Invision Power Board version 3.3.0 suffers from a local file inclusion vulnerability.
f60495dc85f064342f7246563e66ad86955a8f7a941db582ed6b51ec5253b559
Uploadify Integration version 0.9.6 suffers from multiple reflective cross site scripting vulnerabilities.
2cec663ed8f499e02e5821c830115810999de117f9fed461880943ad28c12e39
OpenCart version 1.5.2.1 suffers from arbitrary file upload, HTTP response splitting, local file inclusion, path disclosure, and failed randomness vulnerabilities.
25944ffdc2a7a3db202a1db3e98135989ccf06c08ac03ec68f53ed95c4abb836
Uploadify version 2.1.4 suffers from cross site scripting, arbitrary file upload, and file existence disclosure vulnerabilities.
3f38c74b43ba1c025dd465775f3d1dc92c03a7e41854abae55a3586edd31ee50
Uploadify version 3.0.0 suffers from a file existence disclosure vulnerability.
05c97b59546e15f878181c5d6fbca56feb0254a860b7c9fc364aa9d33eb51a6f
Coppermine version 1.5.18 suffers from cross site scripting and path disclosure vulnerabilities.
7ed975c2a3c1cbdf0d8633640f3ac1828890da246e38234fa66957454d96fdde
NextBBS version 0.6.0 suffers from authentication bypass, cross site scripting, and remote SQL injection vulnerabilities.
bfa83da9859d83d6988d38e9d8dc4e00aea5881410d054635c38bf926bc80c44
Coppermine version 1.5.10 suffers from reflective cross site scripting vulnerabilities.
be8b73580a130da9b082972278f6af1869440c879e56b3306245c47f80cea697
CruxCMS version 3.0.0 suffers from cross site scripting, local file inclusion, authentication bypass, shell upload, and remote SQL injection vulnerabilities.
5375e0a5494a05b2ea69af210a5d3d1856065f95387bd5c4db520a4274857a70
Calibre version 0.7.34 suffers from cross site scripting and directory traversal vulnerabilities.
bdada2cbfe5d06feef10c7a93b08915bba5a2569537ebbe88dce78e46581aaf2
This Metasploit module exploits a vulnerability in the picEditor.php script of Coppermine Photo Gallery. When configured to use the ImageMagick library, the 'quality', 'angle', and 'clipval' parameters are not properly escaped before being passed. NOTE: Use of the ImageMagick library is a non-default option. However, a user can specify its use at installation time.
c125091ac8421181cd0302afb6f49897b22d6f924ad3dc28cf4a23ab0afcfdee
Sugar CRM versions 5.5.0.RC2 and 5.2.0j suffer from remote SQL injection, unauthorized access, remote file inclusion, and code execution vulnerabilities.
c370b50f7ecb557a73820f6d5a6ebce4eff9879ae4443b4683dfaf0d5cfee27b
Vivvo CMS version 4.1.5.1 suffers from a remote file disclosure vulnerability.
05fa1a11934b14f1095d2c734f42bad4dce651a581110e502fd5ee11a280b96c
TorrentTrader Classic version 1.09 suffers from information leakage, forced database backup, and multiple remote SQL injection vulnerabilities.
e8769d9da4b097523f74971e6c76bddfba18b6af3bdc4de9d5059363ee58d5d2
VirtueMart versions 1.1.2 and below suffer from cross site scripting, SQL injection, remote/local file inclusion, and code execution vulnerabilities.
c1b8b1b104c5cb8ad97f285c6bcdb1512e50ac13adc92396ee282e41ac8a0bed
This Metasploit module exploits a blind SQL injection vulnerability in VirtueMart versions 1.1.2 and below.
ee0b781624a9fe618d7bcb74a678739c7905f9010ed773f93804bcce0cfa5691
Orbit Downloader version 2.8.7 suffers from an arbitrary file deletion vulnerability.
e5ce7cc15101de30539c9ea9bc9a79cf27d07d7874d3092fd7718656d8b13022
RavenNuke version 2.3.0 suffers from multiple code execution and SQL injection vulnerabilities.
c34ff1a2c075baf5cd498bcc9dba388976bcf111db9b56ba7173af2090138d40
Updated version of the Google Chrome chromehtml: code execution vulnerability that demonstrates disabling of the sandbox. Version 1.0.154.46 is affected.
51fc96a054aa0a16bfb637685259cda45d65bdab9ef532392919c35d2dc90cd4
MKPortal versions 1.2.1 and below suffer from insecure upload methods, reflected and stored cross site scripting, and remote SQL injection vulnerabilities.
5f449583ffaa8667d7d232a825f8025e360d301db52df1c99e3ae7f4a6e8c644
vBulletin version 3.7.3pl1 suffers from a remote SQL injection vulnerability.
281f8824a21ee744c2e9623738b4bfcf0f02c5d55605d6775a421d5c519da677
vBulletin version 3.7.4 suffers from multiple remote SQL injection vulnerabilities.
7616ea592696b19126df0c67e92f237a255b4bc6899fc4efcf4894b2314caa88
Invision Power Board versions 2.3.5 and below remote SQL injection exploit.
76badd14786989e37d15975fe6be7b411428ffab8d0db1da5298996b3b06b24e
Coppermine version 1.4.14 suffers from cross site scripting and SQL injection vulnerabilities.
25419706766caddd648005f4bea79752b224aed766ae85d7be23135f0555917e
Coppermine version 1.4.14 suffers from a remote shell command execution vulnerability in include/imageObjectIM.class.php.
31a81742b5b6bb6f8d30f9640e25a0378a178d04d82a26078fcb19fbb421504f