A vulnerability has been reported in Microsoft Word, which can be exploited by malicious people to compromise the system. The vulnerability is caused due to an unspecified error when parsing malformed functions. This can be exploited to corrupt memory via a specially crafted function in a Word document. Successful exploitation allows execution of arbitrary code. Demonstration .DOC files included.
5fcc85f40dc8107798c539141a946efea24521a94a138f6205884bbb8f69dcb3
The Oracle corporation BEA Weblogic Portal suffers from a cross site scripting vulnerability.
821220c94039e8f164951cc1741e15685c368549c426efc49af91b9e02829ad6
The Horde and Kronolith Calendar applications suffer from multiple cross site scripting vulnerabilities.
30386bed5825372b7aefe414a9a8e005c856806f03ed110e291fcb1aa690f057
Horde and Turbo Contact Manager suffers from multiple cross site scripting vulnerabilities.
78f011ceac0502412b96770071ff0ac2a795f651e6bbb6460f7e7230c4d41cfa
Zen Cart 2008 suffers from a remote SQL injection vulnerability.
7260aa6916a170acdb470d1c1708afa290b585ec788a17a3d8c7a09917cb0432
GeoCarts suffers from cross site scripting and remote file inclusion vulnerabilities.
64a2127868ad766725ccc2a6ee91a7f3d27e9b21334eaba4a444a2c875616af5
Matt's Whois (mwhois.php) is susceptible to multiple cross site scripting vulnerabilities.
dbfb9ada797bf7f95b722ba3c8b2f5360ee2d583203259ba8047ea12a764aba2
All versions of Job Board Software suffer from cross site scripting and remote file inclusion vulnerabilities.
e9d937160ca2c81632180a9343f722ff0b35350cbcb6b999730f34a454f01fb5
WebEditor versions 1.0.4 and below suffer from cross site scripting and remote file inclusion vulnerabilities.
12b5ccecd9adbb1e200376471fad4094cae325cf97be876762d0178b4d40119d
Helios Calendar versions 1.2.1 Beta and below suffer from cross site scripting vulnerabilities.
158d6aafc9717d750c7571ceae7e27816afac34f9195422bf38a218bed197675
SocketMail versions 2.2.1 and below suffer from cross site scripting vulnerabilities.
42dfab9313f856d4432146f04f234d81fd6dacaa018f7055aefa7da54a4d2c96
SocketKB versions 1.1.5 and below suffer from cross site scripting vulnerabilities.
0684c0084d3fb8aae4fe1a04af9378e18f090376164aca236928951d2b9497e6
MailBee WebMail Pro versions 3.4 and below suffer from multiple cross site scripting vulnerabilities.
8528c171be555127dcec55a5c69531d596d97e13c0855c8f559060209ec22542