Novell Netware version 6.5 SP8 suffers from a FTP related remote stack overflow vulnerability.
d70cb64062375e67c59fa55ccdfc4459fc2ba986572b94e42fd9a52b123d90c9
OneCMS version 2.6 add administrator cross site request forgery exploit.
8ab8915fa1505c926a2308d040a9378f814880aab9448fd823e751fc2b13fe15
StreamArmor is a sophisticated tool for discovering hidden alternate data streams (ADS) that can also clean them completely from the system. StreamArmor comes with a fast multi-threaded ADS scanner which can recursively scan over the entire system and quickly uncover all hidden streams. All such discovered streams are represented using specific color patterns based on threat level which makes it easy for human eye to distinguish between suspicious and normal streams.
b4edb0ddb4cf443c06ecdc7ade05e2b382760d2c669384164c61922999e15c22
Powie's PSCRIPT Gastebuch versions 2.09 and below suffer from a remote SQL injection vulnerability.
a877dae77f90cb557ee806ec7270624ccd227158f317bddab76bdcc60d3f1812
The Joomla Radio component suffers from a remote SQL injection vulnerability.
a9d001fecc7d6b066d3bfcccbd3d131d42d4c224aead4a13dbec9675a6ce24eb
The Joomla Business component suffers from a remote SQL injection vulnerability.
15a2efdf2f9a9819a16ad7682dfe74da30c48150e4b51f94f825cc6f4b97ba96
The Joomla Departments component suffers from a remote SQL injection vulnerability.
10aa99c9ce2c211ffc6c2ad26d6beb4f193f459788a2cad9a70ff934455a4476
ASX to MP3 Converter version 3.0.0.100 local stack overflow proof of concept.
b26a4687332849aa5253a9e509e57a89dbb8eb40b0b6376f44dfc9c0360cdb3e
Document on how to research and develop plugins for WhatWeb to identify content management systems, web application frameworks, etc. As an example it includes how to research and write a plugin for the SilverStripe CMS. The document covers passive plugin development only and is accurate for WhatWeb version 0.4.
5f3f119d174b65e22f243ac401684758be8a9c7c1fe680743529431b7ca20d1b
aircrack-ng and airdecap-ng suffer from a denial of service / crash vulnerability when reading specially crafted dump files. Exploit code to generate said dump files included.
b40761105074bbca410e972c1e0f176ba38ecfa43d8ad420888d18ef5a548d02
PhotoPost vBGallery version 2.5 suffers from a remote SQL injection vulnerability.
a9e866c249ce1d2b696110e23e901d508b3e238c35f78be9b7bb6a6550f273c3
This Metasploit module exploits a stack-based buffer overflow in EZB Systems, Inc's UltraISO. When processing .CUE files, data is read from file into a fixed-size stack buffer. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to open an CUE file. NOTE: A file with the same base name, but the extension of "bin" must also exist. Opening either file will trigger the vulnerability, but the files must both exist.
fc09c8dc01c38a077fed4faed0017f5c4c92e09f67b17b911db36ba4850952ae
xwine version 1.0.1 .exe file local crash proof of concept exploit.
b9643633f7d5a68cbe65a1d44af0a460083068522c82abc63812548b840fa245
Secunia Security Advisory - Easy Laster has reported a vulnerability in Flirt Matching SMS System, which can be exploited by malicious people to conduct SQL injection attacks.
ef4e8ef11d812d0eef3cc5db9c5bcf2ac442a91b8b4b41cec1022d490043858f
Secunia Security Advisory - Fedora has issued an update for fcron. This fixes multiple security issues, which can be exploited by malicious, local users to disclose sensitive information.
5529ec7c52f241de74a94271b31ef37a1a2a0a856343b7301d70765a59389ff0
Secunia Security Advisory - A vulnerability has been discovered in Open Web Analytics, which can be exploited by malicious people to compromise a vulnerable system.
1fdf900258f76e45e3554e7d6681229b8ceee3c087535b7859b21b94890b9b97
Secunia Security Advisory - Debian has issued an update for curl. This fixes a security issue, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
38ad4a73bbaebd00d6f0f57934c605dd9208d820243fad45f865f62958bf13b8
Secunia Security Advisory - A vulnerability has been discovered in Stud_PE, which can be exploited by malicious people to compromise a user's system.
69d0cf22a7c9f25004f60305d9509db0c25aaea3fb6747bafea98e28eb4f7eec
Secunia Security Advisory - A vulnerability has been reported in Moodle, which can be exploited by malicious people to conduct cross-site scripting attacks.
1c508506a4267b420c06f1ff12defd562724b287d27fa735653aaacb5565457e
Secunia Security Advisory - Easy Laster has reported a vulnerability in Date & Sex Vor und R
f02ee871cd77da8b129d05d20714511c92e3aa718115ed1323582bbda6f6f473
Secunia Security Advisory - Fedora has issued an update for Moodle. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
6d2e8b40abc7b7140befb6f7245773ec8458eaba4eaf7a6a170720b2f663bb7e
Secunia Security Advisory - Fedora has issued an update for krb5. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
6776c8eb6778d842fcf4d20dfb95bb247e318e0158014888609d1a1a84ab01c9
Secunia Security Advisory - A vulnerability has been reported in Post Card, which can be exploited by malicious people to conduct SQL injection attacks.
b6edeb846c0be24b1dfc8121a14f296c6883f47b8b1a16191a6f27357ba6d01e
Secunia Security Advisory - A vulnerability has been reported in the dcsFlashGames component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
eb79a49d0f1530a93f2738aed386a39060edb796e209dba8f5046c7fe9cf7fba
Secunia Security Advisory - A vulnerability has been discovered in N-13 News, which can be exploited by malicious people to disclose sensitive information.
a163ec6b6744e60183ddb1271bcbd750d2473983d8e353573bf2f4478c1f89b3