OpenBiblio versions 0.5.2-pre4 and below suffer from multiple vulnerabilities including local file file inclusion, SQL injection, and cross site scripting.
67dd9f532ea1edb5529740b43cee83aeb7b4260ff981ff5913d1e2b1a9c20998
Debian Security Advisory 1405-3 - The Plone developers discovered that their hotfix, released as DSA 1405, introduced two regressions. This update corrects these flaws. It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies.
f8c4cb7b087f9f2293e88fb37d88e5ff7d90d653a0b0d0fe36cda51d032dbfb8
Multiple cross site request forgery vulnerabilities may exist in all versions of Joomla!.
67af246ade54bf269330420e99b6454ead1c811c69b2b4e83ed1299524d0690f
March networks DVR 3204 logfile information disclosure exploit.
a8de9f2ff246734bbfaa7def4155ecf81a21aecd1eef7445b563c86d73e1d08c
Proof of concept code that demonstrates buffer overflow vulnerabilities in libnemesi versions 0.6.4-rc1 and below.
9947cf0ecfc2921f661d34feffa34486434a72896349c8cd7bdf40f73eaa28a2
libnemesi versions 0.6.4-rc1 and below suffer from multiple buffer overflow vulnerabilities.
bd6793c0b74339d1048640fcab984245bc6341a27ff418d695e6758a405bef9b
Hot or Not clone by jnshosts.com suffers from a database backup dump vulnerability.
e19d578416e6728288d2b83540fe5f32afe51bf71dddee7ae3e75557f82d3ed7
Proof of concept exploit for Feng versions 0.1.15 and below which suffer from buffer overflow and denial of service vulnerabilities.
b8075873c5eb5b9c012a9d665f046358731cf22dfd65fa177f108e7433199023
Feng versions 0.1.15 and below suffer from buffer overflow and denial of service vulnerabilities.
6d66f08551e8a361293d57f93f34f6363a461dfe29986834e42b8b0d57bb9541
XCMS versions 1.82 and below suffer from local file inclusion and code execution via upload vulnerabilities.
86df86ac97dad0a6d1e88591700429ef56074e58587bf7643c6ef071b64d928d
Proof of concept exploit for Extended Module Player (XMP) versions 2.5.1 and below which suffer from multiple buffer overflow vulnerabilities.
d60128ae173aaa2a9891fd2b2114d67fb9038c6f3c657320889077fb1a28b4fd
Extended Module Player (XMP) versions 2.5.1 and below suffer from multiple buffer overflow vulnerabilities.
3ca0c94e973e5be492405539f40455938cdbd7b00bbe9896d3e1f187ec83dc91
Secunia Security Advisory - Don & breaker_unit have reported a vulnerability in MySpace Content Zone, which can be exploited by malicious people to compromise a vulnerable system.
fcd2f514e6bf8b7b8058661490d848422280919a58842b8fac3fe7b205fa9e41
Secunia Security Advisory - Alex Hernandez has reported a security issue in March Networks 3204 DVR, which can be exploited by malicious people to disclose sensitive information.
4e61f09ebcc39120430efe72de0e79f6e68b86d30e91764645173a9dff04cc46
Secunia Security Advisory - Luigi Auriemma has discovered some vulnerabilities in Extended Module Player, which can be exploited by malicious people to compromise a vulnerable system.
1267f4e48fd885208820d1b1fb195f164caa79b7ee871359b07c0663e85d7e6f
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in Feng, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
0d940dcd0cb586d1c07a327882744e5f3c782bdc1e67d7076d5ee757eb0851e8
xml2owl version 0.1.1 suffers from a remote command execution vulnerability in showCode.php.
22243303def97bcddb84b29c1dffac91ed0848d62178161bf478f013e862f13b
joovili versions 3.0.6 and below suffer from a remote file disclosure vulnerability in joovili.images.php.
904076a35da3187803d4e79e803ad471d3fa704f8c49084eb079a2842b1f0996
ZeusCMS versions 0.3 and below remote blind SQL injection exploit.
280d96cf6c431e3f69f4c9193415c03f2e5a38a3281c34d650e228e190e973a3
Exploit that will spawn winexec or a bindshell when making use of a buffer overflow vulnerability in the AddFolder() method of the Persists Software XUpload control version 2.1.0.1.
5043653f161ae8137723ce775da3699f00c227f5263c45089a2c144ba7528408
A quick summary of recent web hacking incidents in December 2007.
575ae4cacf70f24e99a97671aa2d5b09b37e72c31a968385ce7cd153fa062ab0
Google suffered from a cross site scripting vulnerability via UTF-7.
16145040a7cac6e9c01f87901218be0de9bde0bb5338026746f2d8aaaf137f14
Simple schematic to make an extremely malicious USB denial of service tool.
00f34bb4db2cca952671a1e31909f00c31da89965c4cc3f33579d0ab5ece00c9
The IPortalX Forums software is susceptible to multiple cross site scripting vulnerabilities.
964eafa2e663535c9eda05e3a0467a7c6ef7ff2e39255a9a00be1d91a90b7d43
PNphpBB2 versions 1.2i and below suffer from a local file inclusion vulnerability in printview.php.
801cdc0ce7ee22d95ce54c9109c694b0ec0054420874fc44121ffa6f3d182703