2007-06-15 XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit
2007-06-09 Yahoo! Messenger Webcam 8.1 (Ywcupl.dll) Download / Execute Exploit
2007-06-09 Yahoo! Messenger Webcam 8.1 (Ywcvwr.dll) Download / Execute Exploit
2007-06-09 Zenturi ProgramChecker ActiveX NavigateUrl() Insecure Method Exploit
2007-06-09 Zenturi ProgramChecker ActiveX Multiple Insecure Methods Exploit
2007-06-09 SafeNET High Assurance Remote 1.4.0 (IPSecDrv.sys) Remote DoS
2007-06-09 MiniWeb Http Server 0.8.x Remote Denial of Service Exploit
2007-06-08 Microsoft Windows Animated Cursor Stack Overflow Exploit
2007-06-08 Yahoo! Messenger Webcam 8.1 ActiveX Remote Buffer Overflow Exploit 2
2007-06-08 Yahoo! Messenger Webcam 8.1 ActiveX Remote Buffer Overflow Exploit
2007-06-08 NewsSync for phpBB 1.5.0rc6 Remote File Inclusion Exploit
2007-06-07 Madirish Webmail 2.0 (addressbook.php) Remote File Inclusion Vuln
2007-06-07 DRDoS - Distributed Reflection Denial of Service
2007-06-06 Wordpress 2.2 (xmlrpc.php) Remote SQL Injection Exploit
2007-06-04 HP Tru64 Remote Secure Shell User Enumeration Exploit (CVE-2007-2791)
2007-06-04 SNMPc <= 7.0.18 Remote Denial of Service Exploit (meta)
2007-06-04 IBM Tivoli Provisioning Manager PRE AUTH Remote Exploit
2007-06-04 screen 4.0.3 Local Authentication Bypass Vulnerability
2007-06-03 DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit
2007-06-03 XOOPS Module icontent 1.0 Remote File Inclusion Exploit
2007-06-03 Particle Gallery <= 1.0.1 Remote SQL Injection Exploit
2007-06-03 Vivotek Motion Jpeg Control (MjpegDecoder.dll 2.0.0.13) Remote Exploit
2007-06-03 Acoustica MP3 CD Burner 4.32 Local Buffer Overflow PoC
2007-06-03 Quick.Cart <= 2.2 RFI/LFI Remote Code Execution Exploit
2007-06-03 IE6 / Provideo Camimage (ISSCamControl.dll 1.0.1.5) Remote BoF Exploit
2007-06-03 Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit
2007-05-24 cpCommerce <= 1.1.0 (category.php id_category) SQL Injection Exploit
2007-05-24 Dokeos <= 1.6.5 (courseLog.php scormcontopen) SQL Injection Exploit
2007-05-24 LeadTools Raster Dialog File Object Activex Remote Buffer Overflow PoC
2007-05-24 UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Stack Overflow PoC
2007-05-24 Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC
2007-05-24 Microsoft Visual Basic 6.0 Project (Company Name) Stack overflow PoC
2007-05-24 MagicISO <= 5.4 (build239) .cue File Local Buffer Overflow Exploit
2007-05-24 Dokeos <= 1.8.0 (my_progress.php course) Remote SQL Injection Exploit
2007-05-23 Microsoft Office 2000 (OUACTRL.OCX v. 1.0.1.9) Remote DoS Exploit
2007-05-23 Scallywag (template.php path) Remote File Inclusion Vulnerabilities
2007-05-23 NavBoard 2.6.0 Remote Code Execution Exploit
2007-05-22 BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability
2007-05-22 LeadTools ISIS Control (ltisi14E.ocx v.14.5.0.44) Remote DoS Exploit
2007-05-22 KSign KSignSWAT <= 2.0.3.3 ActiveX Control Remote BoF Exploit
2007-05-22 Virtual CD 9.0.0.2 (vc9api.DLL) Remote Shell Commands Execution Exploit
2007-05-22 Pegasus ImagN ActiveX Control Remote Buffer Overflow Exploit
2007-05-22 Microsoft IIS 6.0 (/AUX/.aspx) Remote Denial of Service Exploit
2007-05-22 Ol Bookmarks Manager 0.7.4 Remote SQL Injection Vulnerability
2007-05-22 TutorialCMS <= 1.01 Authentication Bypass Vulnerability
2007-05-22 Ol Bookmarks Manager 0.7.4 (root) Remote File Inclusion Vulnerabilities
2007-05-22 LeadTools Raster Variant (LTRVR14e.dll) Remote File Overwrite Exploit
2007-05-22 Wordpress 2.1.3 admin-ajax.php SQL Injection Blind Fishing Exploit
2007-05-22 AlstraSoft Template Seller Pro <= 3.25 Remote Code Execution Exploit
2007-05-22 AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit
2007-04-18 Zomplog 3.8 (force_download.php file) Remote File Disclosure Vuln
2007-04-18 Rezervi 0.9 (root) Remote File Inclusion Vulnerabilities
2007-04-18 AimStats 3.2 (process.php update) Remote Code Execution Exploit
2007-04-18 Mozzers SubSystem final (subs.php) Remote Code Execution Vulnerability
2007-04-18 jGallery 1.3 (index.php) Remote File Inclusion Vulnerability
2007-04-18 Joomla Template Be2004-2 (index.php) Remote File Include Exploit
2007-04-18 ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit
2007-04-17 OllyDbg 1.10 Local Format String Exploit
2007-04-17 Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability
2007-04-17 MS Windows GDI Local Privilege Escalation Exploit (MS07-017) 2
2007-04-17 MiniGal b13 (image backdoor) Remote Code Execution Exploit
2007-04-17 Joomla Component JoomlaPack 1.0.4a2 RE (CAltInstaller.php) RFI
2007-04-17 AjPortal2Php (PagePrefix) Remote File Inclusion Vulnerabilities
2007-04-17 Anthologia 0.5.2 (index.php ads_file) Remote File Inclusion Vulnerability
2007-04-16 XOOPS Module tsdisplay4xoops 0.1 Remote File Inclusion Vulnerability
2007-04-16 StoreFront for Gallery (GALLERY_BASEDIR) RFI Vulnerabilities
2007-04-16 SunShop Shopping Cart 3.5/4.0 (abs_path) RFI Vulnerabilities
2007-04-16 openMairie 1.10 (scr/soustab.php) Local File Inclusion Vulnerability
2007-04-16 Web Slider 0.6 (path) Remote File Inclusion Vulnerabilities
2007-04-16 audioCMS arash 0.1.4 (arashlib_dir) Remote File Inclusion Vulnerabilities
2007-04-16 Gallery 1.2.5 (GALLERY_BASEDIR) Multiple RFI Vulnerabilities
2007-04-16 NMDeluxe 1.0.1 (footer.php template) Local File Inclusion Exploit
2007-04-16 CNStats 2.9 (who_r.php bj) Remote File Inclusion Vulnerability
2007-04-16 Papoo <= 3.02 (kontakt menuid) Remote SQL Injection Exploit
2007-04-16 MS Windows DNS RPC Remote Buffer Overflow Exploit (port 445)
2007-04-16 MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit
2007-04-15 XAMPP for Windows <= 1.6.0a mssql_connect() Remote BoF Exploit
2007-04-15 MS Windows DNS RPC Remote Buffer Overflow Exploit (win2k SP4)
2007-04-15 Mambo/Joomla Component Article 1.1 Remote File Inclusion Vulnerability
2007-04-15 LS simple guestbook (v1) Remote Code Execution Vulnerability
2007-04-15 Joomla Module AutoStand 1.0 Remote File Inclusion Vulnerability
2007-04-15 Pixaria Gallery 1.x (class.Smarty.php) Remote File Include Vulnerability
2007-04-14 bloofoxCMS 0.2.2 Cross Site Scripting
2007-04-14 Garennes 0.6.1 (repertoire_config) Remote File Inclusion Vulnerabilities
2007-04-14 Frogss CMS <= 0.7 Remote SQL Injection Exploit
2007-04-14 ProFTPD 1.3.0/1.3.0a (mod_ctrls) Local Overflow Exploit (exec-shield)
2007-04-14 QDBlog 0.4 (SQL Injection/LFI) Multiple Remote Vulnerabilities
2007-04-14 Vbulletin 3.6.5 Sql Injection ! [misc.php] Exploit
2007-04-13 IE (79+ Exes) NCTAudioFile2.AudioFile ActiveX Remote Overflow Exploit
2007-04-13 VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
2007-04-13 Ettercap-NG 0.7.3 Remote Denial of Service Exploit
2007-04-13 Chatness <= 2.5.3 (options.php/save.php) Remote Code Execution Exploit
2007-04-12 Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit
2007-04-12 Request It 1.0b (index.php id) Remote File Inclusion Vulnerability
2007-04-12 Expow 0.8 (autoindex.php cfg_file) Remote File Inclusion Vulnerability
2007-04-12 e107 0.7.8 (mailout.php) Access Escalation Exploit (admin needed)
2007-04-12 MyBulletinBoard (MyBB) <= 1.2.2 (CLIENT-IP) SQL Injection Exploit
2007-04-12 RicarGBooK 1.2.1 (header.php lang) Local File Inclusion Vulnerability
2007-04-12 WebKalk2 1.9.0 (absolute_path) Remote File Inclusion Vulnerability
2007-04-12 mxBB Module MX Shotcast 1.0 RC2 (getinfo1.php) RFI Exploit
2007-04-12 Sami HTTP Server 2.0.1 POST Request Denial of Service Exploit
2007-04-12 Joomla Component mosMedia <= 1.0.8 Remote File Inclusion Vulnerability
2007-04-12 Mambo Module Calendar (Agenda) 1.5.5 RFI Vulnerability
2007-04-12 Mambo Module Weather (absolute_path) RFI Vulnerability
2007-04-12 CodeBreak 1.1.2 (codebreak.php) Remote File Inclusion Exploit
2007-04-12 PunBB <= 1.2.14 Remote Code Execution Exploit
2007-04-12 Gran Paradiso 3.0a3 non-existent applet Denial of Service Exploit
2007-04-12 MiniWebsvr 0.0.7 Remote Directory Transversal Exploit
2007-04-12 TOSMO/Mambo 1.4.13a (absolute_path) Remote File Inclusion Vulns
2007-04-12 Mambo Component zOOm Media Gallery <= 2.5 Beta 2 RFI Vulnerabilities
2007-04-10 SimpCMS Light <= 04.10.2007 (site) Remote File Inclusion Vulnerability
2007-04-10 pL-PHP beta 0.9 Multiple Remote Vulnerabilities
2007-04-11 Joomla/Mambo Component Taskhopper 1.1 RFI Vulnerabilities
2007-04-10 InoutMailingListManager <= 3.1 Remote Command Execution Exploit
2007-04-10 Crea-Book <= 1.0 Admin Access Bypass / DB Disclosure / Code Execution
2007-04-10 Weatimages <= 1.7.1 ini[langpack] Remote File Inclusion Vulnerability
2007-04-10 phpGalleryScript 1.0 (init.gallery.php include_class) RFI Vulnerability
2007-04-10 Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability
2007-04-10 HIOX GUEST BOOK (HGB) 4.0 Remote Code Execution Vulnerability
2007-04-10 Pathos CMS 0.92-2 (warn.php file) Remote File Inclusion Vulnerability
2007-04-09 Multiple Microsoft Office Security Vulnerabilities
2007-04-09 PcP-Guestbook 3.0 (lang) Local File Inclusion Vulnerabilities
2007-04-09 MS Windows GDI Local Privilege Escalation Exploit (MS07-017)
2007-04-09 ScarNews 1.2.1 (sn_admin_dir) Local File Inclusion Exploit
2007-04-09 WitShare 0.9 (index.php menu) Local File Inclusion Vulnerability
2007-04-09 MyBlog: PHP and MySQL Blog/CMS software RFI Vulnerability
2007-04-08 PHP-Nuke Module eBoard 1.0.7 GLOBALS[name] LFI Exploit
2007-04-08 MS Windows Explorer Unspecified .ANI File Denial of Service Exploit
2007-04-08 ScarAdControl 1.1 Remote/Local File Inclusion Vulnerabilities
2007-04-08 Scorp Book 1.0 (smilies.php config) Remote File Inclusion Vulnerability
2007-04-07 Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)
2007-04-06 SmodCMS <= 2.10 (Slownik ssid) Remote SQL Injection Exploit
2007-04-06 SmodBIP <= 1.06 (aktualnosci zoom) Remote SQL Injection Exploit
2007-04-06 cattaDoc 2.21 (download2.php fn1) Remote File Disclosure Vulnerability
2007-04-06 Beryo 2.0 (downloadpic.php chemin) Remote File Disclosure Vulnerability
2007-04-06 FileCOPA FTP Server <= 1.01 (LIST) Remote Buffer Overflow Exploit (2)
2007-04-06 Wserve HTTP Server 4.6 (Long Directory Name) Denial of Service Exploit
2007-04-06 WebSPELL <= 4.01.02 (picture.php) File Disclosure Vulnerability
2007-04-06 XOOPS Module Jobs <= 2.4 (cid) Remote SQL Injection Exploit
2007-04-06 phpMyNewsletter <= 0.8 (beta5) Multiple Vuln Exploit
2007-04-06 XOOPS Module WF-Links <= 1.03 (cid) Remote SQL Injection Exploit
2007-04-04 XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
2007-04-04 Mutant 0.9.2 mutant_functions.php Remote File Inclusion Exploit
2007-04-04 TrueCrypt <= 4.3 Local Privilege Escalation Exploit (CVE-2007-1738)
2007-04-04 XOOPS Module WF-Snippets <= 1.02 (c) BLIND SQL Injection Exploit
2007-04-04 AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)
2007-04-04 HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit
2007-04-04 CyBoards PHP Lite 1.21 (script_path) Remote File Include Exploit
2007-04-04 AROUNDMe 0.7.7 Multiple Remote File Inclusion Vulnerabilities
2007-04-04 phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability
2007-04-04 MySpeach <= 3.0.7 Remote/Local File Inclusion Vulnerability
2007-04-03 Wordpress 2.1.2 (xmlrpc) Remote SQL Injection Exploit
2007-04-03 Xoops Module PopnupBlog <= 2.52 (postid) BLIND SQL Injection Exploit
2007-04-03 HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit
2007-04-03 MyBulletinBoard (MyBB) <= 1.2.3 Remote Code Execution Exploit
2007-04-03 MS Windows Animated Cursor (.ANI) Overflow Exploit (Hardware DEP)
2007-04-03 MS Windows Animated Cursor (.ANI) Universal Exploit Generator
2007-04-03 Frontbase <= 4.2.7 POST-AUTH Remote Buffer Overflow Exploit v2.2
2007-04-02 Ipswitch WS_FTP 5.05 Server Manager Local Site Buffer Overflow Exploit
2007-04-02 IrfanView 3.99 (.ANI File) Local Buffer Overflow Exploit
2007-04-02 MS Windows Animated Cursor (.ANI) Local Buffer Overflow Exploit
2007-04-02 Xoops Module Zmagazine 1.0 (print.php) Remote SQL Injection Exploit
2007-04-02 Xoops Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
2007-04-02 Xoops Module WF-Section <= 1.01 (articleid) SQL Injection Exploit
2007-04-02 Oracle 10g DBMS_AQ.ENQUEUE SQL Injection Exploit
2007-04-02 Xoops Module Virii Info <= 1.10 (index.php) Remote File Include Exploit
2007-04-02 Really Simple PHP and Ajax (RSPA) 2007-03-23 RFI Vulnerability
2007-04-02 PHP-Fusion Module Arcade 1.0 (cid) Remote SQL Injection Vulnerability
2007-04-02 MS Windows Animated Cursor (.ANI) Remote Exploit (eeye patch bypass)
2007-04-02 MS Windows XP Animated Cursor (.ANI) Remote Overflow Exploit 2
2007-04-02 MS Windows XP/Vista Animated Cursor (.ANI) Remote Overflow Exploit
2007-04-02 Xoops Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit
2007-04-02 Xoops Module myAlbum-P <= 2.0 (cid) Remote SQL Injection Exploit
2007-04-02 Flexphpnews 0.0.5 (news.php newsid) Remote SQL Injection Vulnerability
2007-04-02 Xoops Module debaser <= 0.92 (genre.php) BLIND SQL Injection Exploit
2007-04-02 Xoops Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit
2007-04-02 CWB PRO 1.5 (INCLUDE_PATH) Remote File Inclusion Vulnerabilities
2007-04-02 IPSwitch IMail Server <= 8.20 IMAPD Remote Buffer Overflow Exploit
2007-03-31 Xoops Module Tutoriais (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Core (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Library (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Lykos Reviews 1.00 (index.php) SQL Injection Exploit
2007-03-31 IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit
2007-03-31 Windows .ANI LoadAniIcon Stack Overflow (dev code)
2007-03-31 dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx)
2007-03-31 JSBoard 2.0.10 (login.php table) Local File Inclusion Vulnerability
2007-03-31 phpBB MOD Forum picture and META tags 1.7 RFI Vulnerability
2007-03-31 Xoops Module Repository (viewcat.php) Remote SQL Injection Exploit
2007-03-30 JC URLshrink 1.3.1 Remote Code Execution Vulnerability
2007-03-30 ActSoft DVD-Tools (dvdtools.ocx) Remote Buffer Overflow Exploit
2007-03-30 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux)
2007-03-30 Advanced Login <= 0.7 (root) Remote File Inclusion Vulnerability
2007-03-30 Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities
2007-03-30 Mozilla Firefox 2.0.0.3 / Gran Paradiso 3.0a3 DoS Hang / Crash Exploit
2007-03-30 Picture-Engine <= 1.2.0 (wall.php cat) Remote SQL Injection Exploit
2007-03-30 CA BrightStor Backup 11.5.2.0 (Mediasvr.exe) Remote Code Exploit
2007-03-30 Xoops Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit
2007-03-30 IBM Lotus Domino Server 6.5 (username) Remote Denial of Service Exploit
2007-03-30 sBLOG 0.7.3 Beta (inc/lang.php) Local File Inclusion Exploit
2007-03-30 Softerra Time-Assistant <= 6.2 (inc_dir) Remote File Inclusion Vuln
2007-03-29 CodeBB 1.0 beta 2 (phpbb_root_path) Remote File Inclusion Vulnerability
2007-03-29 MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability
2007-03-29 Xoops Module Friendfinder <= 3.3 (view.php id) SQL Injection Exploit
2007-03-29 iPhotoAlbum 1.1 (header.php) Remote File Include Vulnerability
2007-03-29 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit v2
2007-03-29 Xoops module Articles <= 1.03 (index.php cat_id) SQL Injection Exploit
2007-03-28 Corel Wordperfect X3 13.0.0.565 (.PRS) Local Buffer Overflow Exploit
2007-03-28 Web Content System 2.7.1 Remote File Inclusion Exploit
2007-03-28 PHP-Nuke Module Eve-Nuke 0.1 (mysql.php) RFI Vulnerability
2007-03-28 Playstation 3 "Remote Play" Remote DoS Exploit
2007-03-27 Joomla Component D4JeZine <= 2.8 Remote BLIND SQL Injection Exploit
2007-03-27 NaviCOPA Web Server 2.01 Remote Buffer Overflow Exploit (meta)
2007-03-27 Xoops module Articles <= 1.02 (print.php id) SQL Injection Exploit
2007-03-27 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC
2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2
2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2
2007-03-27 C-Arbre <= 0.6PR7 (root_path) Remote File Inclusion Vulnerability
2007-03-27 PHP-Nuke Module Addressbook 1.2 Local File Inclusion Exploit
2007-03-27 IceBB 1.0-rc5 Remote Code Execution Exploit
2007-03-27 IceBB 1.0-rc5 Remote Create Admin Exploit
2007-03-27 Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit (Win2K SP4)
2007-03-26 FreeBSD mcweject 0.9 (eject) Local Root Buffer Overflow Exploit
2007-03-26 MS Internet Explorer Recordset Double Free Memory Exploit (MS07-009)
2007-03-26 PHP 5.2.1 with PECL phpDOC Local Buffer Overflow Exploit
2007-03-26 Frontbase <= 4.2.7 Remote Buffer Overflow Exploit (windows)
2007-03-26 PBlang 4.66z Remote Code Execution Exploit
2007-03-26 PHP <= 4.4.4 / 5.2.1 / 5.1.6 readfile() Safe Mode Bypass Vulnerability
2007-03-26 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit
2007-03-26 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit
2007-03-25 WarFTP 1.65 (USER) Remote Buffer Overlow Exploit (multiple targets)
2007-03-25 PBlang <= 4.66z Remote Create Admin Exploit
2007-03-25 Free Image Hosting <= 2.0 (AD_BODY_TEMP) Remote File Inclusion Vulns
2007-03-25 Mambo Module Flatmenu <= 1.07 Remote File Include Exploit
2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit
2007-03-24 Joomla Component RWCards <= 2.4.3 Remote SQL Injection Exploit
2007-03-24 Joomla Component Car Manager <= 1.1 Remote SQL Injection Exploit
2007-03-24 ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability
2007-03-24 Net-Side.net CMS (index.php cms) Remote File Inclusion Vulnerability
2007-03-24 Mercury Mail 4.0.1 (LOGIN) Remote IMAP Stack Buffer Overflow Exploit
2007-03-24 Joomla Component Joomlaboard 1.1.1 (sbp) RFI Vulnerability
2007-03-24 PHP 5.2.1 unserialize() Local Information Leak Exploit
2007-03-24 eWebquiz <= V.8 (eWebQuiz.asp) Remote SQL Injection Exploit
2007-03-24 Joomla/Mambo Component SWmenuFree 4.0 RFI Vulnerability
2007-03-24 Active Newsletter <= 4.3 (ViewNewspapers.asp) SQL Injection Exploit
2007-03-23 Ethernet Device Drivers Frame Padding Info Leakage Exploit (Etherleak)
2007-03-23 dproxy <= 0.5 Remote Buffer Overflow Exploit (meta 2.7)
2007-03-23 Mambo Module uhp 0.3 (uhp_config.php) Remote File Inclusion Exploit
2007-03-23 Philex <= 0.2.3 RFI / File Disclosure Remote Vulnerabilities
2007-03-23 Active Auction Pro 7.1 (default.asp catid) SQL Injection Vulnerability
2007-03-23 ActiveBuyandSell 6.2 (buyersend.asp catid) SQL Injection Vulnerability
2007-03-23 Active Trade v 2 (default.asp catid) Remote SQL Injection Vulnerability
2007-03-23 RoseOnlineCMS 3 beta2 (op) Local File Inclusion Exploit
2007-03-22 0irc-client v1345 build20060823 Denial of Service Exploit
2007-03-22 spWebCalendar 4.5 (calendar.asp eventid) SQL Injection Vulnerability
2007-03-22 LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities
2007-03-22 Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
2007-03-22 PortailPhp 2.0 (idnews) Remote SQL Injection Exploit
2007-03-22 ClassWeb 2.0.3 (BASE) Remote File Inclusion Vulnerabilities
2007-03-22 FutureSoft TFTP Server 2000 Remote SEH Overwrite Exploit
2007-03-21 Mercur Messaging 2005 <= SP4 IMAP Remote Exploit (egghunter mod)
2007-03-21 Mambo Component nfnaddressbook 0.4 Remote File Inclusion Vulnerability
2007-03-21 php-revista <= 1.1.2 Multiple Remote SQL Injection Vulnerabilities
2007-03-21 Mercur Messaging 2005 IMAP (SUBSCRIBE) Remote Exploit (win2k SP4)
2007-03-21 Active Photo Gallery (default.asp catid) SQL Injection Vulnerability
2007-03-21 Grandstream Budge Tone-200 IP Phone (Digest domain) DoS Exploit
2007-03-21 Active Link Engine (default.asp catid) Remote SQL Injection Vulnerability
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit
2007-03-20 phpRaid < 3.0.7 (rss.php phpraid_dir) Remote File Inclusion Exploit
2007-03-20 Mercur IMAPD 5.00.14 Remote Denial of Service Exploit (win32)
2007-03-20 Cisco Phone 7940/7960 (SIP INVITE) Remote Denial of Service Exploit
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit
2007-03-20 PHP-Nuke Module htmltonuke 2.0alpha (htmltonuke.php) RFI Vuln
2007-03-20 FTPDMIN 0.96 (LIST) Remote Denial of Service Exploit
2007-03-20 GeBlog 0.1 GLOBALS[tplname] Local File Inclusion Exploit (win)
2007-03-19 pragmaMX Module Landkarten 2.1 Local File Inclusion Exploit (win)
2007-03-19 NetVios Portal (page.asp) Remote SQL Injection Vulnerability
2007-03-19 phpBB Minerva Mod <= 2.0.21 build 238a SQL Injection Vulnerability
2007-03-19 PHP-Nuke Module splattforum 4.0 RC1 Local File Inclusion Exploit
2007-03-19 PHP 5.2.0 header() Space Trimming Buffer Underflow Exploit (MacOSX)
2007-03-19 MetaForum <= 0.513 Beta Remote File Upload Exploit
2007-03-19 ScriptMagix Lyrics <= 2.0 (index.php recid) SQL Injection Exploit
2007-03-18 Avant Browser <= 11.0 build 26 Remote Stack Overflow Crash Exploit
2007-03-18 Katalog Plyt Audio (pl) <= 1.0 Remote SQL Injection Exploit
2007-03-18 iFrame for Phpnuke (iframe.php) Remote File Inclusion Vulnerability
2007-03-18 ScriptMagix Photo Rating <= 2.0 Remote SQL Injection Exploit
2007-03-18 ScriptMagix Recipes <= 2.0 (index.php catid) SQL Injection Exploit
2007-03-18 ScriptMagix Jokes <= 2.0 (index.php catid) Remote SQL Injection Exploit
2007-03-18 Moodle <= 1.5.2 (moodledata) Remote Session Disclosure Vulnerability
2007-03-18 ScriptMagix FAQ Builder <= 2.0 (index.php) Remote SQL Injection Exploit
2007-03-17 Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit
2007-03-17 MPM Chat 2.5 (view.php logi) Local File Include Vulnerability
2007-03-17 Php-Stats <= 0.1.9.1b (php-stats-options.php) admin 2 exec() eExploit
2007-03-16 PHP DB Designer <= 1.02 Remote File Include Vulnerabilities
2007-03-16 Particle Blogger <= 1.2.0 (post.php postid) Remote SQL Injection Exploit
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit
2007-03-16 Creative Files 1.2 (kommentare.php) Remote SQL Injection Vulnerability
2007-03-16 Php-Stats <= 0.1.9.1b (ip) Remote SQL Injection Exploit
2007-03-16 Php-Stats <= 0.1.9.1b (PC-REMOTE-ADDR) SQL Injection Exploit
2007-03-16 CA BrightStor ARCserve (msgeng.exe) Remote Stack Overflow Exploit
2007-03-15 McGallery 0.5b (download.php) Arbitrary File Download Vulnerability
2007-03-15 Absolute Image Gallery 2.0 (gallery.php categoryid) SQL Injection Vuln
2007-03-15 WebCalendar 0.9.45 (includedir) Remote File Inclusion Vulnerability
2007-03-15 OpenBSD ICMPv6 Fragment Remote Execution Exploit PoC
2007-03-15 WBBlog (XSS/SQL) Multiple Remote Vulnerabilities
2007-03-15 Creative Guestbook 1.0 Multiple Remote Vulnerabilities
2007-03-15 PHP <= 4.4.6 ibase_connect() Local Buffer Overflow Exploit
2007-03-15 CcMail 1.0.1 (update.php functions_dir) Remote File Inclusion Exploit
2007-03-15 Groupit 2.00b5 (c_basepath) Remote File Inclusion Vulnerability
2007-03-15 Company WebSite Builder PRO 1.9.8 (INCLUDE_PATH) RFI Vulnerability
2007-03-15 WebLog (index.php file) Remote File Disclosure Vulnerability
2007-03-15 Woltab Burning Board 2.x (usergroups.php) Remote SQL Injection Exploit
2007-03-15 WarFTP 1.65 (USER) Remote Buffer Overflow SEH Overflow Exploit
2007-03-15 Orion-Blog 2.0 (AdminBlogNewsEdit.asp) Remote Auth Bypass Vuln
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit
2007-03-14 Dayfox Blog 4 (postpost.php) Remote Code Execution Vulnerability
2007-03-14 WSN Guest 1.21 (comments.php id) Remote SQL Injection Exploit
2007-03-14 ZomPlog <= 3.7.6 Local File Inclusion Vulnerabilty (win32)
2007-03-14 WarFTP 1.65 (USER) Remote Buffer Overflow Exploit (win2k SP4)
2007-03-13 WebCreator <= 0.2.6-rc3 (moddir) Remote File Inclusion Vulnerability
2007-03-13 CARE2X 1.1 (root_path) Remote File Inclusion Vulnerability
2007-03-13 Activist Mobilization Platform (AMP) 3.2 Remote File Include Vuln
2007-03-13 X-ice News System 1.0 (devami.asp id) SQL Injection Vulnerability
2007-03-13 JGBBS 3.0beta1 (search.asp author) SQL Injection Exploit
2007-03-13 GestArt beta 1 (aide.php aide) Remote File Inclusion Vulnerability
2007-03-13 MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
2007-03-12 BP Blog 7.0 (default.asp layout) Remote SQL Injection Vulnerability
2007-03-12 OES (Open Educational System) 0.1beta Remote File Inclusion Vuln
2007-03-12 News Bin Pro 4.32 Article Grabbing Remote Unicode BoF Exploit
2007-03-12 NewsReactor 20070220 Article Grabbing Remote BoF Exploit (2)
2007-03-12 NewsReactor 20070220 Article Grabbing Remote BoF Exploit (1)
2007-03-12 TFTP Server 1.3 Remote Buffer Overflow Denial of Service Exploit
2007-03-12 PHP 5.2.0 ext/filter Space Trimming Buffer Underflow Exploit (MacOSX)
2007-03-11 cPanel <= 10.9.x (fantastico) Local File Inclusion Vulnerabilities
2007-03-11 AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln
2007-03-11 SonicMailer Pro <= 3.2.3 (index.php) Remote SQL Injection Exploit
2007-03-11 Top Auction 1.0 (viewcat.php) Remote SQL Injection Exploit
2007-03-11 JobSitePro 1.0 (search.php) Remote SQL Injection Exploit
2007-03-11 PostNuke Module phgstats 0.5 (phgdir) Remote File Include Exploit
2007-03-10 MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption
2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit
2007-03-10 Oracle 10g (PROCESS_DUP_HANDLE) Local Privilege Elevation (win32)
2007-03-10 NukeSentinel <= 2.5.06 (mysql >= 4.0.24) Remote SQL Injection Exploit
2007-03-11 HC Newssystem 1.0-1.4 (index.php ID) Remote SQL Injection Vulnerability
2007-03-10 WORK system e-commerce <= 3.0.5 Remote File Inclusion Vulnerability
2007-03-09 Grayscale Blog 0.8.0 (Security Bypass/SQL/XSS) Multiple Remote Vulns
2007-03-09 MS Internet Explorer (FTP Server Response) DoS Exploit (MS07-002)
2007-03-09 PMB Services <= 3.0.13 Multiple Remote File Inclusion Vulnerability
2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC
2007-03-09 Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit
2007-03-09 PHP 4.4.6 snmpget() object id Local Buffer Overflow Exploit PoC
2007-03-08 Magic CMS 4.2.747 (mysave.php file) Remote File Include Vulnerability
2007-03-08 GaziYapBoz Game Portal (kategori.asp) Remote SQL Injection Vuln
2007-03-08 WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vuln
2007-03-08 netForo! 0.1 (down.php file_to_download) Remote File Disclosure Vuln
2007-03-08 Snort 2.6.1.1/2.6.1.2/2.7.0 (fragementation) Remote DoS Exploit
2007-03-08 Rediff Toolbar ActiveX Control Remote Denial of Service Exploit
2007-03-08 TFTPDWIN Server 0.4.2 (UDP) Denial of Service Exploit
2007-03-08 PHP 4.4.6 crack_opendict() Local Buffer Overflow Exploit PoC
2007-03-08 Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption
2007-03-07 PHP COM extensions (inconsistent Win32) safe_mode Bypass Exploit
2007-03-07 Flat Chat 2.0 (include online.txt) Remote Code Execution Vulnerability
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit
2006-09-09 Vivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability
2006-09-09 openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit
2006-09-09 Vivvo Article Manager <= 3.2 (id) Remote SQL Injection Vulnerability
2006-09-09 Socketwiz Bookmarks <= 2.0 (root_dir) Remote File Include Exploit
2006-09-09 MyABraCaDaWeb <= 1.0.3 (base) Remote File Include Vulnerabilities
2006-09-08 Multithreaded TFTP <= 1.1 (Long Get Request) Denial of Service Exploit
2006-09-08 CCleague Pro <= 1.0.1RC1 (Cookie) Remote Code Execution Exploit
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (sco/x86)
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (solaris/x86)
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (solaris/sparc)
2006-09-08 Somery <= 0.4.6 (skin_dir) Remote File Include Vulnerability
2006-09-08 RaidenHTTPD 1.1.49 (SoftParserFileXml) Remote Code Execution Exploit
2006-09-07 PhotoKorn Gallery <= 1.52 (dir_path) Remote File Include Vulnerabilities
2006-09-07 WM-News <= 0.5 Multiple Remote File Include Vulnerabilities
2006-09-07 News Evolution 3.0.3 _NE[AbsPath] Remote File Include Vulnerabilities
2006-09-07 ACGV News 0.9.1 (PathNews) Remote File Include Vulnerability
2006-09-07 PhpNews 1.0 (Include) Remote File Include Vulnerabilities
2006-09-07 DokuWiki <= 2006-03-09b (dwpage.php) System Disclosure Exploit
2006-09-07 DokuWiki <= 2006-03-09b (dwpage.php) Remote Code Execution Exploit
2006-09-07 IBM Director < 5.10 (Redirect.bat) Directory Transversal Vulnerability
2006-09-07 Fire Soft Board <= RC 3 (racine) Remote File Include Vulnerability
2006-09-07 Web Server Creator v0.1 (l) Remote Include Vulnerability
2006-09-07 SL_Site <= 1.0 (spaw_root) Remote File Include Vulnerability
2006-09-07 PayProCart <= 1146078425 Multiple Remote File Include Vulnerabilities
2006-09-06 Akarru <= 0.4.3.34 (bm_content) Remote File Include Vulnerability
2006-09-06 Beautifier 0.1 (Core.php) Remote File Include Vulnerability
2006-09-06 phpFullAnnu <= 5.1 (repmod) Remote File Include Vulnerability
2006-09-06 BinGo News <= 3.01 (bnrep) Remote File Include Vulnerability
2006-09-06 phpBB Shadow Premod <= 2.7.1 Remote File Include Vulnerability
2006-09-05 PhpCommander <= 3.0 Remote Code Execution Exploit (mq=off)
2006-09-05 Sponge News <= 2.2 (sndir) Remote File Include Vulnerability
2006-09-05 C-News <= 1.0.1 (path) Remote File Inclusion Vulnerability
2006-09-05 ACGV News <= 0.9.1 (PathNews) Remote File Inclusion Vulnerability
2006-09-05 Zix Forum <= 1.12 (RepId) Remote SQL Injection Vulnerability
2006-09-05 AnnonceV News Script <= 1.1 (page) Remote File Include Vulnerability
2006-09-05 GrapAgenda 0.1 (page) Remote File Include Vulnerability
2006-09-05 dsock <= 1.3 (buf) Remote Buffer Overflow PoC
2006-09-05 J. River Media Center 11.0.309 Remote Denial of Service PoC
2006-09-05 MySpeach <= 3.0.2 (my_ms[root]) Remote File Include Vulnerability
2006-09-04 SoftBB 0.1 (cmd) Remote Command Execution Exploit
2006-09-04 PHP Proxima <= v.6 completepack Remote Code Execution Exploit
2006-09-04 pHNews <= alpha 1 (templates_dir) Remote Code Execution Exploit
2006-09-04 Tr Forum 2.0 SQL Injection / Bypass Security Restriction Exploit
2006-09-04 SimpleBlog <= 2.3 (id) Remote SQL Injection Vulnerability
2006-09-04 In-link <= 2.3.4 (ADODB_DIR) Remote File Include Vulnerabilities
2006-09-04 Muratsoft Haber Portal 3.6 (tr) Remote SQL Injection Vulnerability
2006-09-04 FlashChat <= 4.5.7 (aedating4CMS.php) Remote File Include Vulnerability
2006-09-04 yappa-ng <= 2.3.1 (admin_modules) Remote File Include Vulnerability
2006-09-03 PmWiki <= 2.1.19 (Zend_Hash_Del_Key_Or_Index) Remote Exploit
2006-09-02 Dyncms <= Release 6 (x_admindir) Remote File Include Vulnerability
2006-09-02 Annuaire 1Two 2.2 Remote SQL Injection Exploit
2006-09-02 TikiWiki <= 1.9 Sirius (jhot.php) Remote Command Execution Exploit
2006-09-01 MyBace Light (login_check.php) Remote File Vulnerability
2006-09-01 icblogger v2 (YID) Remote SQL Injection Vulnerability
2006-09-01 PowerZip <= 7.06.3895 Long Filename Handling Buffer Overflow Exploit
2006-09-01 TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit
2006-09-01 TIBCO Rendezvous <= 7.4.11 (add router) Remote BOF Exploit
2006-08-31 YACS CMS <= 6.6.1 context[path_to_root] Remote File Include Vuln
2006-08-31 Pheap CMS <= 1.1 (lpref) Remote File Include Exploit
2006-08-30 Lanifex DMO <= 2.3b (_incMgr) Remote File Include Exploit
2006-08-30 phpAtm <= 1.21 (include_location) Remote File Include Vulnerabilities
2006-08-30 ZipCentral 4.01 ZIP File Handling Local Buffer Overflow Exploit
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 2
2006-08-29 IBM eGatherer <= 3.20.0284.0 (ActiveX) Remote Code Execution Exploit
2006-08-29 phpECard <= 2.1.4 (functions.php) Remote File Include Vulnerability
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit
2006-08-29 ExBB Italiano <= 0.2 exbb[home_path] Remote File Include Vulnerability
2006-08-29 MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities
2006-08-29 PortailPHP mod_phpalbum <= 2.1.5 (chemin) Remote Include Vuln
2006-08-29 phpGroupWare <= 0.9.16.010 GLOBALS[] Remote Code Execution Exploit
2006-08-29 Web3news <= 0.95 (PHPSECURITYADMIN_PATH) Remote Include Vuln
2006-08-28 e107 <= 0.75 (GLOBALS Overwrite) Remote Code Execution Exploit
2006-08-28 Cybuzu Garoon 2.1.0 Multiple Remote SQL Injection Vulnerabilities
2006-08-28 Cybozu Products (id) Arbitrary File Retrieval Vulnerability
2006-08-27 MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040) (2)
2006-08-27 VMware 5.5.1 (ActiveX) Local Buffer Overflow Exploit
2006-08-27 Ay System CMS <= 2.6 (main.php) Remote File Include Vulnerability
2006-08-27 CMS Frogss <= 0.4 (podpis) Remote SQL Injection Exploit
2006-08-27 iziContents <= RC6 GLOBALS[] Remote Code Execution Exploit
2006-08-27 AlberT-EasySite <= 1.0a5 (PSA_PATH) Remote File Include Exploit
2006-08-26 proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability
2006-08-26 MDaemon POP3 Server < 9.06 (USER) Remote Heap Overflow Exploit
2006-08-25 CliServ Web Community <= 0.65 (cl_headers) Include Vulnerability
2006-08-25 Integramod Portal <= 2.0 rc2 (phpbb_root_path) Remote Include Vulnerabilities
2006-08-25 eFiction < 2.0.7 Remote Admin Authentication Bypass Vulnerability
2006-08-24 phpCOIN 1.2.3 (session_set.php) Remote Include Vulnerability
2006-08-24 Phaos <= 0.9.2 basename() Remote Command Execution Exploit
2006-08-24 Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit
2006-08-24 VistaBB <= 2.x (functions_mod_user.php) Remote Include Exploit
2006-08-23 Integramod Portal <= 2.x (functions_portal.php) Remote Include Exploit
2006-08-23 pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability
2006-08-23 phpBB All Topics Mod <= 1.5.0 (start) Remote SQL Injection Exploit
2006-08-23 MercuryBoard <= 1.1.4 (User-Agent) Remote SQL Injection Exploit
2006-08-22 2wire Modems/Routers CRLF Denial of Service Exploit
2006-08-22 MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC
2006-08-22 Mozilla Firefox <= 1.5.0.6 (FTP Request) Remote Denial of Service Exploit
2006-08-22 Simple Machines Forum <= 1.1 rc2 Lock Topics Remote Exploit (windows)
2006-08-22 Solaris 8 / 9 (/usr/ucb/ps) Local Information Leak Exploit
2006-08-22 Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit
2006-08-22 HPE 1.0 (HPEinc) Remote File Include Vulnerabilities
2006-08-22 Empire CMS <= 3.7 (checklevel.php) Remote File Include Vulnerability
2006-08-21 MS Internet Explorer Multiple COM Object Color Property DoS
2006-08-21 Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC
2006-08-21 PHProjekt <= 6.1 (path_pre) Multiple Remote File Include Vulnerabilities
2006-08-21 Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit (PoC)
2006-08-21 WFTPD 3.23 (SIZE) Remote Buffer Overflow Exploit
2006-08-20 SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Exploit
2006-08-20 Simple Machines Forum <= 1.1 rc2 (lngfile) Remote Exploit (windows)
2006-08-20 LBlog <= 1.05 (comments.asp) Remote SQL Injection Vulnerabilit
2006-08-20 Shadows Rising RPG <= 0.0.5b Remote File Include Vulnerabilities
2006-08-20 SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Vulnerability
2006-08-20 SportsPHool <= 1.0 (mainnav) Remote File Include Vulnerability
2006-08-20 NES Game and NES System <= c108122 File Include Vulnerabilities
2006-08-19 mambo com_babackup Component <= 1.1 File Include Vulnerability
2006-08-19 ZZ:FlashChat <= 3.1 (adminlog) Remote File Incude Vulnerability
2006-08-19 MS Windows CanonicalizePathName() Remote Exploit (MS06-040)
2006-08-19 Mambo com_lurm_constructor Component <= 0.6b Include Vulnerability
2006-08-19 Fantastic News <= 2.1.3 (script_path) Remote File Include Vulnerability
2006-08-19 Tutti a <= 1.6 (TNLIB_DIR) R2006-08-20emote File Include Vulnerability
2006-08-19 Joomla <=1.0.10 (poll component) Arbitrary Add Votes Exploit
2006-08-19 interact <= 2.2 (CONFIG[BASE_PATH]) Remote File Include Vulnerability
2006-08-19 Mambo cropimage Component <= 1.0 Remote File Include Vulnerability
2006-08-18 Sonium Enterprise Adressbook <= 0.2 (folder) Include Vulnerability
2006-08-18 Joomla Kochsuite Component <= 0.9.4 Remote File Include Vulnerability
2006-08-18 Joomla Link Directory Component <= 1.0.3 Remote Include Vulnerability
2006-08-18 Mambo MamboWiki Component <= 0.9.6 Remote Include Vulnerability
2006-08-18 phpCodeGenie <= 3.0.2 (BEAUT_PATH) Remote File Include Vulnerability
2006-08-18 PHlyMail Lite <= 3.4.4 (mod.listmail.php) Remote Include Vulnerability
2006-08-18 MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c) (2)
2006-08-18 Joomla Artlinks Component <= 1.0b4 Remote Include Vulnerability
2006-08-18 Macromedia Flash 9 (IE Plugin) Remote Denial of Service Crash Exploit
2006-08-17 Mambo a6mambocredits Component 1.0.0 File Include Vulnerability
2006-08-17 Mambo phpShop Component <= 1.2 RC2b File Include Vulnerability
2006-08-17 Joomla Mosets Tree <= 1.0 Remote File Include Vulnerability
2006-08-17 MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c)
2006-08-17 Joomla com_jim Component <= 1.0.1 Remote File Include Vulnerability
2006-08-17 Mambo mambelfish Component <= 1.1 Remote File Include VulnerabilityRa
2006-08-17 POWERGAP <= 2003 (s0x.php) Remote File Include Vulnerability
2006-08-17 WTcom <= 0.2.4-alpha (torrents.php) Remote SQL Injection Vulnerability
2006-08-17 RIRSR <= 0.2 (_sysSessionPath) Remote File Include Vulnerability
2006-08-17 CubeCart <= 3.0.11 (oid) Remote Blind SQL Injection Exploit
2006-08-17 Woltlab Burning Board <= 2.3.5 (links.php) SQL Injection Exploit (2
2006-08-16 Mambo CopperminePhotoGalery Component Remote Include Vulnerability
2006-08-16 VMware 5.5.1 COM Object Arbitrary Partition Table Delete Exploit
2006-08-17 MS Windows PNG File IHDR Block Denial of Service Exploit PoC
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit
2006-08-16 OPT Max <= 1.2.0 (CRM_inc) Remote File Include Vulnerability
2006-08-16 dotProject <= 2.0.4 (baseDir) Remote File Include Vulnerability
2006-08-15 PHProjekt <= 5.1 Multiple Remote File Include Vulnerabilities
2006-08-15 WEBInsta CMS <= 0.3.1 (users.php) Remote File Include Vulnerability
2006-08-15 Discloser <= 0.0.4 (fileloc) Remote File Include Vulnerabilities
2006-08-15 WEBInsta MM <= 1.3e (absolute_path) Remote File Include Exploit
2006-08-14 Spidey Blog Script <== 1.5 (tr) Remote SQL Injection Vulnerability
2006-08-14 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (3)
2006-08-14 Mambo Peoplebook Component 1.0 Remote File Include Vulnerability
2006-08-14 ProjectButler <= 0.8.4 (rootdir) Remote File Include Vulnerabilities
2006-08-14 Mambo mmp Component <= 1.2 Remote File Include Vulnerability
2006-08-14 phPay <= 2.02 (nu_mail.inc.php) Remote mail() Injection Exploit
2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (py)
2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (c)
2006-08-13 XMB <= 1.9.6 Final basename() Remote Command Execution Exploit
2006-08-13 Joomla Webring Component <= 1.0 Remote Include Vulnerability
2006-08-13 Nokia Symbian 60 3rd Edition Browser Denial of Service Crash
2006-08-12 WEBinsta CMS <= 0.3.1 (templates_dir) Remote File Include Exploit
2006-08-11 Wheatblog <= 1.1 (session.php) Remote File Include Vulnerability
2006-08-10 MVCnPHP <= 3.0 glConf[path_libraries] Remote Include Vulnerabilities
2006-08-10 Mambo Remository Component <= 3.25 Remote Include Vulnerability
2006-08-10 WEBInsta MM 1.3e (cabsolute_path) Remote File Include Vulnerability
2006-08-10 VWar <= 1.50 R14 (online.php) Remote SQL Injection Vulnerability
2006-08-10 Chaussette <= 080706 (_BASE) Remote File Include Vulnerabilities
2006-08-10 phpPrintAnalyzer <= 1.2 Remote File Include Vulnerability
2006-08-10 SaveWebPortal <= 3.4 (page) Remote File Inclusion Vulnerability
2006-08-10 Thatware <= 0.4.6 (root_path) Remote File Include Vulnerability
2006-08-10 Spaminator <= 1.7 (page) Remote File Include Vulnerability
2006-08-10 Internet Explorer (MDAC) Remote Code Execution Exploit (MS06-014) (2)
2006-08-10 phpwcms <= 1.1-RC4 (spaw) Remote File Include Vulnerability
2006-08-10 MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040)
2006-08-09 SAPID CMS <= 1.2.3_rc3 (rootpath) Remote Code Execution Exploit
2006-08-09 OpenMPT <= 1.17.02.43 Multiple Remote Buffer Overflow Exploit PoC
2006-08-09 PHPMyRing <= 4.2.0 (view_com.php) Remote SQL Injection Exploit
2006-08-09 TinyWebGallery <= 1.5 (image) Remote Include Vulnerabilities
2006-08-09 Tagger Luxury Edition (BBCodeFile) Remote File Include Vulnerability
2006-08-09 PocketPC MMS Composer (WAPPush) Denial of Service Exploit
2006-08-09 See-Commerce <= 1.0.625 (owimg.php3) Remote Include Vulnerability
2006-08-09 PgMarket <= 2.2.3 (CFG[libdir]) Remote File Inclusion Vulnerability
2006-08-09 Boite de News <= 4.0.1 (index.php) Remote File Inclusion Vulnerability
2006-08-08 PHP <= 4.4.3 / 5.1.4 (objIndex) Local Buffer Overflow Exploit PoC
2006-08-08 Cwfm <= 0.9.1 (Language) Remote File Inclusion Vulnerability
2006-08-08 CLUB-Nuke [XP] 2.0 LCID 2048 (Turkish Version) SQL Injection
2006-08-08 Hitweb <= 4.2 (REP_INC) Remote File Include Vulnerability
2006-08-07 phNNTP <= 1.3 (article-raw.php) Remote File Include Vulnerability
2006-08-07 XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)
2006-08-07 docpile:we <= 0.2.2 (INIT_PATH) Remote File Inclusion Vulnerabilities
2006-08-07 Barracuda Spam Firewall <= 3.3.03.053 Remote Code Execution (extra)
2006-08-07 liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit
2006-08-07 TWiki <= 4.0.4 (configure) Remote Command Execution Exploit
2006-08-07 ZoneX 1.0.3 Publishers Gold Edition Remote File Inclusion Vulnerability
2006-08-07 Visual Events Calendar 1.1 (cfg_dir) Remote Include Vulnerability
2006-08-07 eIQnetworks License Manager Remote Buffer Overflow Exploit (multi)
2006-08-07 PHPCodeCabinet <= 0.5 (Core.php) Remote File Include Vulnerability
2006-08-07 SAPID Shop <= 1.2 (root_path) Remote File Include Vulnerability
2006-08-07 SAPID Gallery <= 1.0 (root_path) Remote File Include Vulnerabilities
2006-08-07 SAPID Blog <= beta 2 (root_path) Remote File Include Vulnerabilities
2006-08-07 SAPID CMS <= 1.2.3.05 (root_path) Remote File Include Vulnerabilities
2006-08-07 Modernbill <= 1.6 (config.php) Remote File Include Vulnerability
2006-08-07 Joomla JD-Wiki Component <= 1.0.2 Remote Include Vulnerability
2006-08-07 XChat <= 2.6.7 (Windows Version) Remote Denial of Service Exploit
2006-08-07 SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability
2006-08-07 ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability
2006-08-07 Torbstoff News 4 (pfad) Remote File Inclusion Vulnerability
2006-08-07 PHP Live Helper <= 2.0 (abs_path) Remote File Inclusion Vulnerability
2006-08-07 PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion Vulnerability
2006-08-07 myBloggie <= 2.1.4 (trackback.php) Multiple SQL Injections Exploit
2006-08-03 SendCard <= 3.4.0 Unauthorized Administrative Access Exploit
2006-08-02 TSEP <= 0.942 (colorswitch.php) Remote Inclusion Vulnerability
2006-08-02 Kayako eSupport <= 2.3.1 (subd) Remote File Inclusion Vulnerability
2006-08-02 TinyPHP Forum <= 3.6 (makeadmin) Remote Admin Maker Exploit
2006-08-02 SaveWeb Portal <= 3.4 (SITE_Path) Remote File Inclusion Vulnerabilities
2006-08-02 Mac OS X <= 10.3.8 (CF_CHARSET_PATH) Local BOF Exploit (2)
2006-08-02 TWiki <= 4.0.4 (Configure Script) Remote Code Execution Exploit (meta)
2006-08-02 WoW Roster <= 1.70 (/lib/phpbb.php) Remote File Include Vulnerability
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (ppc)
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (x86)
2006-08-01 XMB <= 1.9.6 (u2uid) Remote SQL Injection Exploit (mq=off)
2006-08-01 k_fileManager <= 1.2 (dwl_include_path) Remote Inclusion Vulnerability
2006-08-01 k_shoutBox <= 4.4 Remote File Inclusion Vulnerability
2006-08-02 Voodoo chat <= 1.0RC1b (file_path) Remote File Inclusion Vulnerability
2006-08-01 newsReporter <= 1.1 (index.php) Remote Inclusion Vulnerability
2006-08-01 PHPAuction 2.1 (phpAds_path) Remote File Inclusion Vulnerability
2006-08-01 WoW Roster <= 1.5.1 (subdir) Remote File Include Vulnerability
2006-08-01 TSEP <= 0.942 (copyright.php) Remote Inclusion Vulnerability
2006-08-01 NewsLetter <= 3.5 (NL_PATH) Remote File Inclusion Vulnerability
2006-07-31 MyNewsGroups <= 0.6b (myng_root) Remote Inclusion Vulnerability
2006-07-31 Open Cubic Player <= 2.6.0pre6 / 0.1.10_rc5 Multiple BOF Exploit
2006-07-30 MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability
2006-07-30 Joomla LMO Component <= 1.0b2 Remote Include Vulnerability
2006-07-30 Microsoft PowerPoint 2003 SP2 Local Code Execution Exploit (french)
2006-07-30 Mambo com_bayesiannaivefilter Component <= 1.1 Inclusion Vulnerability
2006-07-30 Mambo User Home Pages Component <= 0.5 Remote Include Vulnerability
2006-07-30 ATutor <= 1.5.3.1 (links) Remote Blind SQL Injection Exploit
2006-07-29 vbPortal 3.0.2 <= 3.6.0 b1 (cookie) Remote Code Excution Exploit
2006-07-29 Mambo mambatStaff Component <= 3.1b Remote Inclusion Vulnerability
2006-07-29 Mambo Colophon Component <= 1.2 Remote Inclusion Vulnerability
2006-07-28 Mambo MGM Component <= 0.95r2 Remote Inclusion Vulnerability
2006-07-28 Mambo Security Images Component <= 3.0.5 Inclusion Vulnerabilities
2006-07-28 Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC
2006-07-27 Portail PHP <= 1.7 (chemin) Remote Inclusion Vulnerability
2006-07-27 eIQnetworks License Manager Remote Buffer Overflow Exploit (multi)
2006-07-27 eIQnetworks ESA (Syslog Server) Remote Buffer Overflow Exploit
2006-07-27 a6mambohelpdesk Mambo Component <= 18RC1 Include Vulnerability
2006-07-27 WMNews <= 0.2a (base_datapath) Remote Inclusion Vulnerability
2006-07-26 AIM Triton 1.0.4 (SipXtapi) Remote Buffer Overflow Exploit (PoC)