- @CMS 2.1.1 (readarticle.php article_id) SQL Injection Vulnerability
- SiteXS CMS 0.1.1 (Upload/XSS) Multiple Remote Vulnerabilities
- PHPAuction (profile.php user_id) Remote SQL Injection Vulnerability
- emuCMS 0.3 (cat_id) Remote SQL Injection Vulnerability
- JaxUltraBB
- Jamroom 3.3.5 Remote File Inclusion Vulnerabilities
- CiBlog 3.1 (links-extern.php id) Remote SQL Injection Vulnerability
- IPTBB 0.5.6 (index.php act) Local File Inclusion Vulnerability
- Lightweight News Portal [LNP] 1.0b Multiple Remote Vulnerabilities
- FubarForum 1.5 (index.php page) Local File Inclusion Vulnerability
- FireAnt 1.3 (index.php page) Local File Inclusion Vulnerability
- GL-SH Deaf Forum
- Virtual Support Office-XP
- AJ Auction Web 2.0 (cate_id) SQL Injection Vulnerability
- AJ Auction v1 (id) Remote SQL Injection Vulnerability
- Lotus Core CMS 1.0.1 Remote File Inclusion Vulnerabilities
- CaupoShop Classic 1.3 (saArticle[ID]) Remote SQL Injection Vulnerability
- CMS-BRD (menuclick) Remote SQL Injection Vulnerability
- samart-cms 2.0 (contentsid) Remote SQL Injection Vulnerability
- Academic Web Tools CMS
- OwnRS Blog beta3 (SQL/XSS) Multiple Remote Vulnerabilities
- Orlando CMS 0.6 Remote File Inclusion Vulnerabilities
- eLineStudio Site Composer (ESC)
- BoatScripts Classifieds (index.php type) SQL Injection Vulnerability
- Carscripts Classifieds (index.php cat) Remote SQL Injection Vulnerability
- nweb2fax
- Easy Webstore 1.2 (index.php postid) Remote SQL Injection Vulnerability
- PHP Booking Calendar 10 d (fckeditor) Arbitrary File Upload Exploit
- PHP Booking Calendar 10 d Remote SQL Injection Exploit
- Now SMS/MMS Gateway 5.5 Remote Buffer Overflow Exploit
- ASUS DPC Proxy 2.0.0.16/19 Remote Buffer Overflow Exploit
- CMS from Scratch
- Mambo Component mambads
- CMS from Scratch
- PicoFlat CMS 0.5.9 Local File Inclusion Vulnerabilitty (win)
- AirvaeCommerce 3.0 (pid) Remote SQL Injection Vulnerability
- SyntaxCMS
- Adobe Acrobat Reader
- VMware Server Console ActiveX Denial of Service PoC
- FlashBlog (articulo_id) Remote SQL Injection Vulnerability
- Joomla Component Artist (idgalery) SQL Injection Vulnerability
- PHPhotoalbum 0.5 Multiple Remote SQL Injection Vulnerabilities
- CA Internet Security Suite 2008 SaveToFile() File Corruption PoC
- Creative Software AutoUpdate Engine ActiveX Stack Overflow Exploit
- OtomiGen.X 2.2 (lang) Local File Inclusion Vulnerabilities
- PHP 5.2.6 sleep() Local Memory Exhaust Exploit
- CKGold Shopping Cart 2.5 (category_id) SQL Injection Vulnerability
- RevokeBB 1.0 RC11 (search) Remote SQL Injection Vulnerability
- Cms Maxsite
- RoomPHPlanning 1.5 Multiple Remote SQL Injection Vulnerabilities
- RoomPHPlanning 1.5 Arbitrary Add Admin User Vulnerability
- Xomol CMS v1 Login Bypass / LFI Vulnerabilities
- plusPHP URL Shortening Software 1.6 Remote File Inclusion Vulnerability
- phpRaider 1.0.7 (phpbb3.functions.php) RFI Vulnerability
- RoomPHPlanning 1.5 (idresa) Remote SQL Injection Vulnerability
- OneCMS 2.5 (install_mod.php) Local File Inclusion Vulnerability
- Quate CMS 0.3.4 (RFI/LFI/XSS/DT) Multiple Remote Vulnerabilities
- VLC 0.8.6d SSA Parsing Double Sh311 Universal Exploit
- e107 Plugin BLOG Engine 2.2 (uid) Blind SQL Injection Vulnerability
- Netbutikker
- WeblA¸sninger
- 6rbScript (news.php newsid) Remote SQL Injection Vulnerability
- Alcatel OmniPCX Office 210/061.1 Remote Command Execution Vuln
- Netious CMS 0.4 (index.php pageid) SQL Injection Vulnerability
- Php Jokesite 2.0 (cat_id) Remote SQL Injection Vulnerability
- MX-System 2.7.3 (index.php page) Remote SQL Injection Vulnerability
- ComicShout 2.5 (index.php comic_id) Remote SQL Injection Vulnerability
- Mantis Bug Tracker 1.1.1 (CE/XSS/CSRF) Multiple Vulnerabilities
- eCMS 0.4.2 (SQL/PB) Multiple Remote Vulnerabilities
- EntertainmentScript 1.4.0 (page.php page) Local File Inclusion Exploit
- EntertainmentScript (play.php id) Remote SQL Injection Vulnerability
- MercuryBoard
- AlkalinePHP
- microSSys CMS
- MyPicGallery 1.0 Arbitrary Add-Admin Exploit
- PHP AGTC-Membership System
- MeltingIce File System
- GNU/Gallery
- easyCMS
- AlkalinePHP
- LulieBlog 1.2 Multiple Remote Vulnerabilities
- Ajax framework (lang) Local File Inclusion Vulnerability
- TAGWORX.CMS Multiple Remote SQL Injection Vulnerabilities
- CMS WebManager-Pro Multiple Remote SQL Injection Vulnerabilities
- Smeego 1.0 (Cookie lang) Local File Inclusion Exploit
- FicHive 1.0 (category) Remote Blind SQL Injection Exploit
- How2ASP.net Webboard
- WR-Meeting 1.0 (msnum) Local File Disclosure Vulnerability
- Zomplog
- Archangel Weblog 0.90.02 (post_id) SQL Injection Exploit
- Zomplog
- StanWeb.CMS (default.asp id) Remote SQL Injection Exploit
- Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (ruby)
- IMGallery 2.5 Multiply Remote SQL Injection Vulnerabilities
- Multi-Page Comment System 1.1.0 Insecure Cookie Handling Vulnerability
- Web Slider
- RantX 1.0 Insecure Admin Authentication Vulnerability
- Pet Grooming Management System
- 68 Classifieds 4.0 (category.php cat) SQL Injection Vulnerability
- Symantec Altiris Client Service 6.8.378 Local Privilege Escalation Exploit
- Newsmanager 2.0 (RFI/RFD/SQL/PB) Multiple Remote Vulnerabilities
- Kostenloses Linkmanagementscript SQL Injection Vulnerabilities
- Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit
- Kostenloses Linkmanagementscript (page_to_include) RFI Vulnerability
- Rgboard
- MS Internet Explorer (Print Table of Links) Cross-Zone Scripting PoC
- La-Nai CMS
- Internet Photoshow (Special Edition) Insecure Cookie Handling Vuln
- ActiveKB
- AS-GasTracker 1.0.0 Insecure Cookie Handling Vulnerability
- Feedback and Rating Script 1.0 (detail.php) SQL Injection Vulnerability
- Freelance Auction Script 1.0 (browseproject.php) SQL Injection Vuln
- IDAutomation Bar Code ActiveX Multiple Remote Vulnerabilities
- Linkspile (link.php cat_id) Remote SQL Injection Vulnerability
- The Real Estate Script (dpage.php docID) SQL Injection Vulnerability
- EMO Realty Manager (news.php ida) SQL Injection Vulnerability
- Meto Forum 1.1 Multiple Remote SQL Injection Vulnerabilities
- CaLogic Calendars 1.2.2 (langsel) Remote SQL Injection Vulnerability
- Web Group Communication Center (WGCC)
- e-107 Plugin zogo-shop 1.16 Beta 13 SQL Injection Vulnerability
- e107 Plugin BLOG Engine 2.2 (rid) Blind SQL Injection Vulnerability
- EQDKP 1.3.2f (user_id) Authentication Bypass (PoC)
- AJ HYIP ACME (topic_detail.php id) Remote SQL Injection Vulnerability
- Advanced Image Hosting (AIH) 2.1 Remote SQL Injection Exploit
- CMS Made Simple
- PHP Classifieds Script (search.php) SQL Injection Vulnerability
- Mega File Hosting Script 1.2 (fid) Remote SQL Injection Vulnerability
- Battle.net Clan Script
- BIGACE 2.4 Multiple Remote File Inclusion Vulnerabilities
- ClanLite 2.x (SQL Injection/XSS) Multiple Remote Vulnerabilities
- ZeusCart
- AJ Dating 1.0 (view_profile.php) Remote SQL Injection Vulnerability
- AJ Classifieds 2008 (index.php) Remote SQL Injection Vulnerability
- AJ Auction
- AJ Article 1.0 (featured_article.php) Remote SQL Injection Vulnerability
- Vortex CMS (index.php pageid) Blind SQL Injection Exploit
- QuickUpCMS Multiple Remote SQL Injection Vulnerabilities Exploit
- Joomla Component xsstream-dm 0.01b Remote SQL Injection Exploit
- PhpBlock a8.5 Multiple Remote File Inclusion Vulnerabilities
- rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC
- Open Office.org 2.31 swriter Local Code Execution Exploit
- Joomla Component com_datsogallery 1.6 Blind SQL Injection Exploit
- Ktools PhotoStore
- Advanced Links Management (ALM) 1.52 SQL Injection Vulnerability
- Ktools PhotoStore 3.4.3 (gallery.php gid) SQL Injection Vulnerability
- txtCMS 0.3 (index.php) Local File Inclusion Exploit
- Phoenix View CMS
- HispaH Model Search (cat.php cat) Remote SQL Injection Vulnerability
- SazCart
- Admidio 1.4.8 (getfile.php) Remote File Disclosure Vulnerability
- X360 FTP Client (X360FtpClient.ocx) Remote File Download/Overwrite
- Secure File Delete Wizard
- Registry Pro (epRegPro.ocx) Remote Insecure Methods Exploit
- EvansFTP (EvansFTP.ocx) Remote Insecure Methods Exploit
- aaxRegistry (aaxRegistry.ocx) Remote Registry Deletion Exploit
- Univeral HTTP Image/File Upload ActiveX Remote File Deletion Exploit
- miniBloggie 1.0 (del.php) Arbitrary Delete Post Vulnerability
- Cyberfolio 7.12 (rep) Remote File Inclusion Vulnerability
- SazCart 1.5.1 Multiple Remote File Inclusion Vulnerabilities
- vShare Youtube Clone 2.6 (tid) Remote SQL Injection Vulnerability
- Shader TV (Beta) Multiple Remote SQL Injection Vulnerabilities
- TFTP Server for Windows 1.4 ST Remote BSS Overflow Exploit
- RunCMS
- rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC
- Musicbox
- ezContents CMS 2.0.0 Multiple Remote SQL Injection Vulnerabilities
- CMS Faethon 2.2 Ultimate (RFI/XSS) Multiple Remote Vulnerabilies
- OneCMS 2.5 Remote Blind SQL Injection Exploit
- PostcardMentor (step1.asp cat_fldAuto) SQL Injection Vulnerability
- gameCMS Lite 1.0 (index.php systemId) SQL Injection Vulnerability
- Galleristic 1.0 (index.php cat) Remote SQL Injection Exploit
- fipsCMS (print.asp lg) Remote SQL Injection Vulnerability
- Pre Shopping Mall 1.1 (search.php search) SQL Injection Vulnerability
- PHPEasyData 1.5.4 (cat_id) Remote SQL Injection Vulnerability
- DeluxeBB
- Power Editor 2.0 Remote File Disclosure / Edit Vulnerability
- Novell eDirectory < 8.7.3 SP 10 / 8.8.2 HTTP headers DOS Vulnerability
- Miniweb 2.0 (historymonth) Remote SQL Injection Vulnerability
- BackLinkSpider (cat_id) Remote SQL Injection Vulnerability
- Kmita Mail
- Kmita Tellfriend
- Anserv Auction XL (viewfaqs.php cat) SQL Injection Vulnerability
- Online Rental Property Script
- PostNuke Module pnEncyclopedia
- Scout Portal Toolkit
- ScorpNews 1.0 (example.php site) Remote File Inclusion Vulnerability
- cpLinks 1.03 (bypass/SQL/XXS) Multiple Remote Vulnerabilities
- phpDirectorySource 1.1 Multiple Remote SQL Injection Vulnerabilities
- HLDS WebMod 0.48 (rconpass) Remote Heap Overflow Exploit
- Smartblog (index.php tid) Remote SQL Injection Vulnerability
- WebMod 0.48 Multiple Remote Vulnerabilties
- BlogMe PHP (comments.php id) SQL Injection Vulnerability
- ItCMS 1.9 (boxpop.php) Remote Code Execution Vulnerability
- Open Auto Classifieds 1.4.3b Remote SQL Injection Vulnerabilities
- Microsoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit
- vlBook 1.21 (XSS/LFI) Multiple Remote Vulnerabilities
- ActualAnalyzer Lite (free) 2.78 Local File Inclusion Vulnerability
- Joomla Component Webhosting (catid) Blind SQL Injection Exploit
- interact 2.4.1 Multiple Remote File Inclusion Vulnerabilities
- Harris WapChat v.1 Multiple Remote File Inclusion Vulnerabilities
- OxYProject 0.85 (edithistory.php) Remote Code Execution Vulnerability
- Project Based Calendaring System (PBCS) 0.7.1 File Disclosure Vuln
- LokiCMS
- SugarCRM Community Edition 4.5.1/5.0.0 File Disclosure Vulnerability
- Joovili 3.1 (browse.videos.php category) SQL Injection Vulnerability
- VLC 0.8.6d httpd_FileCallBack Remote Format String Exploit
- MS Windows XP SP2 (win32k.sys) Privilege Escalation Exploit (MS08-025)
- Softbiz Web Host Directory Script (host_id) SQL Injection Vulnerability
- Prozilla Hosting Index (directory.php cat_id) SQL Injection Vulnerability
- GroupWise 7.0 (mailto: scheme) Buffer Overflow PoC
- Joomla Component paxxgallery 0.2 (gid) Blind SQL Injection Exploit
- ODFaq 2.1.0 Blind SQL Injection Exploit
- Joomla Component com_alphacontent Blind SQL Injection Exploit
- HP Software Update (Hpufunction.dll 4.0.0.1) Insecure Method PoC
- FluentCMS (view.php sid) Remote SQL Injection Vulnerability
- Content Management System for Phprojekt 0.6.1 File Disclosure Vuln
- Jokes Site Script (jokes.php?catagorie) SQL Injection Vulnerability
- MegaBBS Forum 2.2 (SQL/XSS) Multiple Remote Vulnerabilities
- PHPizabi v0.848b C1 HFP3 Database Information Disclosure Vuln
- RunCMS Module MyArticles 0.6 Beta-1 SQL Injection Vulnerability
- PHP Forge
- Angelo-Emlak 1.0 Multiple Remote SQL injection Vulnerabilities
- Clever Copy 3.0 (postview.php) Remote SQL Injection Exploit
- Content Management System for Phprojekt 0.6.1 RFI Vulnerabiltiies
- PostNuke Module pnFlashGames
- Siteman 2.x (EXEC/LFI/XSS) Multiple Remote Vulnerabilities
- Kantaris 0.3.4 SSA Subtitle Local Buffer Overflow Exploit
- Joomla Component Joomla-Visites 1.1 RC2 RFI Vulnerability
- WatchFire Appscan 7.0 ActiveX Multiple Insecure Methods Exploit
- PostNuke Module PostSchedule (eid) SQL Injection Vulnerability
- miniBB 2.2 (CSS/SQL/FPD) Multiple Remote Vulnerabilities
- Joomla Component JPad 1.0 SQL Injection Vulnerability (postauth)
- DivX Player 6.7 SRT File Subtitle Parsing Buffer Overflow Exploit
- Joomla Community Builder
- YouTube Clone Script (spages.php) Remote Code Execution Exploit
- Zune Software ActiveX Arbitrary File Overwrite Exploit
- Joomla Component Filiale 1.0.4 (idFiliale) SQL Injection Vulnerability
- E RESERV 2.1 (index.php ID_loc) SQL Injection Vulnerability
- Web Calendar
- Wordpress Plugin Spreadsheet
- Joomla Component FlippingBook 1.0.4 SQL Injection Vulnerability
- TR News 2.1 (nb) Remote SQL Injection Vulnerability
- RedDot CMS 7.5 (LngId) Remote SQL Injection Exploit
- Crazy Goomba 1.2.1 (id) Remote SQL Injection Vulnerability
- BlogWorx 1.0 (view.asp id) Remote SQL Injection Vulnerability
- Adobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit
- Kubelance 1.6.4 (ipn.php i) Local File Inclusion Vulnerability
- HostDirectory Pro Insecure Cookie Handling Vulnerability
- Acidcat CMS 3.4.1 Multiple Remote Vulnerabilities
- W1L3D4 Philboard 1.0 (philboard_reply.asp) SQL Injection Vulnerability