- Flock Social Web Browser 1.2.5 (loop) Remote Denial of Service Exploit
- IntegraMOD 1.4.x (Insecure Directory) Download Database Vulnerability
- Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit
- Vastal I-Tech Dating Zone (fage) SQL Injection Vulnerability
- CitectSCADA ODBC Server Remote Stack Buffer Overflow Exploit (meta)
- Google Chrome Browser 0.2.149.27 Inspect Element DoS Exploit
- Vastal I-Tech Shaadi Zone 1.0.9 (tage) SQL Injection Vulnerability
- EsFaq 2.0 (idcat) Remote SQL Injection Vulnerability
- Vastal I-Tech Cosmetics Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech Freelance Zone (coder_id) SQL Injection Vulnerability
- Vastal I-Tech Mag Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech MMORPG Zone (game_id) SQL Injection Vulnerability
- Vastal I-Tech Jobs Zone (news_id) SQL Injection Vulnerability
- Vastal I-Tech Software Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech DVD Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech Share Zone (id) SQL Injection Vulnerability
- Vastal I-Tech Toner Cart (id) SQL Injection Vulnerability
- Vastal I-Tech Visa Zone (news_id) SQL Injection Vulnerability
- Google Chrome Browser 0.2.149.27 A HREF Denial of Service Exploit
- Vastal I-Tech Agent Zone (ann_id) SQL Injection Vulnerability
- WebCMS Portal Edition (index.php id) Blind SQL Injection Exploit
- devalcms 1.4a XSS / Remote Code Execution Exploit
- AWStats Totals (awstatstotals.php sort) Remote Code Execution Exploit
- Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit
- Google Chrome Browser 0.2.149.27 (1583) Remote Silent Crash PoC
- MicroTik RouterOS
- ACG-ScriptShop (cid) Remote SQL Injection Vulnerability
- Qwicsite Pro (SQL/XSS) Multiple Remote Vulnerabilities
- ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability
- Living Local Website (listtest.php r) SQL Injection Vulnerability
- TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Vulnerability
- aspWebAlbum 3.2 (Upload/SQL/XSS) Multiple Remote Vulnerabilities
- Moodle
- Google Chrome Browser 0.2.149.27 Automatic File Download Exploit
- Spice Classifieds (cat_path) Remote SQL Injection Vulnerability
- Google Chrome Browser 0.2.149.27 malicious link DoS Vulnerability
- CS-Cart
- AJ HYIP ACME (readarticle.php artid) SQL Injection Vulnerability
- AJ HYIP ACME (comment.php artid) SQL Injection Vulnerability
- Coupon Script 4.0 (id) Remote SQL Injection Vulnerability
- Reciprocal Links Manager 1.1 (site) SQL Injection Vulnerability
- myPHPNuke < 1.8.8_8rc2 (artid) SQL Injection Vulnerability
- e107 Plugin BLOG Engine 2.2 (uid) SQL Injection Exploit
- VMware COM API ActiveX Remote Buffer Overflow PoC
- WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit
- CMSbright (id_rub_page) Remote SQL Injection Vulnerability
- EasyClassifields 3.0 (go) Remote SQL Injection Vulnerability
- WeBid 0.5.4 (item.php id) Remote SQL Injection Vulnerability
- WeBid 0.5.4 Multiple Remote Vulnerabilities
- myPHPNuke < 1.8.8_8rc2 (XSS/SQL) Multiple Remote Vulnerabilities
- Postfix
- Words tag script 1.2 (word) Remote SQL Injection Vulnerability
- Web Directory Script 1.5.3 (site) SQL Injection Vulnerability
- Friendly Technologies Read/Write Registry/Read Files Exploit
- Acoustica Beatcraft 1.02 Build 19 (bcproj file) Local BOF Exploit
- Brim 2.0.0 (SQL/XSS) Multiple Remote Vulnerabilities
- Friendly Technologies (Open/Save) ActiveX Insecure Method Exploit
- Micrsoft Windows GDI (CreateDIBPatternBrushPt) Heap Overflow PoC
- Acoustica MP3 CD Burner 4.51 Build 147 (asx file) Local BOF Exploit
- Sun Solaris
- Acoustica MP3 CD Burner 4.51 Build 147 (asx file) Local BOF Exploit
- Sun Solaris
- Najdi.si Toolbar ActiveX Remote Buffer Overflow PoC
- LogMeIn Remote Access Utility ActiveX Memory Corruption DoS
- Invision Power Board
- Friendly Technologies (fwRemoteCfg.dll) ActiveX Command Exec Exploit
- Friendly Technologies (fwRemoteCfg.dll) ActiveX Remote BOF Exploit
- Acoustica Mixcraft
- YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability
- phpMyRealty
- Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit
- Ultra Office ActiveX Control Remote Buffer Overflow Exploit
- Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Exploit
- MyBulletinBoard (MyBB)
- iFdate
- Thickbox Gallery v2 (admins.php) Admin Data Disclosure Vulnerability
- CMME 1.12 (LFI/XSS/CSRF/Backup/MkDir) Multiple Vulnerabilities
- Discuz! 6.0.1 (searchid) Remote SQL Injection Exploit
- Free Hosting Manager 1.2/2.0 Insecure Cookie Handling Vulnerability
- Request It 1.0 (index.php id) Remote File Inclusion Vulnerability
- LoveCMS 1.6.2 Final Remote Code Execution Exploit
- LoveCMS 1.6.2 Final Update Settings Remote Exploit
- Quate CMS 0.3.4 (LFI/XSS) Multiple Remote Vulnerabilities
- Multiple Wsn Products (LFI) Code Execution Vulnerability
- LiteNews
- LiteNews
- Plogger
- Iges Cms
- Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities
- HydraIrc
- syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability
- TGS CMS 0.3.2r2 Remote Code Execution Exploit
- Joomla Component EZ Store Remote Blind SQL Injection Exploit
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (spoof on ircd)
- Xerox Phaser 8400 (reboot) Remote Denial of Service Exploit
- IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit
- moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit
- E-Store Kit-
- K-Links Directory (SQL/XSS) Multiple Remote Vulnerabilities
- e-Vision CMS
- phsBlog 0.1.1 Multiple Remote SQL Injection Vulnerabilities
- GreenCart PHP Shopping Cart (id) Remote SQL Injection Vulnerability
- IrfanView
- E-topbiz Dating 3 PHP Script (mail_id) Remote SQL Injection Vulnerability
- Scripts24 iTGP 1.0.4 (id) Remote SQL Injection Vulnerability
- Scripts24 iPost 1.0.1 (id) Remote SQL Injection Vulnerability
- eStoreAff 0.1 (cid) Remote SQL Injection Vulnerability
- ABG Blocking Script 1.0a (abg_path) Remote File Inclusion Vulnerability
- RealVNC Windows Client 4.1.2 Remote DOS Crash PoC
- PHPAuction GPL Enhanced 2.51 (profile.php) SQL Injection Vulnerability
- phpMyRealty (location) Remote SQL Injection Vulnerability
- LetterIt 2 (language) Local File Inclusion Vulnerability
- Symphony
- Coppermine Photo Gallery
- PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability
- NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit
- F-PROT antivirus 6.2.1.4252 (malformed archive) Infinite Loop DoS Exploit
- eNdonesia 8.4 (Calendar Module) Remote SQL Injection Exploit
- Pligg
- Pligg
- PozScripts Classified Ads Script (cid) SQL Injection Vulnerability
- TubeGuru Video Sharing Script (UID) SQL Injection Vulnerability
- HIOX Browser Statistics 2.0 Arbitrary Add Admin User Exploit
- Article Friendly Pro/Standard (categorydetail.php Cat) SQL Injection Vulnerability
- HIOX Random Ad 1.3 Arbitrary Add Admin User Exploit
- ZeeReviews (comments.php ItemID) Remote SQL Injection Vulnerability
- nzFotolog 0.4.1 (action_file) Local File Inclusion Vulnerability
- PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability
- HIOX Random Ad 1.3 (hioxRandomAd.php hm) RFI Vulnerability
- HIOX Browser Statistics 2.0 Remote File Inclusion Vulnerability
- PHP Hosting Directory 2.0 (admin.php rd) RFI Vulnerability
- Gregarius
- e107 Plugin BLOG Engine 2.2 Blind SQL Injection Exploit
- CoolPlayer m3u File Local Buffer Overflow Exploit
- Minishowcase 09b136 (lang) Local File Inclusion Vulnerability
- Cisco IOS 12.3(18) FTP Server Remote Exploit (attached to gdb)
- ViArt Shop
- ATutor
- Trend Micro OfficeScan ObjRemoveCtrl ActiveX Control BOF Exploit
- Velocity web-server 1.0 Directory Traversal File Download Vulnerability
- PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability
- Dokeos E-Learning System 1.8.5 Local File Inclusion Vulnerability
- TalkBack 2.3.5 (language) Local File Inclusion Vulnerability
- Youtuber Clone (ugroups.php UID) Remote SQL Injection Vulnerability
- Pligg CMS 9.9.0 (story.php id) Remote SQL Injection Vulnerability
- GC Auction Platinum (cate_id) Remote SQL Injection Vulnerability
- Getacoder clone (sb_protype) Remote SQL Injection Vulnerability
- CMScout 2.05 (common.php bit) Local File Inclusion Vulnerability
- SiteAdmin CMS (art) Remote SQL Injection Vulnerability
- TriO
- phpLinkat 0.1 Insecure Cookie Handling / SQL Injection Vulnerability
- EPShop < 3.0 (pid) Remote SQL Injection Vulnerability
- Mobius
- IceBB
- phpWebNews 0.2 MySQL Edition (SQL) Insecure Cookie Handling Vulnerability
- fipsCMS light
- phpTest 0.6.3 (picture.php image_id) Remote SQL Injection Vulnerability
- FizzMedia 1.51.2 (comment.php mid) SQL Injection Vulnerability
- Camera Life 2.6.2 (id) Remote SQL Injection Vulnerability
- xrms 1.99.2 (RFI/XSS/IG) Multiple Remote Vulnerabilities
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
- minix 3.1.2a tty panic Remote Denial of Service Vulnerability
- Live Music Plus 1.1.0 (id) Remote SQL Injection Vulnerability
- Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit
- ibase
- Atom PhotoBlog 1.1.5b1 (photoId) Remote SQL Injection Vulnerability
- Microsoft Access (Snapview.ocx 10.0.5529.0) ActiveX Remote Exploit
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (py)
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta)
- minix 3.1.2a tty panic Local Denial of Service Vulnerability
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit (c)
- Pre Survey Poll (default.asp catid) SQL Injection Vulnerability
- IntelliTamper 2.07 (server header) Remote Code Execution Exploit
- YouTube Blog 0.1 (RFI/SQL/XSS) Multiple Remote Vulnerabilities
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit
- ShopCartDx 4.30 (pid) Remote SQL Injection Vulnerability
- EZWebAlbum Insecure Cookie Handling Vulnerability
- Arctic Issue Tracker 2.0.0 (index.php filter) SQL Injection Exploit
- MojoAuto (mojoAuto.cgi mojo) Blind SQL Injection Exploit
- Interact E-Learning System 2.4.1 (help.php) LFI Vulnerabilities
- MojoClassifieds 2.0 Remote Blind SQL Injection Exploit
- MojoPersonals (mojoClassified.cgi mojo) Blind SQL Injection Exploit
- MojoJobs (mojoJobs.cgi mojo) Blind SQL Injection Exploit
- EZWebAlbum (dlfilename) Remote File Disclosure Vulnerability
- IntelliTamper 2.07 (map file) Local Arbitrary Code Execution Exploit (pl)
- HRS Multi (picture_pic_bv.asp key) Blind SQL Injection Exploit
- DigiLeave 1.2 (info_book.asp book_id) Blind SQL Injection Exploit
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow PoC
- PHPFootball 1.6 (show.php) Remote SQL Injection Vulnerability
- Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit
- Apache mod_jk 1.2.19 Remote Buffer Overflow Exploit (win32)
- Siteframe (folder.php id) Remote SQL Injection Vulnerability
- Aprox CMS Engine 5.1.0.4 (index.php page) SQL Injection Vulnerability
- Artic Issue Tracker 2.0.0 (index.php filter) SQL Injection Vulnerability
- preCMS v.1 (index.php page) Remote SQL injection Vulnerability
- AlstraSoft Article Manager Pro 1.6 Blind SQL Injection Exploit
- Debian OpenSSH Remote SELinux Privilege Elevation Exploit (auth)
- AlstraSoft Video Share Enterprise 4.5.1 (UID) SQL Injection Vulnerability
- phpHoo3
- PPMate PPMedia Class ActiveX Control Buffer Overflow PoC
- Bea Weblogic -- Apache Connector Remote Denial of Service Exploit
- tplSoccerSite 1.0 Multiple Remote SQL Injection Vulnerabilities
- AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability
- Joomla Component DT Register Remote SQL injection Vulnerability
- PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit
- HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities
- Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC
- PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability
- Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability
- php Help Agent
- Comdev Web Blogger
- Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability
- WinRemotePC Full+Lite 2008 r.2server Denial of Service Exploit
- pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability
- Galatolo Web Manager 1.3a
- Pluck 4.5.1 (blogpost) Local File Inclusion Vulnerability (win only)
- Bilboblog 2.1 Multiples Remote Vulnerabilities
- Yahoo Messenger 8.1 ActiveX Remote Denial of Service Exploit
- CodeDB (list.php lang) Local File Inclusion Vulnerability
- Scripteen Free Image Hosting Script 1.2 (cookie) Pass Grabber Exploit
- ITechBids 7.0 Gold (XSS/SQL) Multiple Remote Vulnerabilities
- MFORUM 0.1a Arbitrary Add-Admin Vulnerability
- Ultrastats
- Maian Search
- Maian Uploader
- Maian Weblog
- Maian Recipe
- Maian Links
- Maian Guestbook
- Simple DNS Plus
- fuzzylime cms 3.01 (commrss.php) Remote Code Execution Exploit
- Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC
- Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)
- Linksys WRT54G (firmware 1.00.9) Security Bypass Vulnerabilities (2)
- Panda Security ActiveScan 2.0 (Update) Remote BOF Exploit
- CMailServer 5.4.6 (CMailCOM.dll) Remote SEH Overwrite Exploit
- Safari + Quicktime <= 7.3 RTSP Content-Type Remote BOF Exploit
- trixbox (langChoice) Local File Inclusion Exploit (connect-back) v2
- TrixBox 2.6.1 langChoice remote root exploit
- Avlc Forum (vlc_forum.php id) Remote SQL Injection Vulnerability
- jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities
- WebCMS Portal Edition (id) Remote SQL Injection Vulnerability
- Joomla Component n-forms 1.01 Blind SQL Injection Exploit
- fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (pl)
- fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (php)
- Wizi Wiki Wig 1.0 (index.php c) Local File Inclusion Vulnerability
- Maian Music 1.0 Insecure Cookie Handling Vulnerability
- Maian Greetings 2.1 Insecure Cookie Handling Vulnerability
- Maian Gallery 2.0 Insecure Cookie Handling Vulnerability
- Maian Events 2.0 Insecure Cookie Handling Vulnerability