The Clockstone WordPress theme appears to suffer from a remote shell upload vulnerability.
c5c62b70f95fe9932f14fd229bfe88499c762fcf65f2241447059818767b8ab3
Centrify Deployment Manager version 2.1.0.283 local root exploit that leverages a race condition in /tmp.
38f44fe5235206c1815107ebecea1649a3da90ccbf7baa70c756abbb16cd7901
Enterpriser16 LB version 7.1 suffers from multiple cross site scripting vulnerabilities.
aa91eebfe06d0523d5a5bc5c93c855ec94ee4813c161cbd2081469cf89caa728
SonicWall SonicOS version 5.8.1.8 suffers from a POST-based cross site scripting vulnerability.
69736c270ef6a91bbb98fe08a560c38028dab2cab42b016f68ad8173c6b98034
MyBB MyYoutube plugin suffers from a stored cross site scripting vulnerability.
5442668c0b43e318f6415ef1ecbfd2ae45e2284829bd212ed0c8016ef762a3ee
MyBB Xbox Live ID plugin suffers from a stored cross site scripting vulnerability.
7e0ca0889c7441be6bab586be3052a685789dc0fb626292b68cecb36254a3a25
MyBB Profile Skype ID plugin version 1.0 suffers from a persistent cross site scripting vulnerability.
5e013aabc0196147facbf7738386c71c57b37bcc6a6f4f5840cf55448e173435
MyBB MyTube plugin version 1.0 suffers from a persistent cross site scripting vulnerability.
d325c54a1faea9eed66d459ba6d4bbded28e0f02cd268edf7ebc3bf3a722f7cd
MyBB Facebook Profile plugin version 2.4 suffers from a persistent cross site scripting vulnerability.
3b097c11871b6cf5ca13bc88715d08e215a08bdee3fffc396cb40fc0ca2f5733
MyBB Bank Transactions plugin version 2.0 suffers from a remote SQL injection vulnerability.
b5222aa3da9434e51331f92cb0cbda2b2fa97e5fbd76eddfa0fe0fd087c25916
Firefox version 17.0.1 crash proof of concept exploit.
8f52c23e864a01cfd2602317604d93d20ad4e5ae9071d033b024a5a3778f49eb
This Metasploit module exploits a heap based buffer overflow in the CrystalPrintControl ActiveX, while handling the ServerResourceVersion property. The affected control can be found in the PrintControl.dll component as included with Crystal Reports 2008. This Metasploit module has been tested successfully on IE 6, 7 and 8 on Windows XP SP3 and IE 8 on Windows 7 SP1. The module uses the msvcr71.dll library, loaded by the affected ActiveX control, to bypass DEP and ASLR.
e2e444f4f608cf2a5267e52972251a3f6dc63fb45578a2ac18f6eb5ad4684ec0
phpwcms versions 1.5.4.6 and below preg_replace remote code execution exploit.
815d662d1defc929cafd32019bac1baf9c7bd4c542eedf9b6366400a07994cd5
Rokbox version 2.13 for WordPress suffers from content spoofing, cross site scripting, denial of service, path disclosure, and various other vulnerabilities.
51a81a8d051d242f2a2efc2c318db1e018963bd4d73085533099aba88545bf32
The National Weather Service site at weather.noaa.gov suffers from a cross site scripting vulnerability.
e04b959f09b5af9ce7f9b2cbc3bab1960972e0b243ccec283657989ff930cc26
It has been reported that many Peruvian universities suffer from remote SQL injection vulnerabilities.
3a065f6e2e9034a46e246a31e0787be79b96296967cd1e8a1095ef1e9c639269
Sites designed by Phuse Web Design, Element C2, and Cox Web and Design suffer from a remote SQL injection vulnerability. Note that these findings house site-specific data.
504123cfc20a40a7941798db5ac7a257396e4266ab0caf5439362350aeb60890
Sites designed by Pro-Service, Pulse Solutions, and Orphmedia suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
5e38611813699dd9ee222b601e6d0400e6726f1ccda60cec5442ffede8f00edb
Sites created by Tristar, Studio Umbrella, and Intelligent Soft Solutions suffer from a remote SQL injection vulnerability. Note that these findings house site-specific data.
663bee86429fe5059427fa7cbf13c09c652f8015577883f6a83873176982fc09
Websites designed by Toto, WebConnection, and Tides all suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
919bc329ba62202198f938810d30f99a1d9e33e05ce7f90f66a2ac6b3bc32900
Sites created by Nissi Infotech, Pej Studio, and Plante Graffix suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
4738782f8078e0ecdc921eb6931e8fcd4e1886f030c64327124d0ed97988d158
Adobe Flash Player version 11.5.502.135 suffers from a memory corruption vulnerability.
07d935a47e6f39722a8226e2bd3af1f187d5d638fd758d8583b7629f285c8c63
MyBB plugin Profile Skype ID version 1.0 suffers from a persistent cross site scripting vulnerability.
cb32773a9298280e88fa37b95b9cdf814b7f82cacf14a4c18d19123305094269
Totem Movie Player version 3.4.3 with GStreamer version 0.10.36 suffers from a stack corruption vulnerability.
5b07f9e2d077151423280273534963eaef45c111f2dbf2a27e6e1fb2f488acf9
TWiki versions 4.x and 5.1.0 through 5.1.2 suffers from a remote command execution vulnerability due to an underlying security issue in the Locale::Maketext CPAN module.
cb72251d574c616e51ff36e8cd83c9ea7e2a8b758b68d28544a8988cc1c489f9