, Centos and Debian.
af8e1e361c82fc87041373b6e4044b0f7d87c3a5ff26e31b243a3efd06e7c7ca