MFORUM version 0.1a suffers from an arbitrary add administrator vulnerability.
807f18e60215df83baf72791fca62e63d51add18a51c869243eddde68c0bb583
vBulletin versions 3.7.2 and below and 3.6.10 PL2 and below suffer from a persistent cross site scripting flaw in the administrator logs.
dcf3b06058a4887db12408d0b65f3d4274237007b9766fbdc07ef5b5175818d3
BrewBlogger version 2.1.0.1 arbitrary add administrator exploit.
3f42f31d9d1f7f8efccf8637cfd28c09325eb945be7f03fab869ef9c7623816d
BareNuked CMS version 1.1.0 arbitrary add administrator exploit.
a6908be2dd2579f41c42214d2c500002e33296afd563a93d7b0baf12812c5026
Anata CMS version 1.0b5 suffer from an arbitrary add administrator vulnerability in change.php.
0f4997d01fda62023cac37ec7b4eab0cb39488e5f5e4f1ade0fb76517c0c0df9
WebChamado version 1.1 arbitrary add administrator exploit.
5693b07d8c0650b25de4a139a7d312fbb125a34eaeebab97ed255a0fb4712198
IPTBB version 0.5.6 arbitrary add administrator exploit.
1605caeffa7574dfd66c1b80f96a27bfb09f4579ddca2b0d31dc2a419c573b99
Network General Enterprise Administrator from Net Scout allows for administrative actions to be performed as a user when direct URLs are visited.
14564c6061f9804588871f0714218b35c62f1000db0fcab460f638deeb011337
Repair Online version 1.2 suffers from a create administrator vulnerability.
413fc05e343542aaf3b0a67ed164fb30cee01a7454e8c0d82e09e613411d790d
PHP AGTC-Membership System version 1.1a and below arbitrary add administrator exploit.
60ac327b922de39519cd24bccf1cc1812c2aa18fa13026d908766ede2ee4a116
MyPicGallery version 1.0 arbitrary add administrator exploit.
3f58e4759f264c770fd1abcf349996596f98650b6cf47ec056b6f280a31917fa
AlkalinePHP versions 0.77.35 and below suffer from an arbitrary add administrator vulnerability in adduser.php.
38eeafabb6e26508ff52745732afa7a498c8d137154cccb6337821c29c626d8a
Zomplog versions 3.8.2 and below arbitrary add administrator exploit that takes advantage of newuser.php.
c6601fc9621b9463f309bc800f3ea1d990f06d77d7e3305cb5f7fdb921cab011
KnowledgeQuest version 2.5 arbitrary add administrator exploit.
aeed08cc181266540911ea2c2eceb30e2bbddce14192ddf89e2627d868ca469a
zKup CMS versions 2.0 through 2.3 remote add administrator exploit.
b77702a719e97f16193c2e54deb2b2cc0093a980da6c451c26f995c352323540
DomPHP versions 0.81 and below remote add administrator exploit.
ea324ad1ecf0e1a07c0f9d36cbfcc8bf2609206671697a4c37d988d703734fa6
AuraCMS version 2.2 remote administrator addition exploit that makes use of admin_users.php.
49838712be9f3249508ab1ba9853a8e6d8ce7a74a95390f28b9cf01a4d4c8b33
AGTC-Membership system version 1.1a remote add administrator exploit.
0b9b008502ba04e1769466e8168120c061c7f4b6e6b26aa36cebd8b6fcf37de5
PHP-Nuke appears to suffer from an administrative bypass vulnerability.
e65a445487a62365e031940ea2b1cc18182a8c6b24d1c07777133c6ea0e0eb5c
AV Arcade version 2.1b suffers from a administrative escalation issue via cookie manipulation.
4082b0e03fa581b0457a603383d8928215213ed467524de6b452fd32626684f5
AlstraSoft Live Support version 1.21 admin credential retrieve exploit.
a6a423aa86f3f5c449aaf62b417ca3d86c6a9fc47f888b457960c14eea89d4a5
AlstraSoft Template Seller Pro versions 3.25 and below admin password change exploit.
71b013dfe2100cc236938d8dcb7255f43a5d56fa448e79706e2b1dd11f59dffa
AlstraSoft E-Friends versions 4.21 and below Admin Session retrieve exploit.
40fbc3d4a63d9c810b8cd6634214e5da5a6696be1f69f75a98d194a0da957f27
phpBB 2.x suffers from a remote file inclusion vulnerability in admin/admin_hacks_list.php.
fd7b5cd3fa1a5cb3e5341c0f01035e5db29142536f8360a53b33ce5688efd45d
On a phpBB board, a user having access to the admin panel is able to execute PHP code.
3ce6369b0ae26ca7a1150a8d147e40ac0375ffda69ed95f5228aa4fddd7a4f9b