This Metasploit module exploits a stack buffer overflow in Novell iPrint Client 5.52. When sending an overly long string to the GetDriverSettings() property of ienipp.ocx an attacker may be able to execute arbitrary code.
dd50e06da2f228591a1f360cb7873d100656fb1bfc9fe7d53e51fd9983a3f046
PHP Speedy WordPress plugin versions 0.5.2 and below remote code execution exploit that leverages admin_container.php.
f81fcd56b70169b59a0219e334476443ac5a3384a2646989bfb17d3cbe9b831f
Joomla XCloner component remote command execution exploit. This component also suffers from information disclosure, local file inclusion, denial of service, and cross site scripting vulnerabilities.
bd1d11cc383f303dac4cb1520a59452b77f741b76b084b5ea0df94bb38723392
jakCMS version 2.01 remote code execution exploit.
095a687d1b71087412c7fcdb8149e733fbcdc9fda8ac9ed0440fda64b1d03bcc
jakCMS version 2.01 RC1 remote blind SQL injection exploit.
31101aea495f61bb183bc87f05f203da6df24172a60ea0840de8be9893f816fe
Oracle 10/11g exp.exe param file local buffer overflow proof of concept exploit.
5bc9f0e6eb52e601de2e7868bb5965400e6367fd5d43aa95bc7a483d47042933
Lingxia I.C.E CMS remote blind SQL injection proof of concept exploit.
849e822c4ad163e9f886e1f7a76b149fe0052436cccd30ddc705a2bc19428834
Openedit versions 5.1294 and below remote code execution exploit.
109e8071366bcc32318f57ba9b3bf472dcff4fe4ec1e701fc1872b146240f5fa
MeshCMS version 3.5 suffers from a remote code execution vulnerability.
754efa8ec8b57198d5ac326904d5e0ec20309c53331a21e5bd3b19b286e37dee
Lotus CMS Fraise version 3.0 local file inclusion and code execution exploit.
189eec1aff00e10a4d26fc21a7831e5e3bd37b7915a2eedcb6b6e722bdffe639
Concrete CMS version 5.4.1.1 cross site scripting / remote code execution exploit.
25d34ded70eb5aa35f7b41f5443095e406000d119f538a52bb97584a74f1906e
Amoeba CMS version 1.01 suffers from shell upload and remote SQL injection vulnerabilities.
8ba3e71395cf8d4f2a41dac665a20531421b7b4717fe96cb0c7776bef1a1fc5d
AoA Audio Extractor version 2.x Active-X ROP exploit.
5af63c85bddc6ce41639e8ed709f6c7d3c778d5136fcdfbb0c6144a02d1eb814
Blue River Mura CMS version 1.0 suffers from a directory traversal vulnerability.
1f57a05e47b256d3d03c780f846086bb5eb295772043520fcf901abf26e0efc8
ColdUserGroup version 1.06 suffers from a remote blind SQL injection vulnerability.
4d561fc606364ff9f9c632eea881ffa65e13486e9b56f015c12fe0dba863cda0
ColdOfficeView version 2.04 suffers from a remote blind SQL injection vulnerability.
855d1817a0ca53d21dc578095619d1437c8e8a51f5917ba373073c5ecdbe79b6
ColdBookmarks version 1.22 suffers from a remote SQL injection vulnerability.
cbc6927bea9de3b2ea85cd00fb54c888f98661bfc25de495e995b16883d6ad8e
ColdCalendar version 2.06 suffers from a remote SQL injection vulnerability.
79004122f6fa0b8ed16d7a22c99c794c2618a00717d56b9c657aab28aa2d9e7b
SigPlus Pro version 3.74 Active-X LCDWriteString() remote buffer overflow exploit with JIT spray and ASLR/DEP bypass.
9c685d938e1883d1e4e7b6e6b3ffab5eeccd0e9a73fbbf46776e45a8aa313f27
BlazeDVD version 5.1 stack buffer overflow proof of concept exploit with ASLR/DEP bypass.
0c78513f04ffa4f0fdc87590a1b031c3939bf6ccc06e9cfaee31781fcea375de
SureThing CD Labeler .m3u / .pls unicode stack overflow proof of concept exploit.
aa13b35c3e9c5a5d370d4cbe2bdcaa8c6f66436d4e74ec8797e1c1715673df67
Castripper version 2.50.70 .pls stack buffer overflow with DEP bypass exploit.
63f91da200ad01420a2dd356383697b73da42ae6b7788b473b6a33252406b0df
VUPlayer versions 2.49 and below .m3u file universal buffer overflow exploit with DEP bypass.
c53704449b5d914ae6d8a3eba49a9a44cd6bfa1647b683fbcb88d4bc7676c5eb
MyNews CMS version 1.0 suffers from cross site scripting, local file inclusion and remote SQL injection vulnerabilities.
f727376286789735b9ecf02c89fcd9fc788ec7bf6975b52da85db2636f3b4c12
Beyond Compare version 3.0.13 b9599 stack buffer overflow proof of concept exploit that creates a malicious .zip file.
c68b7b4e29957e8e6b5c6f5ee6d8621e31ddba7d387ec163e3854d1f4ac945dc