AT-TFTP Server version 1.18 suffers from a remote denial of service vulnerability. Proof of concept exploit is included.
072356984ca8faefce1723f3102ee7b8a3127843c984c8180efac28c181306ae
A remote SQL injection vulnerability in mySeatXT version 0.1781 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.
027c040aefe3cce4d941812b454320797ec0935118cbc79f575a7cd766c3f745
A local file inclusion vulnerability in OrangeHRM version 2.6.3 can be exploited to include arbitrary files.
904f19ed1c7d78e937be6a1e3e37907f31490b70b77fa966d4f097d84f44537c
Publishing Technology suffers from a remote blind SQL injection vulnerability.
4484210dc3dc2c7e5ae4ceae9b0c1f10b5c60d04a636ba8bc8f415e7b515fed3
A remote SQL injection vulnerability in phpMyChat Plus version 1.93 can be exploited to extract arbitrary data.
74db3035ec2bf971a33ef4161634f2f27af0d47df247933f63d90810de555def
A reflected cross site scripting vulnerability in phpMyChat Plus version 1.93 can be exploited to execute arbitrary JavaScript.
457aeb746421475c9817a831b496f445a2a28d1e0ecb0d84f283577bfbc3d397
A reflected cross site scripting vulnerability in TemaTres version 1.3 can be exploited to execute arbitrary JavaScript.
cca51d2fe24e65e79aa40b59ff941ac3fcde1a49e8678ad19e81ca640616f4dd
A reflected cross site scripting vulnerability in webERP version 4.03.8 can be exploited to execute arbitrary JavaScript.
319298e6d568adf1f967836d0094304409c0db8ab76287d7cd60d4b785af7190
html_edit CMS versions 3.1.9 and below suffer from a cross site scripting vulnerability.
e63a273bc376cde13d7e11dc2f79a87a1b10296f919cbf939b995614e7be0e7d
Saudisoftech suffers from a remote SQL injection vulnerability in detail.php.
9f290b9660062669b4fb65b4d14389159b85fda8bd8559d507dd859e6706ca66
SoftMP3 suffers from a remote SQL injection vulnerability.
3e3fa9a3112dc4fcb3d914db99f6e43ca588fc500f2d4146a431755c17758bc7
Webmin versions 1.540 and below suffer from a cross site scripting vulnerability that allows for remote command execution.
79ce7134a3ef970d8a21e29d564f22919b1a69160445b954a449d17e00f80f9d
b2evolution version 4.0.5 suffers from a remote file inclusion vulnerability.
121ce4a54587185de752cf9aa2ed560fcbe8a5f05914cc6ff660d0b7242c2cf3
Xilisoft Video Converter Ultimate suffers from a DLL hijacking vulnerability.
d575cd635032e4b85083c0a1042a9574353dda3180bbe543e37d46b25a286d92
This Metasploit module exploits a stack-based buffer overflow vulnerability in version 3.0 of ediSys Corp.'s eZip Wizard. In order for the command to be executed, an attacker must convince someone to open a specially crafted zip file with eZip Wizard, and access the specially file via double-clicking it. By doing so, an attacker can execute arbitrary code as the victim user.
f7cf6b8da01815b33b60d03bf75a15fdc34e7db6f1efa9610628e431ece1a389
The messaging used in failed login attempts in WordPress allows for user enumeration.
f48de67dabdc3e6987b8be56f8bdf8cf2efffaaac5d0ff60456f0e5349566759
eXPert PDF Editor version 7 Professional null heap proof of concept exploit.
71168f53e088408cc1eb223d29435ea82c7017a1a30f9a3ad8d83fcd4913bce0
RealPlayer 11 Browser suffers from an active-x related arbitrary code execution vulnerability.
3041d88706bdccc492fbfd8545e6fddf5b77cebe36dd9af230eddebce1330ee3
Maxthon Browser version 3.22.2000 denial of service exploit.
f20cf6ccd1a1006dc09e72d09a12d50301cad02bbba41adeaf69633dbe11e718
Java.com suffered from an arbitrary URL redirect vulnerability.
fae597b92e3d5d5b04d05ec7256307a5741ebc08178d7285cd020f0c2e7515c9
SuperCopier2 suffers from a DLL hijacking vulnerability.
1b9db804180a2db6231196b685a6c6e4d50c4b17007b3f6be617003115ca4929
CitusCMS versions 0.6 and below suffer from a backup disclosure vulnerability.
c862765a01562c76e8c2600c7a94180a48a03eb4a74ad9be6e3c3964e199262f
Multiple Joomla themes suffer from cross site scripting, denial of service, disclosure, and abuse of functionality vulnerabilities.
8148583b8ad762681628eac607ff239001cef718fb344300b322e5c939626ba1
deV!L`z Clanportal (DZCP) version 1.5.5.2 suffers from a remote shell upload vulnerability.
8621f870da61d9f8031fa1c96012768ffc811f61b6099fdbc67d9fe50f807e4c
EasyPHP Web Server version 5.3.5.0 DLL hijacking exploit.
298b4a2bdda3dc5d4686b3f17e05c4f6e209c58d16ef487f16918f45a5476621