- Eset SysInspector AntiStealth driver - 3.0.65535.0 - esiasdrv.sys
- Autodesk DWF Viewer Control / LiveUpdate Module remote code execution exploit
- GdPicture Pro ActiveX (gdpicture4s.ocx)
- # Acoustica Beatcraft (bcproj file) Local BOF Exploit
- Postfix local root vulnerability
- <= 1.0b Blind SQL Injection Exploit
- MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability
- BMForum***Vulnerability Class: SQL Injection
- noname-cms SQL Injection
- Crux Gallery <= 1.32 Local File Inclusion Vulnerability
- RPortal v 1.1
- phpScheduleIt <= 1.2.10 (reserve.php) Remote Code Execution Exploit
- OpenElec <= v3.01 (form.php obj) Local File Inclusion Vulnerability
- MyBlog <= 0.9.8 Insecure Cookie Handling Vulnerability
- basebuilder <= 2.0.1 (main.inc.php) Remote File Inclusion Vulnerability
- Fez 1.3/2.0 RC1 (list.php) Remote SQL Injection Vulnerability
- CJ Ultra Plus <= 1.0.4 Cookie Remote SQL Injection Exploit
- Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability
- Free PHP VX Guestbook 1.06 Arbitrary Database Backup Vulnerability
- Linkarity (link.php) Remote SQL Injection Vulnerability
- Windows Media Encoder wmex.dll ActiveX Control BOF Exploit (MS08-053)
- FoT Video scripti 1.1b (oyun) Remote SQL Injection Vulnerability
- phpSmartCom 0.2 (LFI/SQL) Multiple Remote Vulnerabilities
- Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure Vulns
- Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit
- pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit
- WebPortal CMS
- pNews 2.03 (newsid) Remote SQL Injection Vulnerability
- vbLOGIX Tutorial Script
- SkaLinks 1.5 (register.php) Remote Arbitrary Add Editor Vulnerability
- iBoutique 4.0 (cat) Remote SQL Injection Vulnerability
- WebPortal CMS
- pForum 1.30 (showprofil.php id) Remote SQL Injection Vulnerability
- PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit
- Sports Clubs Web Panel 0.0.1 Remote File Upload Vulnerability
- Yourownbux 4.0 (COOKIE) Authentication Bypass Exploit
- Easy Photo Gallery 2.1 Arbitrary Add Admin / remove user Vulnerability
- PhpWebGallery 1.3.4 (cat) Blind SQL Injection Vulnerability
- Sports Clubs Web Panel 0.0.1 (id) SQL Injection Vulnerabilities
- Maxthon Browser 2.1.4.443 UNICODE Remote Denial of Service PoC
- Autodealers CMS AutOnline (id) SQL Injection Vulnerability
- minb 0.1.0 Remote Code Execution Exploit
- phsBlog 0.2 Bypass SQL Injection Filtering Exploit
- D-iscussion Board 3.01 (topic) Local File Inclusion Vulnerability
- Grafitti Forums 1.0 Remote SQL Injection/HTML Injection Vulnerabilities
- Ezphotogallery 2.1 XSS/FD/Bypass/SQL Injection Exploit
- Sports Clubs Web Panel 0.0.1 (p) Local File Inclusion Vulnerability
- Autodealers CMS AutOnline (pageid) SQL Injection Vulnerability
- PhpWebGallery 1.3.4 (XSS/LFI) Multiple Vulnerabilities
- Adobe Acrobat 9 ActiveX Remote Denial of Service Exploit
- Zanfi CMS lite / Jaw Portal free (page) SQL Injection Vulnerability
- phpVID 1.1 (XSS/SQL) Multiple Remote Vulnerabilities
- Wordpress 2.6.1 (SQL Column Truncation) Admin Takeover Exploit
- aspWebAlbum 3.2 Multiple Remote Vulnerabilities
- Zanfi CMS lite / Jaw Portal free (fckeditor) Arbitrary File Upload Vuln
- Availscript Jobs Portal Script (jid) SQL Injection Vulnerability (auth)
- Libera CMS
- Peachtree Accounting 2004 (PAWWeb11.ocx) ActiveX Insecure Method
- Zanfi CMS lite 1.2 Multiple Local File Inclusion Vulnerabilities
- Availscript Classmate Script (viewprofile.php) SQL Injection Vulnerability
- Availscript Photo Album (pics.php) Multiple Vulnerabilities
- Kim Websites 1.0 (fckeditor) Remote Arbitrary File Upload Vulnerability
- Availscript Article Script (articles.php) Multiple Vulnerabilities
- CMS Buzz (id) Remote SQL Injection Vulnerability
- Microworld Mailscan 5.6.a Password Reveal Exploit
- Stash 1.0.3 Insecure Cookie Handling Vulnerability
- Creator CMS 5.0 (sideid) Remote SQL Injection Vulnerability
- Live TV Script (index.php mid) SQL Injection Vulnerability
- Hot Links SQL-PHP 3 (report.php) Multiple Vulnerabilities
- Stash 1.0.3 Multiple SQL Injection Vulnerabilities
- Alstrasoft Forum (catid) Remote SQL Injection Vulnerability
- E-Shop Shopping Cart Script (search_results.php) SQL Injection Vuln
- Wordpress 2.6.1 SQL Column Truncation Vulnerability
- Altrasoft Forum (cat) Remote SQL Injection Vulnerability
- Masir Camp E-Shop Module
- Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC
- MemHT Portal
- Simple Machines Forum
- Flock Social Web Browser 1.2.5 (loop) Remote Denial of Service Exploit
- IntegraMOD 1.4.x (Insecure Directory) Download Database Vulnerability
- Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit
- Vastal I-Tech Dating Zone (fage) SQL Injection Vulnerability
- CitectSCADA ODBC Server Remote Stack Buffer Overflow Exploit (meta)
- Google Chrome Browser 0.2.149.27 Inspect Element DoS Exploit
- Vastal I-Tech Shaadi Zone 1.0.9 (tage) SQL Injection Vulnerability
- EsFaq 2.0 (idcat) Remote SQL Injection Vulnerability
- Vastal I-Tech Cosmetics Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech Freelance Zone (coder_id) SQL Injection Vulnerability
- Vastal I-Tech Mag Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech MMORPG Zone (game_id) SQL Injection Vulnerability
- Vastal I-Tech Jobs Zone (news_id) SQL Injection Vulnerability
- Vastal I-Tech Software Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech DVD Zone (cat_id) SQL Injection Vulnerability
- Vastal I-Tech Share Zone (id) SQL Injection Vulnerability
- Vastal I-Tech Toner Cart (id) SQL Injection Vulnerability
- Vastal I-Tech Visa Zone (news_id) SQL Injection Vulnerability
- Google Chrome Browser 0.2.149.27 A HREF Denial of Service Exploit
- Vastal I-Tech Agent Zone (ann_id) SQL Injection Vulnerability
- WebCMS Portal Edition (index.php id) Blind SQL Injection Exploit
- devalcms 1.4a XSS / Remote Code Execution Exploit
- AWStats Totals (awstatstotals.php sort) Remote Code Execution Exploit
- Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit
- Google Chrome Browser 0.2.149.27 (1583) Remote Silent Crash PoC
- MicroTik RouterOS
- ACG-ScriptShop (cid) Remote SQL Injection Vulnerability
- Qwicsite Pro (SQL/XSS) Multiple Remote Vulnerabilities
- ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability
- Living Local Website (listtest.php r) SQL Injection Vulnerability
- TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Vulnerability
- aspWebAlbum 3.2 (Upload/SQL/XSS) Multiple Remote Vulnerabilities
- Moodle
- Google Chrome Browser 0.2.149.27 Automatic File Download Exploit
- Spice Classifieds (cat_path) Remote SQL Injection Vulnerability
- Google Chrome Browser 0.2.149.27 malicious link DoS Vulnerability
- CS-Cart
- AJ HYIP ACME (readarticle.php artid) SQL Injection Vulnerability
- AJ HYIP ACME (comment.php artid) SQL Injection Vulnerability
- Coupon Script 4.0 (id) Remote SQL Injection Vulnerability
- Reciprocal Links Manager 1.1 (site) SQL Injection Vulnerability
- myPHPNuke < 1.8.8_8rc2 (artid) SQL Injection Vulnerability
- e107 Plugin BLOG Engine 2.2 (uid) SQL Injection Exploit
- VMware COM API ActiveX Remote Buffer Overflow PoC
- WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit
- CMSbright (id_rub_page) Remote SQL Injection Vulnerability
- EasyClassifields 3.0 (go) Remote SQL Injection Vulnerability
- WeBid 0.5.4 (item.php id) Remote SQL Injection Vulnerability
- WeBid 0.5.4 Multiple Remote Vulnerabilities
- myPHPNuke < 1.8.8_8rc2 (XSS/SQL) Multiple Remote Vulnerabilities
- Postfix
- Words tag script 1.2 (word) Remote SQL Injection Vulnerability
- Web Directory Script 1.5.3 (site) SQL Injection Vulnerability
- Friendly Technologies Read/Write Registry/Read Files Exploit
- Acoustica Beatcraft 1.02 Build 19 (bcproj file) Local BOF Exploit
- Brim 2.0.0 (SQL/XSS) Multiple Remote Vulnerabilities
- Friendly Technologies (Open/Save) ActiveX Insecure Method Exploit
- Micrsoft Windows GDI (CreateDIBPatternBrushPt) Heap Overflow PoC
- Acoustica MP3 CD Burner 4.51 Build 147 (asx file) Local BOF Exploit
- Sun Solaris
- Acoustica MP3 CD Burner 4.51 Build 147 (asx file) Local BOF Exploit
- Sun Solaris
- Najdi.si Toolbar ActiveX Remote Buffer Overflow PoC
- LogMeIn Remote Access Utility ActiveX Memory Corruption DoS
- Invision Power Board
- Friendly Technologies (fwRemoteCfg.dll) ActiveX Command Exec Exploit
- Friendly Technologies (fwRemoteCfg.dll) ActiveX Remote BOF Exploit
- Acoustica Mixcraft
- YourOwnBux 3.1, 3.2 Beta Remote SQL Injection Vulnerability
- phpMyRealty
- Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit
- Ultra Office ActiveX Control Remote Buffer Overflow Exploit
- Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Exploit
- MyBulletinBoard (MyBB)
- iFdate
- Thickbox Gallery v2 (admins.php) Admin Data Disclosure Vulnerability
- CMME 1.12 (LFI/XSS/CSRF/Backup/MkDir) Multiple Vulnerabilities
- Discuz! 6.0.1 (searchid) Remote SQL Injection Exploit
- Free Hosting Manager 1.2/2.0 Insecure Cookie Handling Vulnerability
- Request It 1.0 (index.php id) Remote File Inclusion Vulnerability
- LoveCMS 1.6.2 Final Remote Code Execution Exploit
- LoveCMS 1.6.2 Final Update Settings Remote Exploit
- Quate CMS 0.3.4 (LFI/XSS) Multiple Remote Vulnerabilities
- Multiple Wsn Products (LFI) Code Execution Vulnerability
- LiteNews
- LiteNews
- Plogger
- Iges Cms
- Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities
- HydraIrc
- syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability
- TGS CMS 0.3.2r2 Remote Code Execution Exploit
- Joomla Component EZ Store Remote Blind SQL Injection Exploit
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (spoof on ircd)
- Xerox Phaser 8400 (reboot) Remote Denial of Service Exploit
- IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit
- moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit
- E-Store Kit-
- K-Links Directory (SQL/XSS) Multiple Remote Vulnerabilities
- e-Vision CMS
- phsBlog 0.1.1 Multiple Remote SQL Injection Vulnerabilities
- GreenCart PHP Shopping Cart (id) Remote SQL Injection Vulnerability
- IrfanView
- E-topbiz Dating 3 PHP Script (mail_id) Remote SQL Injection Vulnerability
- Scripts24 iTGP 1.0.4 (id) Remote SQL Injection Vulnerability
- Scripts24 iPost 1.0.1 (id) Remote SQL Injection Vulnerability
- eStoreAff 0.1 (cid) Remote SQL Injection Vulnerability
- ABG Blocking Script 1.0a (abg_path) Remote File Inclusion Vulnerability
- RealVNC Windows Client 4.1.2 Remote DOS Crash PoC
- PHPAuction GPL Enhanced 2.51 (profile.php) SQL Injection Vulnerability
- phpMyRealty (location) Remote SQL Injection Vulnerability
- LetterIt 2 (language) Local File Inclusion Vulnerability
- Symphony
- Coppermine Photo Gallery
- PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability
- NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit
- F-PROT antivirus 6.2.1.4252 (malformed archive) Infinite Loop DoS Exploit
- eNdonesia 8.4 (Calendar Module) Remote SQL Injection Exploit
- Pligg
- Pligg
- PozScripts Classified Ads Script (cid) SQL Injection Vulnerability
- TubeGuru Video Sharing Script (UID) SQL Injection Vulnerability
- HIOX Browser Statistics 2.0 Arbitrary Add Admin User Exploit
- Article Friendly Pro/Standard (categorydetail.php Cat) SQL Injection Vulnerability
- HIOX Random Ad 1.3 Arbitrary Add Admin User Exploit
- ZeeReviews (comments.php ItemID) Remote SQL Injection Vulnerability
- nzFotolog 0.4.1 (action_file) Local File Inclusion Vulnerability
- PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability
- HIOX Random Ad 1.3 (hioxRandomAd.php hm) RFI Vulnerability
- HIOX Browser Statistics 2.0 Remote File Inclusion Vulnerability
- PHP Hosting Directory 2.0 (admin.php rd) RFI Vulnerability
- Gregarius
- e107 Plugin BLOG Engine 2.2 Blind SQL Injection Exploit
- CoolPlayer m3u File Local Buffer Overflow Exploit
- Minishowcase 09b136 (lang) Local File Inclusion Vulnerability
- Cisco IOS 12.3(18) FTP Server Remote Exploit (attached to gdb)
- ViArt Shop
- ATutor
- Trend Micro OfficeScan ObjRemoveCtrl ActiveX Control BOF Exploit
- Velocity web-server 1.0 Directory Traversal File Download Vulnerability
- PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability
- Dokeos E-Learning System 1.8.5 Local File Inclusion Vulnerability
- TalkBack 2.3.5 (language) Local File Inclusion Vulnerability
- Youtuber Clone (ugroups.php UID) Remote SQL Injection Vulnerability
- Pligg CMS 9.9.0 (story.php id) Remote SQL Injection Vulnerability
- SiteAdmin CMS (art) Remote SQL Injection Vulnerability
- GC Auction Platinum (cate_id) Remote SQL Injection Vulnerability
- Getacoder clone (sb_protype) Remote SQL Injection Vulnerability
- CMScout 2.05 (common.php bit) Local File Inclusion Vulnerability
- TriO
- phpLinkat 0.1 Insecure Cookie Handling / SQL Injection Vulnerability
- EPShop < 3.0 (pid) Remote SQL Injection Vulnerability
- Mobius
- IceBB
- phpWebNews 0.2 MySQL Edition (SQL) Insecure Cookie Handling Vulnerability
- fipsCMS light
- phpTest 0.6.3 (picture.php image_id) Remote SQL Injection Vulnerability
- FizzMedia 1.51.2 (comment.php mid) SQL Injection Vulnerability
- Camera Life 2.6.2 (id) Remote SQL Injection Vulnerability
- xrms 1.99.2 (RFI/XSS/IG) Multiple Remote Vulnerabilities
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
- minix 3.1.2a tty panic Remote Denial of Service Vulnerability
- Live Music Plus 1.1.0 (id) Remote SQL Injection Vulnerability
- Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit
- ibase
- Atom PhotoBlog 1.1.5b1 (photoId) Remote SQL Injection Vulnerability
- Microsoft Access (Snapview.ocx 10.0.5529.0) ActiveX Remote Exploit
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (py)
- BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (meta)
- minix 3.1.2a tty panic Local Denial of Service Vulnerability
- IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit (c)
- Pre Survey Poll (default.asp catid) SQL Injection Vulnerability