C Market version 1.1 suffers from a cross site scripting vulnerability.
7eee8a6e8b2efa913036f13a68c7e147df4b15ed400e1c7a8b08cb2e7ddc3a00
The ImageShack main vendor website suffers from a cross site scripting vulnerability.
8302a621c340b765c1cb38377c2bb5005aeaa0fba45914ca0a29060fa6a43d07
Bundesregierung Website suffers from a cross site scripting vulnerability.
8a4b85d15dd2b98d678c7d61fb666b56effe507ef131ce0a80b2239800bd08e4
A vulnerability in the IrfanView FlashPix plugin exists due to the "Free_All_Memory()" function not properly setting certain decoder elements to NULL after freeing them, which can be exploited to cause a double-free condition via specially crafted FPX images. Proof of concept exploit included.
fd583f5874fee2012eada88e8599ffeaa35b493c3a60e8084c24257dfd12afb7
IrfanView suffers from a heap-based buffer overflow vulnerability when parsing malicious TIFF images. Proof of concept exploit included.
0d475986f882b8c441677da90e11f68d6d58c3d8306b9fea5575d224ba69b2d2
Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.
233198580f60b5c19807e7dc79ce1f1aaf6a9b1290ddd21adb2e624fea5f177d
Local buffer overflow exploit for TORCS version 1.3.1 that creates a malicious .acc file.
939526dbe3782fc5e3b30b79c600c848488a9ffffe97b13145f2f0d46831633c
epesi BIM version 1.2.0-rev8154 suffers from multiple cross site scripting vulnerabilities.
5b59a2617e80ed3a1950f67746807d8c80cd4ac9e0382b4f2f81496b14e06957
OBM version 2.4.0-rc13 suffers from information disclosure, cross site scripting, local file inclusion, remote SQL injection vulnerabilities.
32cd7c40beed039d478c01f5a79246b2f4906d3da94c27ddf5e45ea5678a6298
SpamTitan version 5.08 suffers from persistent cross site scripting vulnerabilities.
0d7686367add0ed0adb58d2bca4b727c36be122f8456213678ef5158f414532b
The Barracuda Control Center 620 suffers from a remote session hijacking vulnerability.
8c69fa930e196991bbf895fc71606a169b03a3cb9ec3ab4781fe44c5371bdd13
The Facebook Juniors-Cheesecake-Foxwoods application suffers from a remote SQL injection vulnerability.
b20151233aa79350631d9e3702280da179b94e666fa7d412d3766d0981492730
The IBM TS3200/TS3200 Web User Interface is vulnerable to an authentication bypass attack. By sending a series of requests to the authentication function, it is possible to trigger a condition which causes the application to grant an access cookie which permits remote administration. Firmware less than A.60 is affected.
251930962a416ff086d78263b78eb5f8dcc016095a831b437bd5a97ae19df1ac
Kaspersky Internet Security 2011/2012 and Kaspersky Anti-Virus 2011/2012 suffer from a local memory corruption vulnerability.
18c23b61b3a5130f1676e81339edfa843b2843bccb7b7083fd3c502bd069ce8e
CertificationMagazine suffers from a remote blind SQL injection vulnerability.
cc9755e4bd476d7e39514d1537348ba2ee0e32be53724bc41aa0528154c0f225
Cyberoam UTM Application versions CR300i, CR500i v10 and older versions suffer from a remote SQL injection vulnerability.
b7bba3ca0e5d097d05c5be48898e06313af6ba34e1a9a89ae413b95095e5c55e
Tiki Wiki CMS Groupware versions 8.1 and 6.4 LTS suffer from a stored cross site scripting vulnerability.
b6a4a107433a40e17f0035aef8bc745879ef539726e9eb3576090bc83cbb1b15
PHPShop CMS Free version 3.4 suffers from cross site scripting and remote SQL injection vulnerabilities.
8ffe5013bd85e933f7b064840141184420503d7040ec325bd1e48b4133e7824b
The Joomla Matrimony component suffers from a remote SQL injection vulnerability.
58b8300185759c21c44594a5e2a718b78355ded87228dff646e9f63896be325d
The Joomla Caproductprices component suffers from a remote SQL injection vulnerability.
59707d1de7e36d6494fa2fa62d29df92adf2172fb61d2bfde49b145cfc0f1b94
Artmedic Webdesign Links version 5.0 suffers from a remote file inclusion vulnerability.
f0792f7220dbeea15bec70c0269c980119b5f0683dfeb27d780b641edfe2e437
Gold Coast Web Design suffers from a remote SQL injection vulnerability.
db6711970c527db2e9981f731ea5f0e3c00408f918538a1face2bcf27ab2c2a3
Free MP3 Player version 1.0 local denial of service exploit that creates a malicious mp3 file.
a8d50ae173920d82786db1c55461ca701b5b672c3a52d83d4da71f924ae15cc9
PHP Booking Calendar version 10e suffers from a cross site scripting vulnerability.
482251c8f23fc16eb1e5939226f88efda2fbfdaa271fdaa4fb16a327e01775f1
The Joomla Dshop component suffers from a remote SQL injection vulnerability.
6a52e7d893c2665958898ad01d124ce3ebcaf1af7dd716c0efef90a5caeb521a