Pay Per Watch and Bid Auktions System suffers from a remote blind SQL injection vulnerability.
914834f83048e939c395ed737f0c76e37d97650770aa3bf45c0e8a23ee407ffa
Vanilla versions 1.1.10 and below suffer from a remote file inclusion vulnerability.
38521929a2ad885d62cff7cd0dacd44605a60b8d1f4c12366e2cf5f6368404a2
Yupi CMS version 0.44 suffers from a remote file inclusion vulnerability.
f5beb887f04d744c144d40a1f599ef7e215ee0372e3192dda39f4801440d3c46
Apple Safari Tag heap spray buffer overflow exploit for OS X.
84bac39f296b2543e5ed47463e1a73c8d7da8b92855936c123cb3a0dce625d5f
Woltlab Burning Board Teamsite Hack version 3.0 remote SQL injection exploit that leverages ts_other.php.
19cff7126195b799e3b76c61b3fb00db28e23124673463b39720e1385a4fe68f
Adult Video Site cross site request forgery change administrator password exploit.
82c463788c212ab40d73c9378f60858bc316e3337caba35e8d33cdcbf52d0d3c
Crimson Editor version 3.70 SEH overwrite proof of concept exploit. This is the second proof of concept by the same author for this vulnerability.
28a8a1f6d87ae60402d3d46e912ffdf94c157596f157fdb2520a9a9032e82e29
Remote Help version 0.0.7 remote denial of service exploit.
defe99432d6b2eee6f03792639bad32f46c3fe9556a76c6ada5c12764d908146
eDisplay Personal FTP Server version 1.0.0 post-authentication stack buffer overflow exploit with egg hunter shellcode.
d8bcac4e6d3681225a51e49277ef1f2caa310dfb4ef9362e17866f83feece047
Debian Linux Security Advisory 2020-1 - Ivan Shmakov discovered that the htmlscrubber component of ikwiki, a wiki compiler, performs insufficient input sanitization on data:image/svg+xml URIs. As these can contain script code this can be used by an attacker to conduct cross-site scripting attacks.
37f8b6359bb2cbc490b8df853d94a9d02809616d7708a39bbe362907c08df68c
Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
9d4f8125bd5a7271397717e336604c14cb50966df682a141cd8d9829e6aea5bd
Malware 2010 Call For Papers - The 5th IEEE International Conference on Malicious and Unwanted Software (Malware 2010) will be held in Nancy, France, October 20th through the 21st, 2010. The conference is designed to bring together experts from industry, academia, and government to present and discuss, in an open environment, the latest advances and discoveries in the field of malicious and unwanted software. Techniques, economics and legal issues surrounding the topic of Malware, and the methods to detect and control them will be discussed.
383461f7576b55115bbe7be0f58312ce5728f64ebd6557ae2ef0a535cce01f87
Absolute Image Gallery XE suffers from a default password vulnerability.
01fcd25eee161bc128624a8c547ad03ab71aabdd71020d0df97369cb2ef93288
Cerberus Helpdesk suffers from a cross site scripting vulnerability.
0b256c96515dac71ac41d538018259d3bd16fd229655fd99e942c426ebbae308
Debian Linux Security Advisory 2019-1 - Marc Schoenefeld discovered an improper input sanitization in Pango, a library for layout and rendering of text, leading to array indexing error. If a local user was tricked into loading a specially-crafted font file in an application, using the Pango font rendering library, it could lead to denial of service (application crash).
3d8f0d6c6186bfd3e30d8b268d9fd56b61496eca0914b368802ed9eb04c2153c
The Joomla Gift Exchange component suffers from a remote SQL injection vulnerability.
e47b3f3c018c909624a229778ee5fd010652a0c93f0ba75c853ab632e1a4e765
Crimson Editor version 3.70 SEH overwrite proof of concept exploit.
d59c53f8a6dc87ca13156970495bd3b2817064dd37a484d7a82d901f90309f2c
no$gba version 2.5c local crash exploit that creates a malicious .nds file.
0db4c92df5b2a913663b082bc01c6c5ca63753cf58b59e24bd148f0f91cbdae4
KDE versions 4.4.1 and below suffer from a remote command execution vulnerability in Ksysguard.
de78459e55eaf4a500fa5221c88b9e8e1cdcb6fdbb3c4d50a4809e2cfaca45e6
The Aris AGX agXchange ESM safety submissions module suffers from an open redirection vulnerability.
2c9de39e17d4804bef609db851591fe352f2c6759ab33b6236daaa76c6ef0832
Webmatic version 3.0.3 suffers from cross site scripting vulnerabilities.
45062d33d054f0be7dea2a4b3543b13eb83243994010aa8a0f88a32673ca6fd7
SiteDone Artist Edition version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
214740011eda163decd5503724d92e46e95548684c0f768fc7766b3c9fd1b771
SiteDone Custom Edition version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
3169d8510c11ed538735f96c47030bf2976a112c48396193b4effe68a919cb60
Secunia Security Advisory - A vulnerability has been discovered in notsoPureEdit, which can be exploited by malicious people to compromise a vulnerable system.
14003405f47757955401a75d7de2fbf3827a9435047c8a58ebb9773b71827f17
Secunia Security Advisory - Some vulnerabilities have been reported in Secure Portal, which can be exploited by malicious people to bypass certain security restrictions.
25b4fc89d2b512e2ce4d7c41cc69bdeff81eb959175d6497b010cb62fd15dfab