AVE.CMS versions less than 2.09 suffer from a remote blind SQL injection vulnerability in the "module" parameter. This is a proof of concept exploit. This issue is addressed in later versions.
0315982b1ccf89c5cfeb0adfb6c968c3
CPE17 Autorun Killer ASCII buffer overflow exploit that affects version 1.8.6 Build 1590.
194aca6ba6abd386e91bc3770982a5fb
This Metasploit module exploits a stack-based buffer overflow in Photodex ProShow Producer version 5.0.3256 in the handling of the plugins load list file. An attacker must send the crafted "load" file to victim, who must store it in the installation directory. The vulnerability will be triggered the next time ProShow is opened. The module has been tested successfully on Windows XP SP3 and Windows 7 SP1.
2564eff9044f229cc53b605dd7e8892e
This Metasploit module exploits a vulnerability in Simple Web Server 2.2 rc2. A remote user can send a long string data in the Connection Header to cause an overflow on the stack when function vsprintf() is used, and gain arbitrary code execution. The module has been tested successfully on Windows 7 SP1 and Windows XP SP3.
d8d2ec005f962860b2da889da4d291c1
Photodex ProShow Producer version 5.0.3256 suffers from a local buffer overflow vulnerability.
11ade52c750313c9dc7acb65477ffaee
SimpleWebServer version 2.2-rc2 remote buffer overflow exploit that achieves code execution.
a674d34d5ee58a37ae4c282e8c852ebb
easyCMSlite version 1.0.9 suffers from a remote database information disclosure vulnerability.
69bc0185623324bc9c61b90a862e633e
OneFileCMS version 1.1.5 suffers from a local file inclusion vulnerability.
36d8d12154ffaa676f95e9ee85c40902
KnFTP server version 1.0.0 remote buffer overflow exploit that leverages the USER command.
903ca54b22d91655922a623d0288932e
Elxis 2009.3 Aphrodite revision 2681 suffers from session hijacking and cross site scripting vulnerabilities.
f9ccdc3d78ec7cebafd47ffc67968070
OneFileCMS version 1.1.1 suffers from a remote code execution vulnerability.
bc9130f0c3f8509d9ce247003064ea3f
OneFileCMS version 1.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
66a046b64cf5f00fd02bb371f0bc9daf
EZ-ShoPwner version 0.1 is a pwning tool for EZ-Shop. It allows an attacker to extraction various data from the database and spawns shells through netcat and metasploit.
e56a0d2f60322ef30ee8ef0e6273c16a
Xitami Web Server version 2.5b4 remote buffer overflow exploit that spawns a shell.
439a063038ff30368be7e0ad0dfa5c84
WarFTPD version 1.65 USER remote buffer overflow exploit.
fb1de34a130b1c62ae2f0d23eb12f4c8