- webSPELL 4.2.0c Bypass BBCode XSS Cookie Stealing Vulnerability
- DNS Tools (PHP Digger) Remote Command Execution Vuln
- cpCommerce 1.2.8 (id_document) Blind SQL Injection Vulnerability
- Elecard AVC HD Player .XPL Stack Buffer Overflow (SEH) PoC
- Apollo 37zz (M3u File) Local Heap Overflow PoC
- Online Password Manager 4.1 Insecure Cookie Handling Vulnerability
- NetHoteles 2.0/3.0 (Auth Bypass) SQL Injection Vulnerability
- Geeklog 1.5.2 savepreferences()/*blocks[] SQL Injection Exploit
- Zervit Webserver 0.02 Remote Buffer Overflow PoC
- FreeWebshop.org 2.2.9 RC2 (lang_file) Local File Inclusion Vulnerability
- Star Downloader Free 1.45 (.dat) Universal SEH Overwrite Exploit
- Job2C 4.2 (adtype) Multiple Local File Inclusion Vulnerabilities
- MS Windows Media Player (.mid File) Integer Overflow PoC
- phpAdBoardPro (config.inc) Config File Disclosure Vulnerability
- phpDatingClub (conf.inc) File Disclosure Vulnerability
- Job2C (conf.inc) Config File Disclosure Vulnerability
- W2B Restaurant 1.2 (conf.inc) Config File Disclosure Vulnerability
- phpGreetCards (conf.inc) Config File Disclosure Vulnerability
- phpAdBoard (conf.inc) Remote Config File Disclosure Vulnerability
- Job2C 4.2 (profile) Remote Shell Upload Vulnerability
- W2B phpEmployment (conf.inc) File Disclosure VUlnerability
- GuestCal 2.1 (index.php lang) Local File Inclusion Vulnerability
- Aqua CMS (username) SQL Injection Vulnerability
- RQMS (Rash) 1.2.2 Multiple SQL Injection Vulnerabilities
- PowerCHM 5.7 (Long URL) Local Stack Overflow PoC
- Steamcast 0.9.75b Remote Denial of Service Exploit
- OpenBSD 4.4 IP datagram Null Pointer Deref DoS Exploit
- MonGoose 2.4 Webserver Directory Traversal Vulnerability (win)
- Easy RM to MP3 Converter Universal Stack Overflow Exploit
- PHP-Revista 1.1.2 (RFI/SQLi/CB/XSS) Multiple Remote Vulnerabilities
- Shadow Stream Recorder (.m3u file) Universal Stack Overflow Exploit
- Jamroom (index.php t) Local File Inclusion Vulnerability
- AbleSpace 1.0 (XSS/BSQL) Multiple Remote Vulnerabilities
- Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [2]
- Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [1]
- BulletProof FTP Client 2009 (.bps) Buffer Overflow Exploit (SEH)
- ftpdmin 0.96 Arbitrary File Disclosure Exploit
- ASP Product Catalog 1.0 (XSS/DD) Multiple Remote Vulnerabilities
- e107 Plugin userjournals_menu (blog.id) SQL Injection Vulnerability
- Mini-stream Ripper 3.0.1.1 .m3u Universal Stack Overflow Exploit
- FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability
- XEngineSoft PMS/MGS/NM/AMS 1.0 (Auth Bypass) SQL Injection Vulns
- Mini-stream RM-MP3 Converter 3.0.0.7 .m3u Stack Overflow Exploit
- ASX to MP3 Converter 3.0.0.7 .m3u Universal Stack Overflow Exploit
- WM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
- RM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
- Yellow Duck Weblog 2.1.0 (lang) Local File Inclusion Vulnerability
- ASX to MP3 Converter (.M3U File) Local Stack Overflow PoC
- X10Media Mp3 Search Engine 1.x Admin Access Vulnerability
- Mini-stream RM-MP3 Converter (.M3U File) Local Stack Overflow PoC
- RM Downloader (.M3U File) Local Stack Overflow PoC
- WM Downloader (.M3U File) Local Stack Overflow PoC
- Mini-stream Ripper (.M3U File) Local Stack Overflow PoC
- HTML Email Creator 2.1b668 (html) Local SEH Overwrite Exploit
- OpenBSD 4.3/4.4/4.5 (IP datagrams) Remote DOS Vulnerability
- Flatnuke 2.7.1 (level) Remote Privilege Escalation Exploit
- ftpdmin 0.96 RNFR Remote Buffer Overflow Exploit (xp sp3/case study)
- FunkyASP AD System 1.1 Remote Shell Upload Vulnerability
- Redaxscript 0.2.0 (language) Local File Inclusion Vulnerability
- w3bcms Gaestebuch 3.0.0 Blind SQL Injection Exploit
- moziloCMS 1.11 (LFI/PD/XSS) Multiple Remote Vulnerabilities
- Cisco ASA/PIX Appliances Fail to Properly Check Fragmented TCP Packets
- Chance-i DiViS DVR System Web-server Directory Traversal Vulnerability
- Chance-i DiViS-Web DVR System ActiveX Control Heap Overflow PoC
- PHP-Agenda 2.2.5 Remote File Overwriting Vulnerabilities
- Xilisoft Video Converter Wizard 3 .CUE File Stack Buffer Overflow PoC
- Loggix Project 9.4.5 (refer_id) Blind SQL Injection Vulnerability
- My Dealer CMS 2.0 (Auth Bypass) SQL Injection Vulnerability
- Absolute Form Processor XE-V 1.5 (Auth Bypass) SQL Injection Vuln
- Dynamic Flash Forum 1.0 Beta Multiple Remote Vulnerabilities
- net2ftp 0.97 Cross-Site Scripting/Request Forgery Vulnerabilities
- WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerability
- AdaptBB 1.0b Multiple Remote Vulnerabilities
- XBMC 8.10 (HEAD Request) Remote Buffer Overflow Exploit (SEH)
- Simbas CMS 2.0 (Auth Bypass) SQL Injection Vulnerability
- BackendCMS 5.0 (main.asp id) SQL Injection Vulnerability
- Geeklog 1.5.2 SEC_authenticate() SQL Injection Exploit
- Exjune Guestbook v2 Remote Database Disclosure Exploit
- SWF Opener 1.3 (.swf File) Off By One Buffer Overflow PoC
- OTSTurntables 1.00.027 (.ofl) SEH Overwrite Exploit
- WebFileExplorer 3.1 (DB.MDB) Database Disclosure Vulnerability
- Xplode CMS (wrap_script) Remote SQL Injection Vulnerability
- Photo Graffix 3.4 Multiple Remote Vulnerabilities
- OTSTurntables 1.00.027 (.ofl file) Local universal BOF Exploit
- GOM Player 2.1.16.6134 Subtitle Local Buffer Overflow PoC
- Joomla Component Cmimarketplace (viewit) Directory Traversal Vuln
- peterConnects Web Server Traversal Arbitrary File Access Vulnerability
- Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit
- SASPCMS 0.9 Multiple Remote Vulnerabilities
- Joomla Component Maian Music 1.2.1 (category) SQL Injection Vuln
- Joomla Component MailTo (article) SQL Injection Vulnerability
- XBMC 8.10 (HEAD) Remote Buffer Overflow Exploit (SEH)
- Lanius CMS 0.5.2 Remote Arbitrary File Upload Exploit
- Family Connections CMS 1.8.2 Blind SQL Injection Vulnerability
- Pirelli Discus DRG A225 wifi router WPA2PSK Default Algorithm Exploit
- Unsniff Network Analyzer 1.0 (usnf) Local Heap Overflow PoC
- UltraISO 9.3.3.2685 .ui Off By One / Buffer Overflow PoC
- iDB 0.2.5pa SVN 243 (skin) Local File Inclusion Exploit
- Mozilla Firefox XSL Parsing Remote Memory Corruption PoC #2
- FlexCMS Calendar (ItemId) Blind SQL Injection Vulnerability
- XBMC 8.10 GET Request Remote Buffer Overflow Exploit (SEH) (univ)
- Amaya 11.1 XHTML Parser Remote Buffer Overflow PoC
- Joomla Component com_bookjoomlas 0.1 SQL Injection Vulnerability
- AdaptBB 1.0 (topic_id) SQL Injection / Credentials Disclosure Exploit
- Gravity Board X 2.0b SQL Injection / Post Auth Code Execution Vulnerabilities
- Family Connections 1.8.2 Remote Shell Upload Exploit
- form2list (page.php id) Remote SQL Injection Vulnerability
- glFusion 1.1.2 COM_applyFilter()/cookies Blind SQL Injection Exploit
- ActiveKB Knowledgebase (loadpanel.php Panel) Local File Inclusion Vuln
- IBM DB2 < 9.5 pack 3a Malicious Data Stream Denial of Service Exploit
- IBM DB2 < 9.5 pack 3a Malicious Connect Denial of Service Exploit
- UltraISO 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit
- MyioSoft Ajax Portal 3.0 (page) SQL Injection Vulnerability
- TinyPHPForum 3.61 File Disclosure / Code Execution Vulnerabilities
- XBMC 8.10 (get tag from file name) Remote Buffer Overflow Exploit
- XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit
- XBMC 8.10 (Get Request) Remote Buffer Overflow Exploit (win)
- XBMC 8.10 (GET Requests) Multiple Remote Buffer Overflow PoC
- Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit
- DeepBurner 1.9.0.228 Stack Buffer Overflow (SEH) PoC
- Koschtit Image Gallery 1.82 Multiple Local File Inclusion Vulnerabilities
- Sun Calendar Express Web Server (DoS/XSS) Multiple Remote Vulns
- PrecisionID Datamatrix ActiveX Arbitrary File Overwrite Vuln
- vsp stats processor 0.45 (gamestat.php gameID) SQL Injection Vuln
- PHPRecipeBook 2.39 (course_id) Remote SQL Injection Vulnerability
- JobHut 1.2 Remote Password Change/Delete/Activate User Vulnerability
- VirtueMart 1.1.2 Remote SQL Injection Exploit (meta)
- VirtueMart 1.1.2 Multiple Remote Vulnerabilities
- webEdition 6.0.0.4 (WE_LANGUAGE) Local File Inclusion Vulnerability
- Safari 3.2.2/4b (nested elements) XML Parsing Remote Crash Exploit
- Community CMS 0.5 Multiple SQL Injection Vulnerabilities
- Podcast Generator 1.1 Remote Code Execution Exploit
- Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC
- Amaya 11.1 W3C Editor/Browser (defer) Stack Overflow Exploit
- Family Connection 1.8.1 Multiple Remote Vulnerabilities
- Opera 9.64 (7400 nested elements) XML Parsing Remote Crash Exploit
- X-Forum 0.6.2 Remote Command Execution Exploit
- JobHut 1.2 (pk) Remote SQL Injection Vulnerability
- NOKIA Siemens FlexiISN 3.1 Multiple Auth Bypass Vulnerabilities
- Gravy Media CMS 1.07 Multiple Remote Vulnerabilities
- Amaya 11.1 W3C Editor/Browser (defer) Stack Overflow PoC
- Check Point Firewall-1 PKI Web Service HTTP Header Remote Overflow
- Sami HTTP Server 2.x (HEAD) Remote Denial of Service Exploit
- Abee Chm eBook Creator 2.11 (FileName) Local Stack Overflow Exploit
- AtomixMP3 2.3 (playlist) Universal SEH Overwrite Exploit
- Wireshark 1.0.6 PN-DCP Format String Exploit PoC
- BandSite CMS 1.1.4 (members.php memid) SQL Injection Vulnerability
- Diskos CMS Manager (SQL/DB/Auth Bypass) Multiple Vulnerabilities
- Firefox 3.0.x (XML Parser) Memory Corruption / DoS PoC
- iWare CMS 5.0.4 Multiple Remote SQL Injection Vulnerabilities
- Arcadwy Arcade Script (Auth Bypass) Insecure Cookie Handling Vuln
- pam-krb5 < 3.13 Local Privilege Escalation Exploit
- PowerCHM 5.7 (hhp) Local Buffer Overflow Exploit
- glFusion 1.1.2 COM_applyFilter()/order SQL Injection Exploit
- PowerCHM 5.7 (hhp File) Stack Overflow poC
- Abee Chm Maker 1.9.5 (CMP File) Stack overflow Exploit
- My Simple Forum 7.1 (LFI) Remote Command Execution Exploit
- Moodle < 1.6.9/1.7.7/1.8.9/1.9.5 File Disclosure Vulnerability
- Arcadwy Arcade Script (username) Static XSS Vulnerability
- XM Easy Personal FTP Server 5.7.0 (NLST) DoS Exploit
- FreeSSHd 1.2.1 (rename) Remote Buffer Overflow Exploit (SEH)
- Free PHP Petition Signing Script (Auth Bypass) SQL Injection Vuln
- Simply Classified 0.2 (category_id) SQL Injection Vulnerability
- Acute Control Panel 1.0.0 (SQL/RFI) Multiple Remote Vulnerabilities
- PhotoStand 1.2.0 Remote Command Execution Exploit
- blogplus 1.0 Multiple Local File Inclusion Vulnerabilities
- PHPizabi v0.848b C1 HFP1-3 Remote Arbitrary File Upload Exploit
- WeBid 0.7.3 RC9 (upldgallery.php) Remote File Upload Vulnerability
- DirectAdmin 1.33.1 Symlink Permission Bypass Vuln (untested)
- Mozilla Firefox XSL Parsing Remote Memory Corruption PoC 0day
- IncrediMail 5.86 (XSS) Script Execution Exploit
- Femitter FTP Server 1.x Multiple Vulnerabilities (post auth)
- SurfMyTV Script 1.0 (view.php id) SQL Injection Vulnerability
- Adobe Acrobat Reader JBIG2 Universal Exploit Bind Shell port 5500
- Microsoft GdiPlus EMF GpFont.SetData Integer Overflow PoC
- Jinzora Media Jukebox 2.8 (name) Local File Inclusion Vulnerability
- PHPizabi v0.848b C1 HFP1 Remote Privilege Escalation Vulnerability
- Free Arcade Script 1.0 Auth Bypass (SQL) / Upload Shell Vulnerabilities
- Syzygy CMS 0.3 LFI/SQL Command Injection Exploit
- POP Peeper 3.4.0.0 .html file Universal SEH Overwrite Exploit
- POP Peeper 3.4.0.0 .eml file Universal SEH Overwrite Exploit
- Pluck CMS 4.6.1 (module_pages_site.php post) LFI Exploit
- Codice CMS 2 Remote SQL Command Execution Exploit
- Telnet-Ftp Service Server v1.x Multiple Vulnerabilities (post auth)
- eXeScope 6.50 Local Buffer Overflow Exploit
- Rittal CMC-TC Processing Unit II Multiple Vulnerabilities
- PHPizabi v0.848b C1 HFP1-3 Remote Command Execution Exploit
- Zinf Audio Player 2.2.1 (.pls) Universal Seh Overwrite Exploit
- Mac OS X xnu 1228.x (hfs-fcntl) Local Kernel Root Exploit
- Mac OS X xnu 1228.x (vfssysctl) Local Kernel DoS PoC
- Mac OS X xnu 1228.3.13 (profil) Kernel Memory Leak/DoS PoC
- Mac OS X xnu 1228.3.13 (macfsstat) Local Kernel Memory Leak/DoS
- Mac OS X xnu 1228.3.13 (zip-notify) Remote Kernel Overflow PoC
- Gigaset SE461 WiMAX router Remote Denial of Service Vulns
- FreeBSD 7.0/7.1 (ktimer) Local Kernel Root Exploit
- FreeBSD 7.x (Dumping Environment) Local Kernel Panic Exploit
- X-BLC 0.2.0 (get_read.php section) SQL Injection Vulnerability
- Orbit Downloader 2.8.7 Arbitrary File Deletion Vulnerability
- SuperNews 1.5 (valor.php noticia) SQL Injection Vulnerability
- Sysax Multi Server 4.3 Remote Arbitrary Delete Files Exploit
- WBB3 rGallery 1.2.3 (UserGallery) Blind SQL Injection Exploit
- Racer 0.5.3b5 Remote Stack Buffer Overflow Exploit
- Pixie CMS (XSS/SQL) Multiple Remote Vulnerabilities
- BS.Player 2.34 (.bsl) Universal SEH Overwrite Exploit
- CloneCD/DVD (ElbyCDIO.sys < 6.0.3.2) Local Privilege Escalation Exploit
- BS.Player 2.34 Build 980 (.bsl) Local Buffer Overflow Exploit (SEH)
- POP Peeper 3.4.0.0 (From) Remote Buffer Overflow Exploit (SEH)
- Hannon Hill Cascade Server Command Execution Vulnerability (post auth)
- SW-HTTPD Server 0.x Remote Denial of Service Exploit
- Chasys Media Player (.lst playlist) Local Buffer Overflow Exploit
- Bloginator v1a SQL Command Injection via Cookie Bypass Exploit
- Bloginator v1a (Cookie Bypass/SQL) Multiple Remote Vulnerabilities
- Chasys Media Player 1.1 .cue File Stack Overflow Exploit
- ModSecurity < 2.5.9 Remote Denial of Service Vulnerability
- Pivot 1.40.6 Remote Arbitrary File Deletion Vulnerability
- Advanced Image Hosting (AIH) 2.3 (gal) Blind SQL Injection Vuln
- DeluxeBB 1.3 (qorder) Remote SQL Injection Vulnerability
- Facil-CMS 0.1RC2 Multiple Remote Vulnerabilities
- Chasys Media Player 1.1 (.pls) Stack Overflow Exploit #2
- Chasys Media Player 1.1 (.m3u) Stack Overflow Exploit
- Icarus 2.0 (.PGN File) Local Stack Overflow Exploit (SEH)
- Chasys Media Player 1.1 (.pls) Local Stack overflow Exploit
- Chasys Media Player 1.1 (.pls) Local Buffer Overflow PoC (SEH)
- CDex 1.70b2 (.ogg) Local Buffer Overflow Exploit (xp/ sp3)
- Mega File Hosting Script 1.2 (cross.php url) RFI Vulnerability
- Wordpress Plugin fMoblog 2.1 (id) SQL Injection Vulnerability
- GDL 4.x (node) Remote SQL Injection Vulnerability
- Talkative IRC 0.4.4.16 Remote Stack Overflow Exploit (SEH)
- PHPRunner 4.2 (SearchOption) Blind SQL Injection Vulnerability
- Gretech GOM Encoder 1.0.0.11 (Subtitle File) Buffer Overflow PoC
- WinAsm Studio 5.1.5.0 Local Heap Overflow PoC
- Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash
- phpComasy 0.9.1 (entry_id) SQL Injection Vulnerability
- Google Chrome 1.0.154.48 Single Thread Alert Out of Bound Memory Access
- YAP 1.1.1 Blind SQL Injection/SQL Injection Vulnerabilities
- PPLive 1.9.21 (/LoadModule) URI Handlers Argument Injection Vuln
- Beerwin's PHPLinkAdmin 1.0 RFI/SQL Injection Vulnerabilities
- Rosoft Media Player 4.2.1 Local Buffer Overflow Exploit (multi target)
- Serv-U 7.4.0.1 (MKD) Create Arbitrary Directories Exploit
- Serv-U 7.4.0.1 (SMNT) Denial of Service Exploit (post auth)
- MetaTreeX Control 1.5 ActiveX Multiple Arbitrary File Overwrite Exploit
- UBB.threads 5.5.1 (message) Remote SQL Injection Vulnerability
- Kim Websites 1.0 (Auth Bypass) SQL Injection Vulnerability
- Morovia Barcode ActiveX 3.0 (MrvBarCd.dll) Insecure Method Exploit
- YAP 1.1.1 (index.php page) Local File Inclusion Vulnerability
- GeoVision LiveAudio ActiveX Remote Freed-Memory Access Exploit
- PhpMySport 1.4 (XSS/SQL) Multiple Remote Vulnerabilities
- JDKChat 1.5 Remote Integer Overflow PoC
- POP Peeper 3.4.0.0 Date Remote Buffer Overflow Exploit
- Traidnt up 2.0 (Cookie) Add Extension By Pass Exploit