- SFS EZ Link Directory (cat_id) Remote SQL Injection Vulnerability
- Adult Banner Exchange Website (targetid) SQL Injection Vulnerability
- Absolute FAQ Manager 6.0 Insecure Cookie Handling Vulnerability
- Absolute News Feed 1.0 Remote Insecure Cookie Handling Vulnerability
- U-Mail Webmail 4.91 (edit.php) Arbitrary File Write Vulnerability
- A-Link WL54AP3 and WL54AP2 CSRF+XSS Vulnerability
- Absolute News Manager 5.1 Insecure Cookie Handling Vulnerability
- cpanel 11.x XSS / Local File Inclusion Vulnerability
- Logz podcast CMS 1.3.1 (add_url.php art) SQL Injection Vulnerability
- SFS EZ Gaming Directory (directory.php id) SQL Injection Vulnerability
- SFS EZ Adult Directory (directory.php id) SQL Injection Vulnerability
- Absolute Live Support 5.1 Insecure Cookie Handling Vulnerability
- Absolute Control Panel XE 1.5 Insecure Cookie Handling Vulnerability
- Absolute Form Processor 4.0 Insecure Cookie Handling Vulnerability
- Absolute Banner Manager Insecure Cookie Handling Vulnerability
- Absolute Content Rotator 6.0 Insecure Cookie Handling Vulnerability
- Tribiq CMS 5.0.10a Local File Inclusion Vulnerability (win)
- Cybershade CMS 0.2b Remote File Inclusion Vulnerability
- e107 Plugin lyrics_menu (lyrics_song.php l_id) SQL Injection Vulnerability
- Tribiqcms 5.0.9a (beta) Insecure Cookie Handling Vulnerability
- Opera 9.62 (opera:allinone) Remote Code Execution Exploit PoC
- Absolute Podcast 1.0 Remote Insecure Cookie Handling Vulnerability
- Absolute Poll Manager XE 4.1 Cookie Handling Vulnerability
- Absolute File Send 1.0 Remote Cookie Handling Vulnerability
- Opera 9.61 opera:historysearch Code Execution Exploit PoC
- MyPHP Forum 3.0 Edit Topics/Blind SQL Injection Vulnerabilities
- Pro Traffic One (poll_results.php id) Remote SQL Injection Vulnerability
- DjVu ActiveX Control 3.0 ImageURL Property Overflow Exploit
- Venalsur on-line Booking Centre (OfertaID) XSS/SQL Injection Vulns
- Visagesoft eXPert PDF ViewerX (VSPDFViewerX.ocx) File Overwrite
- Harlandscripts Pro Traffic One (mypage.php) SQL Injection Vulnerability
- MW6 PDF417 ActiveX (MW6PDF417.dll) Remote Insecure Method Exploit
- MW6 DataMatrix ActiveX (DataMatrix.dll) Insecure Method Exploit
- MW6 Barcode ActiveX (Barcode.dll) Insecure Method Exploit
- MW6 Aztec ActiveX 3.0.0.1 Insecure Method Exploit
- 7Shop 1.1 Remote Arbitrary File Upload Exploit
- Wordpress Plugin e-Commerce 3.4 Arbitrary File Upload Exploit
- Mambo Component SimpleBoard 1.0.1 Arbitrary File Upload Exploit
- WebCards 1.3 Remote SQL Injection Vulnerability
- Sepal SPBOARD 4.5 (board.cgi) Remote Command Exec Vulnerability
- e107 Plugin fm pro v1 (FD/Upload/DT) Multiple Remote Vulnerabilities
- H2O-CMS 3.4 Insecure Cookie Handling Vulnerability
- PacketTrap TFTPD 2.2.5459.0 Remote Denial of Service Exploit
- H2O-CMS 3.4 Remote Command Execution Exploit (mq = off)
- TlGuestBook 1.2 Insecure Cookie Handling Vulnerability
- Agares ThemeSiteScript 1.0 (loadadminpage) RFI Vulnerability
- MyForum 1.3 Insecure Cookie Handling Vulnerability
- PersianBB (iranian_music.php id) Remote SQL Injection Vulnerability
- e107 Plugin BLOG Engine 2.1.4 Remote SQL Injection Vulnerability
- MyKtools 2.4 Arbitrary Database Backup Vulnerability
- Aiocp 1.4 (poll_id) Remote SQL Injection Vulnerability
- Questcms (XSS/Directory Traversal/SQL) Multiple Remote Vulnerabilities
- Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit
- e107 Plugin EasyShop (category_id) Blind SQL Injection Exploit
- TlAds v1 Remote Insecure Cookie Handling Vulnerability
- e107 Plugin alternate_profiles (id) SQL Injection Vulnerability
- MyKtools 2.4 (langage) Local File Inclusion Vulnerability
- MyForum 1.3 (padmin) Local File Inclusion Vulnerability
- Persia BME E-Catalogue Remote SQL Injection Vulnerability
- Ads Pro (dhtml.pl page) Remote Command Execution Exploit
- MyForum 1.3 (lecture.php id) Remote SQL Injection Exploit
- SFS Ez Forum (forum.php id) SQL Injection Vulnerability
- WordPress Media Holder (mediaHolder.php id) SQL Injection Vuln
- MS Windows Server Service Code Execution Exploit (MS08-067) (cn univ.)
- PowerTCP FTP module Multiple Technique Exploit (SEH/HeapSpray)
- PozScripts Classified Ads Script (gotourl.php id) SQL Injection Vuln
- Kasra CMS (index.php) Multiple SQL Injection Vulnerabilities
- PumpKIN TFTP Server 2.7.2.0 Denial of Service Exploit (meta)
- Tlnews 2.2 Insecure Cookie Handling Vulnerability
- TUGzip 3.00 archiver .ZIP File Local Buffer Overflow Exploit
- KVIrc 3.4.0 Virgo Remote Format String Exploit PoC
- PHPdaily (SQL/XSS/LFD) Multiple Remote Vulnerabilities
- vicFTP 5.0 (LIST) Remote Denial of Service Exploit
- BuzzyWall 1.3.1 (download id) Remote File Disclosure Vulnerability
- NEPT Image Uploader 1.0 Arbitrary Shell Upload Vulnerability
- Aj RSS Reader (EditUrl.php url) SQL Injection Vulnerability
- db Software Laboratory VImpX (VImpX.ocx) Multiple Vulnerabilities
- SiteEngine 5.x Multiple Remote Vulnerabilities
- MS Windows Server Service Code Execution PoC (MS08-067)
- VLC 0.9.4 .TY File Buffer Overflow Exploit (SEH)
- Joomla Component Kbase 1.0 Remote SQL Injection Vulnerability
- Joomla Component Archaic Binary Gallery Directory Traversal Vuln
- WebSVN 2.0 (XSS/FH/CE) Multiple Remote Vulnerabilities
- miniPortail 2.2 (XSS/LFI) Remote Vulnerabilities
- MindDezign Photo Gallery 2.2 Arbitrary Add Admin Exploit
- MindDezign Photo Gallery 2.2 (index.php id) SQL Injection Vulnerability
- aflog 1.01 Multiple Insecure Cookie Handling Vulnerabilies
- Joomla Component RWCards 3.0.11 Local File Inclusion Vulnerability
- txtshop 1.0b (language) Local File Inclusion Vulnerability (win only)
- SilverSHielD 1.0.2.34 (opendir) Denial of Service Exploit
- CSPartner 1.0 (Delete All Users/SQL Injection) Remote Exploit
- Opera 9.52/9.60 Stored Cross Site Scripting Code Exec PoC
- freeSSHd 1.2.1 sftp realpath Remote Buffer Overflow PoC (auth)
- YDC (kdlist.php cat) Remote SQL Injection Vulnerability
- DorsaCms (ShowPage.aspx) Remote SQL Injection Vulnerability
- Joomla Component ionFiles 4.4.2 File Disclosure Vulnerability
- LoudBlog 0.8.0a (ajax.php) SQL Injection Vulnerability (auth)
- phpcrs 2.06 (importFunction) Local File Inclusion Vulnerability
- LibSPF2 < 1.2.8 DNS TXT Record Parsing Bug Heap Overflow PoC
- GoodTech SSH (SSH_FXP_OPEN) Remote Buffer Overflow Exploit
- Iamma Simple Gallery 1.0/2.0 Arbitrary File Upload Vulnerability
- Joomla Component Daily Message 1.0.3 (id) SQL Injection Vuln
- Opera 9.60 Stored Cross Site Scripting Vulnerability
- freeSSHd 1.2.1 sftp rename Remote Crash Exploit
- ShopMaker 1.0 (product.php id) Remote SQL Injection Vulnerability
- VLC Media Player TY File Stack Based Buffer Overflow Exploit
- LightBlog 9.8 (GET,POST,COOKIE) Multiple LFI Vulnerabilities
- Limbo CMS (Private Messaging Component) SQL Injection Vulnerability
- XOOPS Module makale Remote SQL Injection Vulnerability
- Joomla Component Nice Talk (tagid) SQL Injection Vulnerability
- Joomla Component ds-syndicate (feed_id) SQL Injection Vulnerability
- Dart Communications PowerTCP FTP module Remote BOF Exploit
- Vivvo CMS 3.4 Multiple Vulnerabilities Destroyer Exploit
- WBB Plugin rGallery 1.09 (itemID) Blind SQL Injection Exploit
- e107 0.7.13 (user_hidden_fields) Remote Blind SQL Injection Exploit
- yappa-ng 2.3.3-beta0 (album) Local File Inclusion Vulnerability
- Solaris 9 [UltraSPARC] sadmind Remote Root Exploit
- BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit
- Fast Click SQL 1.1.7 Lite (init.php) Remote File Inclusion Vulnerability
- miniBloggie 1.0 (del.php) Remote Blind SQL Injection Exploit
- Nuke ET 3.4 (fckeditor) Remote Arbitrary File Upload Exploit
- PHP Easy Downloader 1.5 Remote File Creation Exploit
- Meeting Room Booking System (MRBS) < 1.4 SQL Injection Exploit
- zeeproperty (adid) Remote SQL Injection Vulnerability
- phpFastNews 1.0.0 Insecure Cookie Handling Vulnerability
- XOOPS Module GesGaleri (kategorino) Remote SQL Injection Exploit
- Wordpress Plugin st_newsletter (stnl_iframe.php) SQL Injection Vuln
- Hummingbird Deployment Wizard 2008 ActiveX File Execution(2)
- Hummingbird Deployment Wizard 2008 ActiveX Command Execution
- Hummingbird Deployment Wizard 2008 Registry Values Creation/Change
- Solaris 9 PortBind XDR-DECODE taddr2uaddr() Remote DoS Exploit
- Post Affiliate Pro 2.0 (index.php md) Local File Inclusion Vulnerability
- PHP Easy Downloader 1.5 (file) File Disclosure Vulnerability
- Calendars for the Web 4.02 Admin Auth Bypass Vulnerability
- iGaming CMS 2.0 Alpha 1 (search.php) Remote SQL Injection Exploit
- Mantis Bug Tracker 1.1.3 Remote Code Execution Exploit
- Kure 0.6.3 (index.php post,doc) Local File Inclusion Vulnerability
- PokerMax Poker League Insecure Cookie Handling Vulnerability
- IP Reg 0.4 Multiple Remote SQL Injection Vulnerabilities
- Mic_blog 0.0.3 (SQL Injection/Privilege Escalation) Remote Exploit
- Mosaic Commerce (category.php cid) SQL Injection Vulnerability
- CafeEngine Multiple Remote SQL Injection Vulnerabilities
- Hummingbird 13.0 ActiveX Remote Buffer Overflow PoC
- myStats (hits.php) Multiple Remote Vulnerabilities Exploit
- myEvent 1.6 (viewevent.php) Remote SQL Injection Vulnerability
- AstroSPACES (id) Remote SQL Injection Vulnerability
- MS Windows XP/2003 AFD.sys Privilege Escalation Exploit (K-plugin)
- PhpWebGallery 1.7.2 Session Hijacking / Code Execution Exploit
- VLC 0.9.2 Media Player XSPF Memory Corruption Vulnerability
- My PHP Dating (success_story.php id) SQL Injection Vulnerability
- Titan FTP server 6.26 build 630 Remote Denial of Service Exploit
- SezHoo 0.1 (IP) Remote File Inclusion Vulnerability
- Eserv 3.x FTP Server (ABOR) Remote Stack Overflow PoC
- Telecom Italia Alice Pirelli routers Backdoor from internal LAN/WAN
- Nuked-klaN 1.7.7 / SP4.4 Multiple Vulnerabilities Exploit
- XOOPS Module xhresim (index.php no) Remote SQL Injection Vuln
- WP Comment Remix 1.4.3 Remote SQL Injection Exploit
- ParsBlogger (links.asp id) Remote SQL Injection Vulnerability
- IndexScript 3.0 (sug_cat.php parent_id) SQL Injection Vulnerability
- LokiCMS 0.3.4 (admin.php) Create Local File Inclusion Exploit
- LokiCMS 0.3.4 writeconfig() Remote Command Execution Exploit
- RaidenFTPD 2.4 build 3620 Remote Denial of Service Exploit
- XM Easy Personal FTP Server 5.6.0 Remote Denial of Service Exploit
- My PHP Indexer 1.0 (index.php) Local File Download Vulnerability
- NewLife Blogger 3.0 Insecure Cookie Handling / SQL Injection Vuln
- GuildFTPd 0.999.8.11/0.999.14 Heap Corruption PoC/DoS Exploit
- LokiCMS 0.3.4 (index.php page) Arbitrary Check File Exploit
- Real Estate Scripts 2008 (index.php cat) SQL Injection Vulnerability
- Globsy 1.0 Remote File Rewriting Exploit
- mini-pub 0.3 Local Directory Traversal / File Disclosure Vulnerabilities
- mini-pub 0.3 (LFD/CE) Multiple Remote Vulnerabilities
- MS Windows InternalOpenColorProfile Heap Overflow PoC (MS08-046)
- Absolute Poll Manager XE 4.1 (xlacomments.php) SQL Injection Vulnerability
- Joomla Component ownbiblio 1.5.3 (catid) SQL Injection Vulnerability
- SlimCMS 1.0.0 (redirect.php) Privilege Escalation Exploit
- Easynet4u Link Host (cat_id) SQL Injection Vulnerability
- Nokia Mini Map Browser (array sort) Silent Crash Vulnerability
- ?ltaweb Al??veri? Sistemi (tr) Remote SQL Injection Vulnerability
- MunzurSoft Wep Portal W3 (kat) SQL Injection Vulnerability
- Joomla Component mad4joomla SQL Injection Vulnerability
- Joomla Component Ignite Gallery 0.8.3 SQL Injection Vulnerability
- Easynet4u Forum Host (forum.php) SQL Injection Vulnerability
- Easynet4u faq Host (faq.php faq) Remote SQL Injection Vulnerability
- Ayco Okul Portali (linkid) SQL Injection Vulnerability (tr)
- Konqueror 3.5.9 (load) Remote Crash Vulnerability
- NoticeWare E-mail Server 5.1.2.2 (POP3) Pre-Auth DoS Exploit
- WinFTP 2.3.0 (PASV mode) Remote Denial of Service Exploit
- Stash 1.0.3 (SQL) User Credentials Disclosure Exploit
- ScriptsEz Easy Image Downloader Local File Download Vulnerability
- MS Windows GDI+ Proof of Concept (MS08-052) #2
- ScriptsEz Mini Hosting Panel (members.php) LFI Vulnerability
- Kusaba 1.0.4 Remote Code Execution Exploit #2
- IranMC Arad Center (news.php id) SQL Injection Vulnerability
- Camera Life 2.6.2b4 (SQL/XSS) Multiple Remote Vulnerabilities
- Joomla Component Joomtracker 1.01 Remote SQL injection Vulnerability
- Gforge 4.5.19 Multiple Remote SQL Injection Vulnerabilities
- Gforge 4.6 rc1 (skill_edit) SQL Injection Vulnerability
- Kusaba 1.0.4 Remote Code Execution Exploit
- MS Windows 2003 Token Kidnapping Local Exploit PoC
- Konqueror 3.5.9 (font color) Multiple Remote Crash Vulnerabilities
- WebBiscuits Modules Controller 1.1 (RFI/RFD) Remote Vulnerabilities
- AdMan 1.1.20070907 (campaignId) SQL Injection Vulnerability
- HispaH textlinksads (index.php) Remote SQL Injection Vulnerability
- DFF PHP Framework API (Data Feed File) RFI Vulnerabilities
- Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC
- TorrentTrader Classic 1.04 Blind SQL Injection Vulnerability
- Built2Go PHP RealEstate 1.5 (event_detail.php) SQL Injection Vuln
- PHP Auto Dealer 2.7 (view_cat.php v_cat) SQL Injection Vulnerability
- PHP Autos 2.9.1 (searchresults.php catid) SQL Injection Vulnerability
- YourOwnBux 4.0 (COOKIE) Remote SQL Injection Vulnerability
- PHP Realtor 1.5 (view_cat.php v_cat) Remote SQL Injection Vulnerability
- Skype extension for Firefox BETA 2.2.0.95 Clipboard Writing Vulnerability
- Yerba SACphp 6.3 Multiple Remote Vulnerabilities
- Joomla Component com_hotspots (w) Remote SQL Injection Vulnerability
- Konqueror 3.5.9 (font color) Remote Crash Vulnerability
- RepoZipBrowser 1.16 (zip) Local File Inclusion Vulnerability
- Yerba SACphp 6.3 (mod) Local File Inclusion Exploit
- Hammer Software MetaGauge 1.0.0.17 Directory Traversal Vulnerability
- asiCMS alpha 0.208 Multiple Remote File Inclusion Vulnerabilities
- PHP-Fusion Mod triscoop_race_system (raceid) SQL Injection Vuln
- PHP-Fusion Mod recept (kat_id) SQL Injection Vulnerability
- PHP-Fusion Mod raidtracker_panel (INFO_RAID_ID) SQL Injection
- PHP-Fusion Mod manuals (manual) Remote SQL Injection Vulnerability
- FOSS Gallery Public 1.0 Arbitrary File Upload Vulnerabilities
- phpAbook 0.8.8b (COOKIE) Local File Inclusion Vulnerability
- Fastpublish CMS 1.9999 (LFI/SQL) Multiple Remote Vulnerabilities
- OpenNMS < 1.5.96 Multiple Remote Vulnerabilities
- geccBBlite 2.0 (leggi.php id) Remote SQL Injection Exploit
- Galerie 3.2 (pic) WBB Lite Addon Blind SQL Injection Exploit
- AyeView 2.20 (invalid bitmap header parsing) DoS Exploit
- FastStone Image Viewer 3.6 (malformed bmp image) DoS Exploit
- FOSS Gallery Public 1.0 Arbitrary Upload / Information c99 Expoit
- MS Windows Vista Access Violation from Limited Account Exploit (BSoD)
- FOSS Gallery Admin 1.0 Remote Arbitrary Upload Vulnerability
- JMweb Multiple (src) Local File Inclusion Vulnerabilities
- AyeView 2.20 (malformed gif image) Local DoS Exploit
- pPIM 1.01 (notes.php id) Local File Inclusion Vulnerability
- mIRC 6.34 Remote Buffer Overflow Exploit
- Simple Machines Forum 1.1.6 Filter Post Bypass Vulnerability
- Kwalbum 2.0.2 Arbitary File Upload Vulnerability
- CCMS 3.1 (skin) Multiple Local File Inclusion Vulnerabilities
- AdaptCMS Lite 1.3 Blind SQL Injection Exploit
- Serv-U 7.2.0.1 Remote FTP File Replacement Vulnerability (auth)
- Serv-U 7.2.0.1 (stou con:1) Denial of Service Vulnerability (auth)
- VBA32 Personal Antivirus 3.12.8.x (malformed archive) DoS Exploit
- Full PHP Emlak Script (arsaprint.php id) SQL Injection Vulnerability
- IP Reg 0.4 Remote Blind SQL Injection Exploit
- mIRC 6.34 Remote Buffer Overflow PoC
- MS Windows GDI (EMR_COLORMATCHTOTARGETW) Exploit MS08-021
- OpenX 2.6 (ac.php bannerid) Remote Blind SQL Injection Exploit