HFS versions 1.5g through 2.3 suffer from username spoofing and log injection vulnerabilities.
5b3cbaf4dc12bfae2a139d34b04a6f0260e498eb9425aab233e032444fa1c0a7
Syhunt HFSHack version 1.0b is an exploit for various vulnerabilities found in HFS versions 1.5 through 2.3.
cf5241d98b767c660b1da691f06531bdf11802f7be9b965f8b6a271445f08f40
HFS versions 2.2 through 2.3 suffer from arbitrary file manipulation and denial of service vulnerabilities.
b808645f02dd720f4b5dc129b8f8e58df6ca146c7b5158604938c0d0f8bbd55e
HFS versions 2.3 through 2.0 suffer from cross site scripting and information disclosure vulnerabilities.
c6417b3811c50e7ea4316acb3c097304bd8f5ebfd4d871f85cbc2532a0cd2f0d