- Discuz! 6.0.1 (searchid) Remote SQL Injection Exploit
- Free Hosting Manager 1.2/2.0 Insecure Cookie Handling Vulnerability
- Request It 1.0 (index.php id) Remote File Inclusion Vulnerability
- Quate CMS 0.3.4 (LFI/XSS) Multiple Remote Vulnerabilities
- LoveCMS 1.6.2 Final Update Settings Remote Exploit
- LoveCMS 1.6.2 Final Remote Code Execution Exploit
- Multiple Wsn Products (LFI) Code Execution Vulnerability
- LiteNews 0.1 (id) Remote SQL Injection Vulnerability
- LiteNews 0.1 Insecure Cookie Handling Vulnerability
- Plogger 3.0 Remote SQL Injection Vulnerability
- IGES CMS 2.0 (XSS/SQL) Multiple Remote Vulnerabilities
- Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities
- HydraIrc 0.3.164 (last) Remote Denial of Service Exploit
- syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability
- TGS CMS 0.3.2r2 Remote Code Execution Exploit
- Joomla Component EZ Store Remote Blind SQL Injection Exploit
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (spoof on ircd)
- Xerox Phaser 8400 (reboot) Remote Denial of Service Exploit
- IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit
- E-Store Kit- 2 PayPal Edition (pid) SQL Injection Vulnerability
- moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit
- K-Links Directory (SQL/XSS) Multiple Remote Vulnerabilities
- e-Vision CMS 2.02 (SQL/Upload/IG) Multiple Remote Vulnerabilities
- phsBlog 0.1.1 Multiple Remote SQL Injection Vulnerabilities
- IrfanView 3.99 IFF File Local Stack Buffer Overflow Exploit
- GreenCart PHP Shopping Cart (id) Remote SQL Injection Vulnerability
- Scripts24 iTGP 1.0.4 (id) Remote SQL Injection Vulnerability
- Scripts24 iPost 1.0.1 (id) Remote SQL Injection Vulnerability
- eStoreAff 0.1 (cid) Remote SQL Injection Vulnerability
- E-topbiz Dating 3 PHP Script (mail_id) Remote SQL Injection Vulnerability
- ABG Blocking Script 1.0a (abg_path) Remote File Inclusion Vulnerability
- PHPAuction GPL Enhanced 2.51 (profile.php) SQL Injection Vulnerability
- RealVNC Windows Client 4.1.2 Remote DOS Crash PoC
- phpMyRealty (location) Remote SQL Injection Vulnerability
- LetterIt 2 (language) Local File Inclusion Vulnerability
- Coppermine Photo Gallery 1.4.18 LFI / Remote Code Execution Exploit
- Symphony 1.7.01 (non-patched) Remote Code Execution Exploit
- PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability
- F-PROT antivirus 6.2.1.4252 (malformed archive) Infinite Loop DoS Exploit
- NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit
- Pligg 9.9.0 (XSS/LFI/SQL) Multiple Remote Vulnerabilities
- Pligg 9.9.0 Remote Code Execution Exploit
- eNdonesia 8.4 (Calendar Module) Remote SQL Injection Exploit
- TubeGuru Video Sharing Script (UID) SQL Injection Vulnerability
- PozScripts Classified Ads Script (cid) SQL Injection Vulnerability
- Article Friendly Pro/Standard (categorydetail.php Cat) SQL Injection Vulnerability
- HIOX Browser Statistics 2.0 Arbitrary Add Admin User Exploit
- HIOX Random Ad 1.3 Arbitrary Add Admin User Exploit
- ZeeReviews (comments.php ItemID) Remote SQL Injection Vulnerability
- nzFotolog 0.4.1 (action_file) Local File Inclusion Vulnerability
- HIOX Random Ad 1.3 (hioxRandomAd.php hm) RFI Vulnerability
- HIOX Browser Statistics 2.0 Remote File Inclusion Vulnerability
- PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability
- PHP Hosting Directory 2.0 (admin.php rd) RFI Vulnerability
- Gregarius 0.5.4 rsargs[] Remote SQL Injection Vulnerability
- e107 Plugin BLOG Engine 2.2 Blind SQL Injection Exploit
- CoolPlayer m3u File Local Buffer Overflow Exploit
- Minishowcase 09b136 (lang) Local File Inclusion Vulnerability
- Cisco IOS 12.3(18) FTP Server Remote Exploit (attached to gdb)
- ATutor 1.6.1-pl1 (import.php) Remote File Inclusion Vulnerability
- ViArt Shop 3.5 (category_id) Remote SQL Injection Vulnerability
- Trend Micro OfficeScan ObjRemoveCtrl ActiveX Control BOF Exploit
- Velocity web-server 1.0 Directory Traversal File Download Vulnerability
- PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability
- Dokeos E-Learning System 1.8.5 Local File Inclusion Vulnerability
- Pligg CMS 9.9.0 (story.php id) Remote SQL Injection Vulnerability
- Youtuber Clone (ugroups.php UID) Remote SQL Injection Vulnerability
- TalkBack 2.3.5 (language) Local File Inclusion Vulnerability
- SiteAdmin CMS (art) Remote SQL Injection Vulnerability
- GC Auction Platinum (cate_id) Remote SQL Injection Vulnerability
- Getacoder clone (sb_protype) Remote SQL Injection Vulnerability
- CMScout 2.05 (common.php bit) Local File Inclusion Vulnerability
- TriO 2.1 (browse.php id) Remote SQL Injection Vulnerability
- Mobius 1.4.4.1 (browse.php id) Remote SQL Injection Vulnerability
- EPShop < 3.0 (pid) Remote SQL Injection Vulnerability
- phpLinkat 0.1 Insecure Cookie Handling / SQL Injection Vulnerability
- phpWebNews 0.2 MySQL Edition (SQL) Insecure Cookie Handling Vulnerability
- IceBB 1.0-RC9.2 Blind SQL Injection / Session Hijacking Exploit
- fipsCMS light 2.1 (r) Remote SQL Injection Vulnerability
- phpTest 0.6.3 (picture.php image_id) Remote SQL Injection Vulnerability
- FizzMedia 1.51.2 (comment.php mid) SQL Injection Vulnerability
- xrms 1.99.2 (RFI/XSS/IG) Multiple Remote Vulnerabilities
- Camera Life 2.6.2 (id) Remote SQL Injection Vulnerability
- minix 3.1.2a tty panic Remote Denial of Service Vulnerability
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
- Live Music Plus 1.1.0 (id) Remote SQL Injection Vulnerability
- Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit
- ibase 2.03 (download.php) Remote File Disclosure Vulnerability
- Atom PhotoBlog 1.1.5b1 (photoId) Remote SQL Injection Vulnerability
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (py)
- Microsoft Access (Snapview.ocx 10.0.5529.0) ActiveX Remote Exploit
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta)
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit (c)
- minix 3.1.2a tty panic Local Denial of Service Vulnerability
- Pre Survey Poll (default.asp catid) SQL Injection Vulnerability
- IntelliTamper 2.07 (server header) Remote Code Execution Exploit
- YouTube Blog 0.1 (RFI/SQL/XSS) Multiple Remote Vulnerabilities
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit
- ShopCartDx 4.30 (pid) Remote SQL Injection Vulnerability
- EZWebAlbum Insecure Cookie Handling Vulnerability
- Arctic Issue Tracker 2.0.0 (index.php filter) SQL Injection Exploit
- EZWebAlbum (dlfilename) Remote File Disclosure Vulnerability
- MojoAuto (mojoAuto.cgi mojo) Blind SQL Injection Exploit
- MojoJobs (mojoJobs.cgi mojo) Blind SQL Injection Exploit
- MojoPersonals (mojoClassified.cgi mojo) Blind SQL Injection Exploit
- MojoClassifieds 2.0 Remote Blind SQL Injection Exploit
- Interact E-Learning System 2.4.1 (help.php) LFI Vulnerabilities
- IntelliTamper 2.07 (map file) Local Arbitrary Code Execution Exploit (pl)
- HRS Multi (picture_pic_bv.asp key) Blind SQL Injection Exploit
- DigiLeave 1.2 (info_book.asp book_id) Blind SQL Injection Exploit
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow PoC
- PHPFootball 1.6 (show.php) Remote SQL Injection Vulnerability
- Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit
- Apache mod_jk 1.2.19 Remote Buffer Overflow Exploit (win32)
- Siteframe (folder.php id) Remote SQL Injection Vulnerability
- Aprox CMS Engine 5.1.0.4 (index.php page) SQL Injection Vulnerability
- preCMS v.1 (index.php page) Remote SQL injection Vulnerability
- Artic Issue Tracker 2.0.0 (index.php filter) SQL Injection Vulnerability
- AlstraSoft Article Manager Pro 1.6 Blind SQL Injection Exploit
- Debian OpenSSH Remote SELinux Privilege Elevation Exploit (auth)
- AlstraSoft Video Share Enterprise 4.5.1 (UID) SQL Injection Vulnerability
- phpHoo3 5.2.6 (phpHoo3.php viewCat) SQL injection Vulnerability
- PPMate PPMedia Class ActiveX Control Buffer Overflow PoC
- Bea Weblogic -- Apache Connector Remote Denial of Service Exploit
- PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit
- Joomla Component DT Register Remote SQL injection Vulnerability
- AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability
- tplSoccerSite 1.0 Multiple Remote SQL Injection Vulnerabilities
- HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities
- Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC
- PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability
- Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability
- php Help Agent 1.1 (content) Local File Inclusion Vulnerability
- Comdev Web Blogger 4.1.3 (arcmonth) Sql Injection Vulnerability
- Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability
- WinRemotePC Full+Lite 2008 r.2server Denial of Service Exploit
- pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability
- Galatolo Web Manager 1.3a XSS / Remote SQL Injection Vulnerability
- Pluck 4.5.1 (blogpost) Local File Inclusion Vulnerability (win only)
- Bilboblog 2.1 Multiples Remote Vulnerabilities
- Yahoo Messenger 8.1 ActiveX Remote Denial of Service Exploit
- CodeDB (list.php lang) Local File Inclusion Vulnerability
- ITechBids 7.0 Gold (XSS/SQL) Multiple Remote Vulnerabilities
- Scripteen Free Image Hosting Script 1.2 (cookie) Pass Grabber Exploit
- Ultrastats 0.2.142 (players-detail.php) Blind SQL Injection Exploit
- MFORUM 0.1a Arbitrary Add-Admin Vulnerability
- Maian Uploader 4.0 Insecure Cookie Handling Vulnerability
- Maian Weblog 4.0 Insecure Cookie Handling Vulnerability
- Maian Recipe 1.2 Insecure Cookie Handling Vulnerability
- Maian Links 3.1 Insecure Cookie Handling Vulnerability
- Maian Guestbook 3.2 Insecure Cookie Handling Vulnerability
- Maian Search 1.1 Insecure Cookie Handling Vulnerability
- fuzzylime cms 3.01 (commrss.php) Remote Code Execution Exploit
- Simple DNS Plus 5.0/4.1 Remote Denial of Service Exploit
- Avlc Forum (vlc_forum.php id) Remote SQL Injection Vulnerability
- jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities
- WebCMS Portal Edition (id) Remote SQL Injection Vulnerability
- Joomla Component n-forms 1.01 Blind SQL Injection Exploit
- fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (pl)
- Maian Music 1.0 Insecure Cookie Handling Vulnerability
- Maian Greetings 2.1 Insecure Cookie Handling Vulnerability
- Maian Gallery 2.0 Insecure Cookie Handling Vulnerability
- Maian Events 2.0 Insecure Cookie Handling Vulnerability
- Maian Cart 1.1 Insecure Cookie Handling Vulnerability
- reSIProcate 1.3.2 Remote Denial of Service PoC
- fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (php)
- trixbox 2.6.1 (langChoice) Remote Root Exploit (py)
- Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability
- Core Image Fun House 2.0 Arbitrary Code Execution PoC (OSX)
- Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)
- File Store PRO 3.2 Multiple Blind SQL Injection Vulnerabilities
- Facebook Newsroom CMS 0.5.0 Beta 1 Remote File Inclusion Vulnerability
- Wysi Wiki Wyg 1.0 (index.php c) Local File Inclusion Vulnerability
- Zen Cart 1.3.8 Multiple Local File Inclusion Vulnerabilities
- phpDatingClub (website.php page) Local File Inclusion Vulnerability
- gapicms 9.0.2 (dirDepth) Remote File Inclusion Vulnerability
- DreamNews Manager (id) Remote SQL Injection Vulnerability
- Dreampics Builder (page) Remote SQL Injection Vulnerability
- AuraCMS 2.2.2 (pages_data.php) Arbitrary Edit/Add/Delete Exploit
- Poppler 0.8.4 libpoppler uninitialized pointer Code Execution PoC
- OllyDBG v1.10 and ImpREC v1.7f (export name) BOF PoC
- Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day
- Mole Group Last Minute Script 4.0 Remote SQL Injection Vulnerability
- BoonEx Ray 3.5 (sIncPath) Remote File Inclusion Vulnerability
- Multiple Vendors Malicious SVG File Denial of Service PoC
- Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln
- trixbox (langChoice) Local File Inclusion Exploit (connect-back)
- Boonex Dolphin 6.1.2 Multiple Remote File Inclusion Vulnerabilities
- Last Minute Script 4.0 (cid) Remote SQL Injection Vulnerability
- Mole Group Hotel Script 1.0 Remote SQL Injection Vulnerability
- Mole Group Real Estate Script 1.1 Remote SQL Injection Vulnerability
- BrewBlogger 2.1.0.1 Arbitrary Add Admin Exploit
- Triton CMS Pro (X-Forwarded-For) Blind SQL Injection Exploit
- SmartPPC Pay Per Click Script (idDirectory) Blind SQL Injection Exploit
- Neutrino 0.8.4 Atomic Edition Remote Code Execution Exploit
- fuzzylime cms 3.01a (file) Local File Inclusion Exploit
- WebXell Editor 0.1.3 Arbitrary File Upload Vulnerability
- SmartPPC Pay Per Click Script (idDirectory) Blind SQL Injection Vuln
- CMailServer 5.4.6 (CMailCOM.dll) Remote SEH Overwrite Exploit
- Safari + Quicktime 7.3 RTSP Content-Type Remote BOF Exploit
- ContentNow 1.4.1 (Upload/XSS) Multiple Remote Vulnerabilities
- XPOZE Pro 3.06 (uid) Remote SQL Injection Vulnerability
- ImperialBB 2.3.5 Remote File Upload Exploit
- fuzzylime (cms) 3.01 Remote Command Execution Exploit
- Kasseler CMS 1.3.0 (LFI/XSS) Multiple Vulnerabilities
- Thelia 1.3.5 Multiple Vulnerabilities Exploit
- Site@School 2.4.10 (fckeditor) Session Hijacking / File Upload Exploit
- Panda Security ActiveScan 2.0 (Update) Remote BOF Exploit
- Joomla Component DBQuery 1.4.1.1 RFI Vulnerability
- Joomla Component altas 1.0 Multiple Remote SQL Injection Exploit
- 1024 CMS 1.4.4 Multiple Remote/Local File Inclusion Vulnerabilities
- pHNews CMS Multiple Local File Inclusion Vulnerabilities
- phpWebNews 0.2 MySQL Edition (id_kat) SQL Injection Vulnerability
- phpWebNews 0.2 MySQL Edition (det) SQL Injection Vulnerability
- CMS WebBlizzard (index.php page) Blind SQL Injection Exploit
- phPortal 1.2 Multiple Remote File Inclusions Exploit
- Joomla Component QuickTime VR 0.1 Remote SQL Injection Exploit
- Joomla Component is 1.0.1 Multiple Remote SQL Injection Exploit
- Joomla Component com_brightweblinks (catid) SQL Injection Vulnerability
- CMS little (index.php template) Local File Inclusion Vulnerability
- XchangeBoard 1.70 (boardID) Remote SQL Injection Vulnerability
- PHP-Nuke Platinium 7.6.b.5 Remote Code Execution Exploit
- Efestech Shop 2.0 (cat_id) Remote SQL Injection Vulnerability
- plx Ad Trader 3.2 (adid) Remote SQL Injection Vulnerability
- Joomla Component versioning 1.0.2 (id) SQL Injection Vulnerability
- Joomla Component mygallery (cid) Remote SQL Injection Vulnerability
- CAT2 (spaw_root) Local File Inclusion Vulnerability
- VanGogh Web CMS 0.9 (article_ID) Remote SQL Injection Vulnerability
- Sisplet CMS (index.php id) Remote SQL Injection Vulnerability
- php-Agenda 2.2.4 (index.php page) Local File Inclusion Vulnerability
- Mambo Component n-gallery Multiple SQL Injection Vulnerabilities
- HIOX Banner Rotator 1.3 (hm) Remote File Inclusion Vulnerability
- BusyBox (uname) Local Format String Exploit
- OpenBSD 4.0 (FIRST ANIMATED EXPLOIT) Local Root Exploit (vga)
- pSys v0.7.0 Alpha (chatbox.php) Remote SQL Injection Vulnerability
- AShop Deluxe 4.x (catalogue.php cat) Remote SQL Injection Exploit
- myBloggie 2.1.6 Multiple Remote SQL Injection Vulnerabilities
- BareNuked CMS 1.1.0 Arbitrary Add Admin Exploit
- RCM Revision Web Development (products.php) SQL Injection Vulnerability
- Pivot 1.40.5 Dreamwind load_template() Credentials Disclosure Exploit
- Catviz 0.4.0 beta1 Multiple Remote SQL Injection Vulnerabilities
- eSHOP100 (SUB) Remote SQL Injection Vulnerability
- AcmlmBoard 1.A2 (pow) Remote SQL Injection Vulnerability
- Surgemail 39e-1 Post Auth IMAP Remote Buffer Overflow DoS
- SebracCMS 0.4 Multiple SQL Injection Vulnerabilities
- Joomla Component beamospetition Remote SQL Injection Vulnerability
- Joomla Component Xe webtv (id) Blind SQL Injection Exploit
- Online Booking Manager 2.2 (id) SQL Injection Vulnerability
- PowerAward 1.1.0 RC1 (LFI /XSS) Multiple Remote Vulnerabilities
- Joomla Component jabode (id) Remote SQL Injection Vulnerability