733 commits

Author	SHA1	Message	Date
Offensive Security	75085bf1d7	DB: 2016-08-03 ... 7 new exploits Real Server 7/8/9 - Remote Root Exploit (Windows & Linux) Real Server 7/8/9 - Remote Root Exploit (Windows / Linux) Apache mod_gzip (with debug_mode) <= 1.2.26.1a - Remote Exploit Apache mod_gzip (with debug_mode) 1.2.26.1a - Remote Exploit BSD & Linux - umount Local Root Exploit BSD & Linux umount - Local Root Exploit BSD & Linux - lpr Command Local Root Exploit BSD & Linux lpr - Local Root Exploit Battlefield 1942 <= 1.6.19 + Vietnam 1.2 - Broadcast Client Crash Battlefield 1942 1.6.19 + Vietnam 1.2 - Broadcast Client Crash PHP 4.3.9 & phpBB 2.x - unserialize() Remote Exploit (compiled) PHP 4.3.9 + phpBB 2.x - unserialize() Remote Exploit (Compiled) Soldier of Fortune 2 <= 1.03 - 'cl_guid' Server Crash Soldier of Fortune 2 1.03 - 'cl_guid' Server Crash Download Center Lite (DCL) <= 1.5 - Remote File Inclusion Download Center Lite (DCL) 1.5 - Remote File Inclusion Linux Mandrake 10.2 - cdrdao Local Root Exploit (unfixed) cdrdao (Mandrake 10.2) - Local Root Exploit MyBulletinBoard (MyBB) <= 1.00 RC4 - SQL Injection Exploit MyBulletinBoard (MyBB) 1.00 RC4 - SQL Injection Exploit e107 <= 0.617 - XSS Remote Cookie Disclosure Exploit e107 0.617 - XSS Remote Cookie Disclosure Exploit MyBulletinBoard (MyBB) <= 1.00 RC4 SQL Injection Exploit MyBulletinBoard (MyBB) 1.00 RC4 SQL Injection Exploit F-Secure Internet Gatekeeper for Linux < 2.15.484 - Local Root Exploit F-Secure Internet Gatekeeper for Linux < 2.15.484 (and Gateway < 2.16) - Local Root Exploit MyBulletinBoard (MyBB) <= 1.03 - Multiple SQL Injection Exploit MyBulletinBoard (MyBB) 1.03 - Multiple SQL Injection Exploit MyBulletinBoard (MyBB) <= 1.03 - (misc.php COMMA) SQL Injection MyBulletinBoard (MyBB) 1.03 - (misc.php COMMA) SQL Injection MyBulletinBoard (MyBB) <= 1.04 - (misc.php COMMA) SQL Injection (2) MyBulletinBoard (MyBB) 1.04 - (misc.php COMMA) SQL Injection (2) Content-Builder (CMS) <= 0.7.2 - Multiple Include Vulnerabilities Content-Builder (CMS) 0.7.2 - Multiple Include Vulnerabilities MyBulletinBoard (MyBB) <= 1.1.3 - (usercp.php) Create Admin Exploit MyBulletinBoard (MyBB) 1.1.3 - (usercp.php) Create Admin Exploit DZCP (deV!L_z Clanportal) <= 1.34 - (id) SQL Injection Exploit DZCP (deV!L_z Clanportal) 1.34 - (id) SQL Injection Exploit Invision Power Board 2.1 <= 2.1.6 - SQL Injection Exploit Invision Power Board 2.1 <= 2.1.6 - SQL Injection Exploit (1) MyBulletinBoard (MyBB) <= 1.1.5 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) 1.1.5 - (CLIENT-IP) SQL Injection Exploit PHP Live! <= 3.2.1 - (help.php) Remote Inclusion PHP Live! 3.2.1 - (help.php) Remote Inclusion Les Visiteurs (Visitors) <= 2.0 - (config.inc.php) File Include Les Visiteurs (Visitors) 2.0 - (config.inc.php) File Include Electronic Engineering Tool (EE TOOL) <= 0.4.1 File Include Electronic Engineering Tool (EE TOOL) 0.4.1 File Include DZCP (deV!L_z Clanportal) <= 1.3.6 - Arbitrary File Upload DZCP (deV!L_z Clanportal) 1.3.6 - Arbitrary File Upload Tucows Client Code Suite (CSS) <= 1.2.1015 File Include Tucows Client Code Suite (CSS) 1.2.1015 File Include KDE 3.5 - (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit KDE 3.5 - (libkhtml) 4.2.0 / Unhandled HTML Parse Exception Exploit DZCP (deV!L_z Clanportal) <= 1.4.5 - Remote File Disclosure DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure McAfee VirusScan for Mac (Virex) <= 7.7 - Local Root Exploit McAfee VirusScan for Mac (Virex) 7.7 - Local Root Exploit WEBO (Web Organizer) <= 1.0 - (baseDir) Remote File Inclusion WEBO (Web Organizer) 1.0 - (baseDir) Remote File Inclusion Net Portal Dynamic System (NPDS) <= 5.10 - Remote Code Execution Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution Katalog Plyt Audio (pl) <= 1.0 - SQL Injection Exploit Katalog Plyt Audio (pl) 1.0 - SQL Injection Exploit study planner (studiewijzer) <= 0.15 - Remote File Inclusion study planner (studiewijzer) 0.15 - Remote File Inclusion MyBulletinBoard (MyBB) <= 1.2.3 - Remote Code Execution Exploit MyBulletinBoard (MyBB) 1.2.3 - Remote Code Execution Exploit MyBulletinBoard (MyBB) <= 1.2.2 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.2 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) <= 1.2.5 calendar.php Blind SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.5 calendar.php Blind SQL Injection Exploit Net Portal Dynamic System (NPDS) <= 5.10 - Remote Code Execution (2) Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (2) LAN Management System (LMS) <= 1.9.6 - Remote File Inclusion Exploit LAN Management System (LMS) 1.9.6 - Remote File Inclusion Exploit Ripe Website Manager (CMS) <= 0.8.9 - Remote File Inclusion Ripe Website Manager (CMS) 0.8.9 - Remote File Inclusion Simple PHP Blog (sphpblog) <= 0.5.1 - Multiple Vulnerabilities Simple PHP Blog (sphpblog) 0.5.1 - Multiple Vulnerabilities TaskFreak! <= 0.6.1 - SQL Injection TaskFreak! 0.6.1 - SQL Injection MyBulletinBoard (MyBB) <= 1.2.10 - Remote Code Execution Exploit mybulletinboard (mybb) <= 1.2.10 - Multiple Vulnerabilities MyBulletinBoard (MyBB) 1.2.10 - Remote Code Execution Exploit mybulletinboard (mybb) 1.2.10 - Multiple Vulnerabilities MyBulletinBoard (MyBB) <= 1.2.11 - private.php SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.11 - private.php SQL Injection Exploit PHP Live! <= 3.2.2 - (questid) SQL Injection (1) PHP Live! 3.2.2 - (questid) SQL Injection (1) Web Group Communication Center (WGCC) <= 1.0.3 - SQL Injection Web Group Communication Center (WGCC) 1.0.3 - SQL Injection C6 Messenger ActiveX Remote Download & Execute Exploit C6 Messenger ActiveX - Remote Download & Execute Exploit eLineStudio Site Composer (ESC) <= 2.6 - Multiple Vulnerabilities eLineStudio Site Composer (ESC) 2.6 - Multiple Vulnerabilities Simple PHP Blog (SPHPBlog) <= 0.5.1 Code Execution Exploit Simple PHP Blog (SPHPBlog) 0.5.1 Code Execution Exploit MyBulletinBoard (MyBB) <= 1.2.11 - private.php SQL Injection Exploit (2) MyBulletinBoard (MyBB) 1.2.11 - private.php SQL Injection Exploit (2) DZCP (deV!L_z Clanportal) <= 1.4.9.6 - Blind SQL Injection Exploit DZCP (deV!L_z Clanportal) 1.4.9.6 - Blind SQL Injection Exploit Amaya Web Editor XML and HTML parser Vulnerabilities Amaya Web Editor - XML and HTML parser Vulnerabilities CMS WEBjump! Multiple SQL Injection CMS WEBjump! - Multiple SQL Injection RQms (Rash) <= 1.2.2 - Multiple SQL Injection RQms (Rash) 1.2.2 - Multiple SQL Injection Online Grades & Attendance 3.2.6 Credentials Changer SQL Exploit Online Grades & Attendance 3.2.6 - Credentials Changer SQL Exploit Apple Safari & Quicktime Denial of Service Apple Safari & Quicktime - Denial of Service AudioPLUS 2.00.215 - (.lst & .m3u) Local Buffer Overflow (SEH) AudioPLUS 2.00.215 - (.lst / .m3u) Local Buffer Overflow (SEH) PHP Live! <= 3.2.2 - (questid) SQL Injection (2) PHP Live! 3.2.2 - (questid) SQL Injection (2) TwonkyMedia Server 4.4.17 & <= 5.0.65 - XSS TwonkyMedia Server 4.4.17 / 5.0.65 - XSS Adobe Shockwave 11.5.1.601 Player Multiple Code Execution Adobe Shockwave 11.5.1.601 Player - Multiple Code Execution NAS Uploader 1.0 & 1.5 - Remote File Upload NAS Uploader 1.0 / 1.5 - Remote File Upload PlayMeNow 7.3 & 7.4 - Buffer Overflow (Metasploit) PlayMeNow 7.3 / 7.4 - Buffer Overflow (Metasploit) Nuked KLan 1.7.7 & <= SP4 DoS Nuked KLan 1.7.7 & SP4 DoS Aqua Real 1.0 & 2.0 - Local Crash PoC Aqua Real 1.0 / 2.0 - Local Crash PoC FreePBX 2.5.x < 2.6.0 - Permanent Cross-Site Scripting (XSS) FreePBX 2.5.x < 2.6.0 - Permanent Cross-Site Scripting Ipswitch IMAIL 11.01 reversible encryption + weak ACL Ipswitch IMAIL 11.01 - reversible encryption + weak ACL justVisual 2.0 - (index.php) <= LFI justVisual 2.0 - (index.php) LFI Simple Machines Forum (SMF) <= 1.1.8 - (avatar) Remote PHP File Execute PoC Simple Machines Forum (SMF) 1.1.8 - (avatar) Remote PHP File Execute PoC SafeSHOP 1.5.6 - Cross-Site Scripting & Multiple Cross-Site Request Forgery SafeSHOP 1.5.6 - Cross-Site Scripting / Multiple Cross-Site Request Forgery McAfee Email Gateway (formerly IronMail) - Cross-Site Scripting (XSS) McAfee Email Gateway (formerly IronMail) - Cross-Site Scripting Local Glibc shared library (.so) <= 2.11.1 Exploit Local Glibc shared library (.so) 2.11.1 Exploit Safari 4.0.3 & 4.0.4 - Stack Exhaustion Safari 4.0.3 / 4.0.4 - Stack Exhaustion Apache Axis2 administration console - Cross-Site Scripting (XSS) (Authenticated) Apache Axis2 administration console - (Authenticated) Cross-Site Scripting CubeCart PHP (shipkey parameter) <= 4.3.x - SQL Injection CubeCart PHP (shipkey parameter) 4.3.x - SQL Injection Joomla Health & Fitness Stats Persistent XSS Joomla Health & Fitness Stats - Persistent XSS PunBB 1.3.4 & Pun_PM 1.2.6 - Remote Blind SQL Injection Exploit PunBB 1.3.4 / Pun_PM 1.2.6 - Remote Blind SQL Injection Exploit MyIT CRM - Multiple Cross-Site Scripting (XSS) MyIT CRM - Multiple Cross-Site Scripting Adobe Dreamweaver CS5 <= 11.0 build 4909 - DLL Hijacking Exploit (mfc90loc.dll) Adobe Dreamweaver CS5 11.0 build 4909 - DLL Hijacking Exploit (mfc90loc.dll) Avast! <= 5.0.594 - license files DLL Hijacking Exploit (mfc90loc.dll) Avast! 5.0.594 - (mfc90loc.dll) License Files DLL Hijacking Exploit BlogBird Platform Multiple XSS Vulnerabilities BlogBird Platform - Multiple XSS Vulnerabilities Joomla Component (btg_oglas) HTML & XSS Injection Joomla Component (btg_oglas) - HTML / XSS Injection Lotus CMS Fraise 3.0 - LFI & Remote Code Execution Exploit Lotus CMS Fraise 3.0 - LFI / Remote Code Execution Exploit Novell ZenWorks 10 & 11 - TFTPD Remote Code Execution Novell ZenWorks 10 / 11 - TFTPD Remote Code Execution CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (1) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (1) CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (2) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (2) CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (3) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (3) CA BrightStor ARCserve for Laptops & Desktops LGServer Multiple Commands Buffer Overflow CA BrightStor ARCserve for Laptops & Desktops LGServer - Multiple Commands Buffer Overflow SmarterMail 7.3 & 7.4 - Multiple Vulnerabilities SmarterMail 7.3 / 7.4 - Multiple Vulnerabilities OpenSLP 1.2.1 & < 1647 trunk - Denial of Service Exploit OpenSLP 1.2.1 / < 1647 trunk - Denial of Service Exploit ScadaTEC ModbusTagServer & ScadaPhone (.zip) Buffer Overflow Exploit (0Day) ScadaTEC ModbusTagServer & ScadaPhone - (.zip) Buffer Overflow Exploit (0Day) MARINET CMS (room.php) <= Blind SQL MARINET CMS (room.php) Blind SQL phpMyAdmin 3.3.x & 3.4.x - Local File Inclusion via XXE Injection (Metasploit) phpMyAdmin 3.3.x / 3.4.x - Local File Inclusion via XXE Injection (Metasploit) ContaoCMS (aka TYPOlight) <= 2.11 - CSRF (Delete Admin & Delete Article) ContaoCMS (aka TYPOlight) 2.11 - CSRF (Delete Admin / Delete Article) Ricoh DC Software DL-10 FTP Server (SR10.exe) <= 1.1.0.6 - Remote Buffer Overflow Ricoh DC Software DL-10 FTP Server (SR10.exe) 1.1.0.6 - Remote Buffer Overflow Simple PHP Agenda 2.2.8 - CSRF (Add Admin & Add Event) Simple PHP Agenda 2.2.8 - CSRF (Add Admin / Add Event) SumatraPDF 2.0.1 - (.chm) & (.mobi) Memory Corruption SumatraPDF 2.0.1 - (.chm / .mobi) Memory Corruption Dolibarr ERP & CRM 3 Post-Auth OS Command Injection Dolibarr ERP & CRM OS Command Injection Dolibarr ERP & CRM 3 - Post-Auth OS Command Injection Dolibarr ERP & CRM - OS Command Injection Microsoft Data Access Components (MDAC) <= 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (1) Microsoft Data Access Components (MDAC) <= 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (2) Microsoft Data Access Components (MDAC) 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (1) Microsoft Data Access Components (MDAC) 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (2) sflog! <= 1.00 - Multiple Vulnerabilities sflog! 1.00 - Multiple Vulnerabilities Inter7 vpopmail (vchkpw) <= 3.4.11 - Buffer Overflow Inter7 vpopmail (vchkpw) 3.4.11 - Buffer Overflow White Label CMS 1.5 - CSRF & Persistent XSS White Label CMS 1.5 - CSRF / Persistent XSS AIX 3.x/4.x & Windows 95/98/2000/NT 4 & SunOS 5 gethostbyname() - Buffer Overflow AIX 3.x/4.x / Windows 95/98/2000/NT 4 / SunOS 5 gethostbyname() - Buffer Overflow gdb (GNU debugger) <= 7.5.1NULL Pointer Dereference gdb (GNU debugger) 7.5.1NULL Pointer Dereference Adam Webb NukeJokes 1.7/2.0 Module Multiple Parameter XSS Adam Webb NukeJokes 1.7/2.0 - Module Multiple Parameter XSS Polycom HDX Telnet Authorization Bypass (Metasploit) Polycom HDX - Telnet Authorization Bypass (Metasploit) Joomla! <= 3.0.2 - (highlight.php) PHP Object Injection Joomla! 3.0.2 - (highlight.php) PHP Object Injection Joomla! <= 3.0.3 (remember.php) - PHP Object Injection Joomla! 3.0.3 (remember.php) - PHP Object Injection Active Auction House Default.ASP Multiple SQL Injection Active Auction House - Default.ASP Multiple SQL Injection Aenovo Multiple Unspecified Cross-Site Scripting Vulnerabilities Aenovo - Multiple Unspecified Cross-Site Scripting Vulnerabilities Alisveristr E-commerce Login Multiple SQL Injection Alisveristr E-commerce Login - Multiple SQL Injection Cline Communications Multiple SQL Injection Cline Communications - Multiple SQL Injection Andy Mack 35mm Slide Gallery 6.0 popup.php Multiple Parameter XSS Andy Mack 35mm Slide Gallery 6.0 - popup.php Multiple Parameter XSS Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 - Heap Buffer Overflow Apple Safari 6.0.1 for iOS 6.0 / OS X 10.7/8 - Heap Buffer Overflow AIOCP 1.3.x cp_forum_view.php Multiple Parameter XSS AIOCP 1.3.x - cp_forum_view.php Multiple Parameter XSS AIOCP 1.3.x cp_news.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_news.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_newsletter.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_links.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_newsletter.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_links.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_show_ec_products.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_show_ec_products.php Multiple Parameter SQL Injection 20/20 Applications Data Shed 1.0 listings.asp Multiple Parameter SQL Injection 20/20 Applications Data Shed 1.0 - listings.asp Multiple Parameter SQL Injection ClickContact Default.ASP Multiple SQL Injection ClickContact - Default.ASP Multiple SQL Injection Onpub CMS 1.4 & 1.5 - Multiple SQL Injection Onpub CMS 1.4 / 1.5 - Multiple SQL Injection Apache + PHP < 5.3.12 & < 5.4.2 - cgi-bin Remote Code Execution Exploit Apache + PHP < 5.3.12 / < 5.4.2 - cgi-bin Remote Code Execution Exploit Apache + PHP < 5.3.12 & < 5.4.2 - Remote Code Execution (Multithreaded Scanner) Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution (Multithreaded Scanner) ClientExec 3.0 Index.php Multiple Cross-Site Scripting Vulnerabilities ClientExec 3.0 - Index.php Multiple Cross-Site Scripting Vulnerabilities AbleDesign MyCalendar 2.20.3 Index.php Multiple Cross-Site Scripting Vulnerabilities AbleDesign MyCalendar 2.20.3 - Index.php Multiple Cross-Site Scripting Vulnerabilities AlstraSoft Affiliate Network Pro 8.0 merchants/index.php Multiple Parameter XSS AlstraSoft Affiliate Network Pro 8.0 - merchants/index.php Multiple Parameter XSS File(1) <= 4.13 Command File_PrintF Integer Underflow File(1) 4.13 Command File_PrintF Integer Underflow ACDSee 9.0 Photo Manager Multiple BMP Denial of Service Vulnerabilities ACDSee 9.0 Photo Manager - Multiple BMP Denial of Service Vulnerabilities Ahhp Portal Page.php Multiple Remote File Inclusion Ahhp Portal - Page.php Multiple Remote File Inclusion Apple QuickTime 7.1.5 Information Disclosure and Multiple Code Execution Vulnerabilities Apple QuickTime 7.1.5 - Information Disclosure / Multiple Code Execution Vulnerabilities OpenBase 10.0.x - (Buffer Overflow & Remote Command Execution) Multiple Vulnerabilities OpenBase 10.0.x - Buffer Overflow / Remote Command Execution AIDA Web Frame.HTML Multiple Unauthorized Access Vulnerabilities AIDA Web - Frame.HTML Multiple Unauthorized Access Vulnerabilities Absolute News Manager .NET 5.1 xlaabsolutenm.aspx Multiple Parameter SQL Injection Absolute News Manager .NET 5.1 - xlaabsolutenm.aspx Multiple Parameter SQL Injection Adobe Acrobat and Reader 8.1.1 - Multiple Arbitrary Code Execution and Security Vulnerabilities Adobe Acrobat and Reader 8.1.1 - Multiple Arbitrary Code Execution / Security Vulnerabilities Apple iPhone and iPod Touch < 2.0 - Multiple Remote Vulnerabilities Apple iPhone / Apple iPod Touch < 2.0 - Multiple Remote Vulnerabilities HPSystem Management Homepage (SMH) <= 2.1.12 - 'message.php' Cross-Site Scripting HPSystem Management Homepage (SMH) 2.1.12 - 'message.php' Cross-Site Scripting Apple iPhone 1.1.4/2.0 and iPod 1.1.4/2.0 touch Safari WebKit 'alert()' Function Remote Denial of Service Apple iPhone 1.1.4/2.0 and iPod 1.1.4/2.0 touch Safari WebKit - 'alert()' Function Remote Denial of Service 3Com Wireless 8760 Dual-Radio 11a/b/g PoE Multiple Security Vulnerabilities 3Com Wireless 8760 Dual-Radio 11a/b/g PoE - Multiple Security Vulnerabilities AlmondSoft Multiple Classifieds Products index.php replid Parameter SQL Injection AlmondSoft Multiple Classifieds Products index.php Multiple Parameter XSS AlmondSoft Multiple Classifieds Products - index.php replid Parameter SQL Injection AlmondSoft Multiple Classifieds Products - index.php Multiple Parameter XSS Linux Kernel 2.6.x (2.6.0 <= 2.6.31) - 'pipe.c' Local Privilege Escalation (1) Linux Kernel 2.6.0 <= 2.6.31 - 'pipe.c' Local Privilege Escalation (1) CMS Source Multiple Input Validation Vulnerabilities CMS Source - Multiple Input Validation Vulnerabilities 123 Flash Chat = Multiple Security Vulnerabilities 123 Flash Chat - Multiple Security Vulnerabilities Pimcore 3.0 & 2.3.0 CMS - SQL Injection Pimcore 3.0 / 2.3.0 CMS - SQL Injection Apple Mac OS X 10.6.5 And iOS 4.3.3 Mail Denial of Service Apple Mac OS X 10.6.5 / iOS 4.3.3 Mail - Denial of Service CmyDocument Multiple Cross-Site Scripting Vulnerabilities CmyDocument - Multiple Cross-Site Scripting Vulnerabilities OTRS < 3.1.x & < 3.2.x & < 3.3.x - Stored Cross-Site Scripting (XSS) OTRS < 3.1.x / < 3.2.x / < 3.3.x - Stored Cross-Site Scripting OYO File Manager 1.1 (iOS & Android) - Multiple Vulnerabilities OYO File Manager 1.1 (iOS / Android) - Multiple Vulnerabilities Airdroid iOS_ Android & Win 3.1.3 - Persistent Airdroid iOS / Android / Win 3.1.3 - Persistent SMF (Simple Machine Forum) <= 2.0.10 - Remote Memory Exfiltration Exploit SMF (Simple Machine Forum) 2.0.10 - Remote Memory Exfiltration Exploit Air Drive Plus Multiple Input Vallidation Vulnerabilities Air Drive Plus - Multiple Input Vallidation Vulnerabilities Collabtive Multiple Security Vulnerabilities Collabtive - Multiple Security Vulnerabilities Open Upload 0.4.2 - (Add Admin) CSRF Wireshark 1.12.0 to 1.12.12 - NDS Dissector Denial of Service Wireshark 2.0.0 to 2.0.4 - MMSE_ WAP_ WBXML_ and WSP Dissectors Denial of Service Wireshark 2.0.0 to 2.0.4 - CORBA IDL Dissectors Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - PacketBB Dissector Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - WSP Dissector Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - RLC Dissector Denial of Service	2016-08-03 05:06:13 +00:00
Offensive Security	1b40ae09d7	DB: 2016-08-02 ... 4 new exploits ProFTPD 1.2.7 < 1.2.9rc2 - Remote Root & brute-force Exploit ProFTPD 1.2.7 < 1.2.9rc2 - Remote Root / brute-force Exploit Linux Kernel 2.4.23 / <= 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (1) Linux Kernel 2.4.23 / <= 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (2) Linux Kernel 2.4.23 / 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (1) Linux Kernel 2.4.23 / 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (2) Linux Kernel 2.4.23 / <= 2.6.0 - 'do_mremap()' Bound Checking Local Root Exploit (3) Linux Kernel 2.4.23 / 2.6.0 - 'do_mremap()' Bound Checking Local Root Exploit (3) Linux Kernel 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Validator (Proof of Concept) (1) Linux Kernel 2.2.25 / 2.4.24 / 2.6.2 - 'mremap()' Validator (Proof of Concept) (1) Linux Kernel 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Local Root Exploit (2) Linux Kernel 2.2.25 / 2.4.24 / 2.6.2 - 'mremap()' Local Root Exploit (2) Symantec Multiple Firewall DNS Response Denial of Service Symantec Multiple Firewall - DNS Response Denial of Service Lexmark Multiple HTTP Servers Denial of Service Lexmark Multiple HTTP Servers - Denial of Service BadBlue 2.52 Web Server Multiple Connections Denial of Service Exploit BadBlue 2.52 Web Server - Multiple Connections Denial of Service Exploit Linux Kernel 2.4.28 / <= 2.6.9 - scm_send Local DoS Exploit Linux Kernel 2.4.28 / 2.6.9 - scm_send Local DoS Exploit Linux Kernel 2.6.9 / <= 2.4.28 - vc_resize int Local Overflow Exploit Linux Kernel 2.6.9 / <= 2.4.28 - Memory Leak Local DoS Linux Kernel 2.6.9 / <= 2.4.28 - ip_options_get Local Overflow Linux Kernel 2.4.28 / 2.6.9 - vc_resize int Local Overflow Exploit Linux Kernel 2.4.28 / 2.6.9 - Memory Leak Local DoS Linux Kernel 2.4.28 / 2.6.9 - ip_options_get Local Overflow Linux Kernel 2.6.9 / <= 2.6.11 (RHEL4) - 'k-rad3.c' (CPL 0) Local Root Exploit Linux Kernel 2.6.9 / 2.6.11 (RHEL4) - 'k-rad3.c' (CPL 0) Local Root Exploit WebWiz Products 1.0 / <= 3.06 - Login Bypass SQL Injection Exploits WebWiz Products 1.0 / 3.06 - Login Bypass SQL Injection Exploits Mambo 4.5.3 & Joomla 1.0.7 - (feed) Path Disclosure and Denial of Service Exploit Mambo 4.5.3 & Joomla 1.0.7 - (feed) Path Disclosure / Denial of Service Exploit Fast Click 1.1.3 / <= 2.3.8 - (show.php) Remote File Inclusion Exploit Fast Click 1.1.3 / 2.3.8 - (show.php) Remote File Inclusion Exploit Newsscript 0.5 - Remote and Local File Inclusion Newsscript 0.5 - Remote File Inclusion / Local File Inclusion Invision Gallery 2.0.7 ReadFile() & SQL Injection Exploit (linux) Invision Gallery 2.0.7 ReadFile() & SQL Injection Exploit (Linux) X-Cart ? Multiple Remote File Inclusion X-Cart - Multiple Remote File Inclusion Rayzz Script 2.0 - Remote / Local File Inclusion Rayzz Script 2.0 - Remote File Inclusion / Local File Inclusion QuickTime 7.4.1 QTPlugin.ocx Multiple Stack Overflow Vulnerabilities QuickTime 7.4.1 - QTPlugin.ocx Multiple Stack Overflow Vulnerabilities LookStrike Lan Manager 0.9 - Remote / Local File Inclusion LookStrike Lan Manager 0.9 - Remote File Inclusion / Local File Inclusion CMS WebManager-Pro Multiple SQL Injection CMS WebManager-Pro - Multiple SQL Injection Facil-CMS 0.1RC Multiple Local File Inclusion Facil-CMS 0.1RC - Multiple Local File Inclusion Bea Weblogic Apache Connector - Code Execution and Denial of Service Exploit Bea Weblogic Apache Connector - Code Execution / Denial of Service Exploit Nuked-klaN 1.7.7 / <= SP4.4 - Multiple Vulnerabilities Nuked-klaN 1.7.7 / SP4.4 - Multiple Vulnerabilities CafeEngine Multiple SQL Injection CafeEngine - Multiple SQL Injection A-Link WL54AP3 and WL54AP2 - CSRF + XSS A-Link WL54AP3 and WL54AP2 - CSRF / XSS GS Real Estate Portal Multiple SQL Injection GS Real Estate Portal - Multiple SQL Injection FloSites Blog Multiple SQL Injection FloSites Blog - Multiple SQL Injection ASP PORTAL Multiple SQL Injection ASP PORTAL - Multiple SQL Injection Simple Machines Forum 1.0.13 / <= 1.1.5 - 'Destroyer 0.1' Password Reset Security Bypass Simple Machines Forum 1.0.13 / 1.1.5 - 'Destroyer 0.1' Password Reset Security Bypass Pligg 9.9.5 - CSRF Protection Bypass and Captcha Bypass Pligg 9.9.5 - CSRF Protection Bypass / Captcha Bypass Demium CMS 0.2.1b - Multiple Vulnerabilities and Exploit Demium CMS 0.2.1b - Multiple Vulnerabilities Linux Kernel 2.6.20 / <= 2.6.24 / <= 2.6.27_7-10 (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit Linux Kernel 2.6.20 / 2.6.24 / 2.6.27_7-10 (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit AudioPLUS 2.00.215 - (.lst & .m3u) Local Buffer Overflow (seh) AudioPLUS 2.00.215 - (.lst & .m3u) Local Buffer Overflow (SEH) Linux Kernel 2.6.24_16-23 / <= 2.6.28.3 (Ubuntu 8.04/8.10 / Fedora Core 10 x86_64) - set_selection() UTF-8 Off By One Local Exploit Linux Kernel 2.6.24_16-23 / 2.6.28.3 (Ubuntu 8.04/8.10 / Fedora Core 10 x86_64) - set_selection() UTF-8 Off By One Local Exploit jetty 6.x < 7.x - XSS & Information Disclosure & Injection jetty 6.x < 7.x - XSS / Information Disclosure / Injection OpenDocMan 1.2.5 - XSS & SQL injection OpenDocMan 1.2.5 - XSS / SQL injection Alteon OS BBI (Nortell) - (XSS and CSR) Multiple Vulnerabilities Alteon OS BBI (Nortell) - XSS / CSR Micronet SP1910 Data Access Controller UI XSS & HTML Code Injection Micronet SP1910 Data Access Controller UI - XSS / HTML Code Injection Kide Shoutbox 0.4.6 - XSS & AXFR Kide Shoutbox 0.4.6 - XSS / AXFR PHP-Nuke 8.0 - XSS & HTML Code Injection in News Module PHP-Nuke 8.0 - XSS / HTML Code Injection in News Module Invision Power Board 3.0.4 / <= 3.0.4 / <= 2.3.6 - LFI / SQL Injection Invision Power Board 3.0.4 / 3.0.4 / 2.3.6 - LFI / SQL Injection oBlog - Persistant XSS & CSRF & Admin Bruteforce oBlog - Persistant XSS / CSRF / Admin Bruteforce WP-Forum 2.3 - SQL Injection & Blind SQL Injection WP-Forum 2.3 - SQL Injection / Blind SQL Injection QuickEStore 7.9 - SQL Injection and Path Diclosure Download QuickEStore 7.9 - SQL Injection / Path Diclosure Download dotProject 2.1.3 - XSS and Improper Permissions dotProject 2.1.3 - XSS / Improper Permissions MOJO's IWms 7 SQL Injection & Cross-Site Scripting MOJO's IWms 7 - SQL Injection / Cross-Site Scripting Cisco Collaboration Server 5 - XSS & Source Code Disclosure Cisco Collaboration Server 5 - XSS / Source Code Disclosure cPanel Multiple CSRF Vulnerabilities cPanel - Multiple CSRF Vulnerabilities (Tod Miller's) Sudo/SudoEdit <= 1.6.9p21 / <= 1.7.2p4 - Local Root Exploit (Tod Miller's) Sudo/SudoEdit 1.6.9p21 / 1.7.2p4 - Local Root Exploit SiteDone Custom Edition 2.0 - SQL Injection & XSS SiteDone Custom Edition 2.0 - SQL Injection / XSS TSOKA:CMS 1.1 & 1.9 & 2.0 - SQL Injection & XSS TSOKA:CMS 1.1 & 1.9 & 2.0 - SQL Injection / XSS Centreon IT & Network Monitoring 2.1.5 - Injection SQL Centreon IT & Network Monitoring 2.1.5 - SQL Injection ilchClan 1.0.5 - (cid) SQL Injection & Exploit ilchClan 1.0.5 - (cid) SQL Injection joelz bulletin board 0.9.9rc3 - Multiple SQL Injection & Exploit joelz bulletin board 0.9.9rc3 - Multiple SQL Injection 2DayBiz Advanced Poll Script - XSS and Authentication Bypass 2DayBiz Advanced Poll Script - XSS / Authentication Bypass Socialware 2.2 - Upload and XSS Socialware 2.2 - Upload / XSS Waibrasil Remote / Local File Inclusion Waibrasil - Remote File Inclusion / Local File Inclusion I-Vision CMS - XSS & SQL Injection I-Vision CMS - XSS / SQL Injection phpMyAdmin 2.6.3-pl1 - Cross-Site Scripting and Full Path phpMyAdmin 2.6.3-pl1 - Cross-Site Scripting / Full Path 3Com* iMC (Intelligent Management Center) - Various XSS and Information Disclosure Flaws 3Com* iMC (Intelligent Management Center) - XSS / Information Disclosure Flaws WmsCMS - XSS & SQL Injection iScripts eSwap 2.0 - SQLi and XSS WmsCMS - XSS / SQL Injection iScripts eSwap 2.0 - SQLi / XSS reVou Twitter Clone 2.0 Beta - SQL Injection and XSS JForum 2.1.8 bookmarks CSRF & XSS reVou Twitter Clone 2.0 Beta - SQL Injection / XSS JForum 2.1.8 bookmarks CSRF / XSS eLms Pro - SQLi and XSS PGAUTOPro - SQLi and XSS eLms Pro - SQLi / XSS PGAUTOPro - SQLi / XSS Joomla 1.5 Jreservation Component - SQLi And XSS Joomla 1.5 Jreservation Component - SQLi / XSS Science Fair In A Box - SQLi & XSS Science Fair In A Box - SQLi / XSS PHP Property Rental Script - SQLi & XSS PHP Property Rental Script - SQLi / XSS SchoolMation 2.3 - SQLi and XSS SchoolMation 2.3 - SQLi / XSS UTStats - XSS & SQL Injection & Full path disclosure UTStats - XSS / SQL Injection / Full path disclosure SimpleAssets Authentication Bypass & XSS SimpleAssets Authentication Bypass / XSS InterScan Web Security 5.0 - Arbitrary File Upload & Local Privilege Escalation InterScan Web Security 5.0 - Arbitrary File Upload / Local Privilege Escalation ARSC Really Simple Chat 3.3 - Remote File Inclusion & XSS ARSC Really Simple Chat 3.3 - Remote File Inclusion / XSS Pre Multi-Vendor Shopping Malls SQL Injection & Auth Bypass Pre Multi-Vendor Shopping Malls SQL Injection / Auth Bypass Zylone IT Multiple Blind SQL Injection Zylone IT - Multiple Blind SQL Injection vBulletin 3.8.4 & 3.8.5 Registration Bypass vBulletin 3.8.4 / 3.8.5 Registration Bypass JaWiki 'versionNo' Parameter Cross Site Scripting JaWiki 'versionNo' Parameter Cross-Site Scripting 411cc Multiple SQL Injection 411cc - Multiple SQL Injection MantisBT 1.2.3 (db_type) - Cross-Site Scripting & Path Disclosure MantisBT 1.2.3 (db_type) - Cross-Site Scripting / Path Disclosure OpenEMR 3.2.0 - SQL Injection and XSS OpenEMR 3.2.0 - SQL Injection / XSS F3Site 2011 alfa 1 - (XSS & CSRF) Multiple Vulnerabilities phpMySport 1.4 - (SQLi & Auth Bypass & Path Disclosure) Multiple Vulnerabilities F3Site 2011 alfa 1 - (XSS / CSRF) Multiple Vulnerabilities phpMySport 1.4 - SQLi / Auth Bypass / Path Disclosure WordPress Plugin BackWPup - Remote and Local Code Execution WordPress Plugin BackWPup - Remote Code Execution /Local Code Execution Planex Mini-300PU & Mini100s Cross-Site Scripting Planex Mini-300PU & Mini100s - Cross-Site Scripting TinyBB 1.4 - Blind SQL Injection and Path Disclosure TinyBB 1.4 - Blind SQL Injection / Path Disclosure Linux Kernel 2.6.28 / <= 3.0 (DEC Alpha Linux) - Local Root Exploit Linux Kernel 2.6.28 / 3.0 (DEC Alpha Linux) - Local Root Exploit If-CMS 2.07 - Pre-Auth Local File Inclusion Exploit (Metasploit) (2) If-CMS 2.07 - Pre-Auth Local File Inclusion Exploit (Metasploit) (2) Webcat Multiple Blind SQL Injection Webcat - Multiple Blind SQL Injection Banana Dance CMS and Wiki SQL Injection Banana Dance CMS and Wiki - SQL Injection SMF 2.0.1 - SQL Injection & Privilege Escalation SMF 2.0.1 - SQL Injection / Privilege Escalation Linux/x86 - Polymorphic Shellcode setuid(0) + setgid(0) + add user _iph_ without password to /etc/passwd Linux/x86 - Polymorphic Shellcode setuid(0) + setgid(0) + add user _iph_ without password to /etc/passwd Apache Struts Multiple Persistent Cross-Site Scripting Vulnerabilities Apache Struts - Multiple Persistent Cross-Site Scripting Vulnerabilities phpList 2.10.17 - SQL Injection and XSS phpList 2.10.17 - SQL Injection / XSS vBshop Multiple Persistent XSS Vulnerabilities vBshop - Multiple Persistent XSS Vulnerabilities ArticleSetup Multiple Persistence Cross-Site Scripting and SQL Injection ArticleSetup - Multiple Persistence Cross-Site Scripting / SQL Injection Serendipity 1.6 - Backend XSS And SQLi Serendipity 1.6 - Backend XSS / SQLi Wireshark Multiple Dissector Denial of Service Vulnerabilities Wireshark - Multiple Dissector Denial of Service Vulnerabilities Useresponse 1.0.2 - Privilege Escalation & RCE Exploit Useresponse 1.0.2 - Privilege Escalation / RCE Exploit Linux Kernel 2.2/2.3 / Debian Linux 2.1 / RedHat Linux 6.0 / S.u.S.E. Linux 6.1 - IP Options Linux Kernel 2.2 / 2.3 / Debian Linux 2.1 / RedHat Linux 6.0 / S.u.S.E. Linux 6.1 - IP Options AlienVault OSSIM 3.1 - Reflected XSS and Blind SQL Injection Spiceworks 5.3.75941 - Stored XSS and Post-Auth SQL Injection AlienVault OSSIM 3.1 - Reflected XSS / Blind SQL Injection Spiceworks 5.3.75941 - Stored XSS / Post-Auth SQL Injection T-dah Webmail CSRF & Stored XSS T-dah Webmail - CSRF / Stored XSS XODA Document Management System 0.4.5 - XSS & Arbitrary File Upload XODA Document Management System 0.4.5 - XSS / Arbitrary File Upload WireShark 1.8.2 & 1.6.0 - Buffer Overflow PoC (0Day) WireShark 1.8.2 / 1.6.0 - Buffer Overflow PoC (0Day) businesswiki 2.5rc3 - Stored XSS & arbitrary file upload businesswiki 2.5rc3 - Stored XSS / arbitrary file upload SpyNet 6.5 Chat Server Multiple Connection Denial of Service SpyNet 6.5 Chat Server - Multiple Connection Denial of Service Exploit: NCMedia Sound Editor Pro 7.5.1 - (SEH + DEP Bypass) NCMedia Sound Editor Pro 7.5.1 - (SEH + DEP Bypass) Mozilla Bonsai Multiple Cross-Site Scripting Vulnerabilities Mozilla Bonsai - Multiple Cross-Site Scripting Vulnerabilities airVisionNVR 1.1.13 readfile() Disclosure and SQL Injection airVisionNVR 1.1.13 - readfile() Disclosure / SQL Injection BRS WebWeaver 1.0 4 POST and HEAD Denial of Service BRS WebWeaver 1.0 4 - POST and HEAD Denial of Service Caucho Resin 2.0/2.1 - Multiple HTML Injection and Cross-Site Scripting Vulnerabilities Caucho Resin 2.0/2.1 - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities MyDms 1.4 - SQL Injection And Directory Traversal MyDms 1.4 - SQL Injection / Directory Traversal D-Link DIR-600 and DIR-300 - (rev B) Multiple Vulnerabilities D-Link DIR-600 and DIR-300 (rev B) - Multiple Vulnerabilities D'Link DIR-615 Hardware rev D3 / DIR-300 - Hardware rev A Multiple Vulnerabilities D'Link DIR-615 Hardware rev D3 / DIR-300 Hardware rev A - Multiple Vulnerabilities Linux Kernel 2.6.x (RHEL4 <= 2.6.9 / <= 2.6.11) - SYS_EPoll_Wait Local Integer Overflow Local Root (2) Linux Kernel 2.6.9 /2.6.11 (RHEL4) - SYS_EPoll_Wait Local Integer Overflow Local Root (2) Linux Kernel 2.4.30 / <= 2.6.11.5 - Bluetooth bluez_sock_create Local Root Linux Kernel 2.4.30 / 2.6.11.5 - Bluetooth bluez_sock_create Local Root CKEditor < 4.1 - Persistent XSS WYSIWYG module Drupal 6.x & 7.x CKEditor < 4.1WYSIWYG module Drupal 6.x & 7.x - Persistent XSS OSTicket 1.2/1.3 - Multiple Input Validation and Remote Code Injection Vulnerabilities OSTicket 1.2/1.3 - Multiple Input Validation / Remote Code Injection Vulnerabilities Calendarix 0.8.20071118 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities MyBB - Multiple Cross-Site Scripting and SQL Injection Calendarix 0.8.20071118 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities MyBB - Multiple Cross-Site Scripting / SQL Injection YaPiG 0.9x - Remote and Local File Inclusion YaPiG 0.9x - Remote File Inclusion / Local File Inclusion ATutor 1.4.3 tile.php Multiple Parameter XSS ATutor 1.4.3 - tile.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 menu_footer.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - menu_footer.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 menu_header.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 menu_tema.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - menu_header.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - menu_tema.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 reply.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - reply.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 new.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 edit_msg.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - new.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 - edit_msg.php Multiple Parameter XSS CarLine Forum Russian Board 4.2 reply_in.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 - reply_in.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 memory.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 line.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 in.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 enter.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 - memory.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 - line.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 - in.php Multiple Parameter SQL Injection CarLine Forum Russian Board 4.2 - enter.php Multiple Parameter SQL Injection ASPNuke 0.80 register.asp Multiple Parameter XSS ASPNuke 0.80 - register.asp Multiple Parameter XSS Binary Board System 0.2.5 reply.pl Multiple Parameter XSS Binary Board System 0.2.5 stats.pl Multiple Parameter XSS Binary Board System 0.2.5 - reply.pl Multiple Parameter XSS Binary Board System 0.2.5 - stats.pl Multiple Parameter XSS ZixForum 1.12 Forum.ASP Multiple SQL Injection ZixForum 1.12 - Forum.ASP Multiple SQL Injection QNX 6.2/6.3 - Multiple Local Privilege Escalation and Denial of Service Vulnerabilities QNX 6.2/6.3 - Multiple Local Privilege Escalation / Denial of Service Vulnerabilities Web-APP.net WebAPP 0.9.x index.cgi Multiple Parameter XSS Web-APP.net WebAPP 0.9.x - index.cgi Multiple Parameter XSS IntelliLink Pro 5.06 edit.cgi Multiple Parameter XSS IntelliLink Pro 5.06 - edit.cgi Multiple Parameter XSS xFlow 5.46.11 index.cgi Multiple Parameter SQL Injection xFlow 5.46.11 index.cgi Multiple Parameter XSS xFlow 5.46.11 - index.cgi Multiple Parameter SQL Injection xFlow 5.46.11 - index.cgi Multiple Parameter XSS zenphoto 0.9/1.0 index.php Multiple Parameter XSS zenphoto 0.9/1.0 - index.php Multiple Parameter XSS ATutor 1.5.x create_course.php Multiple Parameter XSS ATutor 1.5.x - create_course.php Multiple Parameter XSS BlaBla 4U Multiple Cross-Site Scripting Vulnerabilities BlaBla 4U - Multiple Cross-Site Scripting Vulnerabilities Apache HTTP Server 1.3.35 / <= 2.0.58 / <= 2.2.2 - Arbitrary HTTP Request Headers Security Weakness Apache HTTP Server 1.3.35 / 2.0.58 / 2.2.2 - Arbitrary HTTP Request Headers Security Weakness WWWThreads 5.4 Cat Parameter Multiple Cross-Site Scripting Vulnerabilities WWWThreads 5.4 - Cat Parameter Multiple Cross-Site Scripting Vulnerabilities AckerTodo 4.2 Login.php Multiple SQL Injection AckerTodo 4.2 - Login.php Multiple SQL Injection ac4p Mobile index.php Multiple Parameter XSS ac4p Mobile MobileNews.php Multiple Parameter XSS ac4p Mobile - index.php Multiple Parameter XSS ac4p Mobile - MobileNews.php Multiple Parameter XSS ac4p Mobile up.php Multiple Parameter XSS ac4p Mobile - up.php Multiple Parameter XSS AShop Deluxe 4.5 ashop/catalogue.php Multiple Parameter XSS AShop Deluxe 4.5 - ashop/catalogue.php Multiple Parameter XSS AShop Deluxe 4.5 shipping.php Multiple Parameter XSS AShop Deluxe 4.5 - shipping.php Multiple Parameter XSS 212cafeBoard Multiple Cross-Site Scripting Vulnerabilities 212cafeBoard - Multiple Cross-Site Scripting Vulnerabilities Coppermine Photo Gallery 1.4.10 - Multiple Remote And Local File Inclusion Coppermine Photo Gallery 1.4.10 - Multiple Remote File Inclusion / Local File Inclusion Atom PhotoBlog 1.0.1/1.0.9AtomPhotoBlog.php Multiple Input Validation Vulnerabilities Atom PhotoBlog 1.0.1/1.0.9 - AtomPhotoBlog.php Multiple Input Validation Vulnerabilities PHP-Nuke 8.0.3.3b - SQL Injection Protection Bypass and Multiple SQL Injection PHP-Nuke 8.0.3.3b - SQL Injection Protection Bypass / Multiple SQL Injection WordPress Plugin DZS Video Gallery 3.1.3 - Remote and Local File Disclosure WordPress Plugin DZS Video Gallery 3.1.3 - Remote File Disclosure / Local File Disclosure ACG News 1.0 index.php Multiple SQL Injection ACG News 1.0 - index.php Multiple SQL Injection Add a link 4 - Security Bypass and SQL Injection Add a link 4 - Security Bypass / SQL Injection AlienVault OSSIM SQL Injection and Remote Code Execution AlienVault OSSIM - SQL Injection / Remote Code Execution bttlxe Forum 2.0 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities bttlxe Forum 2.0 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities Neuron News 1.0 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities Neuron News 1.0 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities Clever Copy 3.0 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities Clever Copy 3.0 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities Cells Blog 3.3 - XSS Reflected & Blind SQLite Injection Cells Blog 3.3 - XSS Reflected / Blind SQLite Injection ProjectPier 0.8 - Multiple HTML Injection and Cross-Site Scripting Vulnerabilities ProjectPier 0.8 - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities MyBlog 1.x - SQL Injection and Remote File Inclusion MyBlog 1.x - SQL Injection / Remote File Inclusion PHP Classifieds 6.20 - Multiple Cross-Site Scripting and Authentication Bypass Vulnerabilities PHP Classifieds 6.20 - Multiple Cross-Site Scripting / Authentication Bypass Vulnerabilities Kloxo - SQL Injection and Remote Code Execution Kloxo - SQL Injection / Remote Code Execution PHP Address Book 3.1.5 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities PHP Address Book 3.1.5 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting and Arbitrary File Upload GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting / Arbitrary File Upload couponPHP CMS 1.0 - Multiple Stored XSS and SQL Injection couponPHP CMS 1.0 - Multiple Stored XSS / SQL Injection EasyDynamicPages 3.0 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities EasyPublish 3.0 - 'read' Parameter Multiple SQL Injection and Cross-Site Vulnerabilities EasyDynamicPages 3.0 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities EasyPublish 3.0 - 'read' Parameter Multiple SQL Injection / Cross-Site Scripting EasyE-Cards 3.10 - (SQL Injection and Cross-Site Scripting) Multiple Vulnerabilities EasyE-Cards 3.10 - (SQL Injection / Cross-Site Scripting) Multiple Vulnerabilities dotProject 2.1.2 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities dotProject 2.1.2 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities @Mail 5.42 and @Mail WebMail 5.0.5 - Multiple Cross-Site Scripting Vulnerabilities @Mail 5.42 and @Mail WebMail 5.0.5 - Multiple Cross-Site Scripting DHCart 3.84 - Multiple Cross-Site Scripting And HTML Injection Vulnerabilities DHCart 3.84 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities KDE Konqueror 4.1 - Multiple Cross-Site Scripting and Denial of Service Vulnerabilities KDE Konqueror 4.1 - Multiple Cross-Site Scripting / Denial of Service Vulnerabilities 4CMS - SQL Injection and Local File Inclusion 4CMS - SQL Injection / Local File Inclusion PTCeffect 4.6 - LFI & SQL Injection PTCeffect 4.6 - LFI / SQL Injection 010 Editor 3.0.4 File Parsing Multiple Buffer Overflow Vulnerabilities 010 Editor 3.0.4 - File Parsing Multiple Buffer Overflow Vulnerabilities DWebPro 6.8.26 - Directory Traversal and Arbitrary File Disclosure DWebPro 6.8.26 - Directory Traversal / Arbitrary File Disclosure Kingsoft Webshield 1.1.0.62 - Cross-Site scripting and Remote Command Execution Kingsoft Webshield 1.1.0.62 - Cross-Site scripting / Remote Command Execution LxBlog Multiple Cross-Site Scripting and SQL Injection LxBlog Multiple Cross-Site Scripting / SQL Injection Joomla! < 1.5.11 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Joomla! < 1.5.11 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities PhotoPost PHP 3.3.1 - 'cat' Parameter Cross-Site Scripting and SQL Injection PhotoPost PHP 3.3.1 - 'cat' Parameter Cross-Site Scripting / SQL Injection Natychmiast CMS - Multiple Cross-Site Scripting and SQL Injection Natychmiast CMS - Multiple Cross-Site Scripting / SQL Injection e107 0.7.x - ('CAPTCHA' Security Bypass and Cross-Site Scripting) Multiple Vulnerabilities e107 0.7.x - ('CAPTCHA' Security Bypass / Cross-Site Scripting) Multiple Vulnerabilities Achievo 1.x - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Dream Poll 3.1 - 'index.php' Cross-Site Scripting and SQL Injection Achievo 1.x - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Dream Poll 3.1 - 'index.php' Cross-Site Scripting / SQL Injection Pentaho BI 1.x - Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities Pentaho BI 1.x - Multiple Cross-Site Scripting / Information Disclosure Vulnerabilities Oracle E-Business Suite 11i Multiple Remote Vulnerabilities Oracle E-Business Suite 11i - Multiple Remote Vulnerabilities Photokorn 1.542 - Cross-Site Scripting and Remote File Inclusion Photokorn 1.542 - Cross-Site Scripting / Remote File Inclusion dotProject 2.1.3 - Multiple SQL Injection and HTML Injection Vulnerabilities dotProject 2.1.3 - Multiple SQL Injection / HTML Injection Vulnerabilities Linux Kernel 3.2.0-23 / <= 3.5.0-23 (Ubuntu 12.04/12.04.1/12.04.2 x64) - 'perf_swevent_init' Local Root Exploit (3) Linux Kernel 3.2.0-23 / 3.5.0-23 (Ubuntu 12.04/12.04.1/12.04.2 x64) - 'perf_swevent_init' Local Root Exploit (3) Kempt SiteDone 2.0 - 'detail.php' Cross-Site Scripting and SQL Injection Kempt SiteDone 2.0 - 'detail.php' Cross-Site Scripting / SQL Injection Lunar CMS 3.3 - CSRF And Stored XSS Lunar CMS 3.3 - CSRF / Stored XSS NovaSTOR NovaNET 11.0 - Remote DoS and arbitrary memory read NovaSTOR NovaNET 11.0 - Remote DoS / arbitrary memory read NolaPro Enterprise 4.0.5538 - Cross-Site Scripting and SQL Injection NolaPro Enterprise 4.0.5538 - Cross-Site Scripting / SQL Injection Lisk CMS 4.4 - 'id' Parameter Multiple Cross-Site Scripting and SQL Injection Lisk CMS 4.4 - 'id' Parameter Multiple Cross-Site Scripting / SQL Injection Omeka 2.2 - CSRF And Stored XSS Omeka 2.2 - CSRF / Stored XSS Oxwall 1.7.0 - Multiple CSRF And HTML Injection Vulnerabilities Oxwall 1.7.0 - Multiple CSRF / HTML Injection Vulnerabilities SkaDate Lite 2.0 - Multiple CSRF And Persistent XSS Vulnerabilities SkaDate Lite 2.0 - Multiple CSRF / Persistent XSS Vulnerabilities Disqus for WordPress 2.7.5 - Admin Stored CSRF and XSS Disqus for WordPress 2.7.5 - Admin Stored CSRF / XSS PacketVideo Twonky Server 4.4.17/5.0.65 - Cross-Site Scripting and HTML Injection Vulnerabilities PacketVideo Twonky Server 4.4.17/5.0.65 - Cross-Site Scripting / HTML Injection Vulnerabilities Cetera eCommerce Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Cetera eCommerce - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Allinta CMS 22.07.2010 - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities Allinta CMS 22.07.2010 - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities Nagios XI Multiple Cross-Site Request Forgery Vulnerabilities Nagios XI 0 Multiple Cross-Site Request Forgery Vulnerabilities JBoard Multiple Cross-Site Scripting and SQL Injection JBoard Multiple Cross-Site Scripting / SQL Injection ServletExec - (Directory Traversal and Authentication-Bypass) Multiple Vulnerabilities ServletExec - (Directory Traversal / Authentication-Bypass) Multiple Vulnerabilities 123 Flash Chat Multiple Security Vulnerabilities 123 Flash Chat = Multiple Security Vulnerabilities CompuCMS - Multiple SQL Injection and Cross-Site Scripting Vulnerabilities CompuCMS - Multiple SQL Injection / Cross-Site Scripting Vulnerabilities Briefcase 4.0 iOS - Code Execution & File Include Briefcase 4.0 iOS - Code Execution / File Include Million Dollar Pixel Ads Cross-Site Scripting and SQL Injection Million Dollar Pixel Ads Cross-Site Scripting / SQL Injection PluXml 5.0.1 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities PluXml 5.0.1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities AdvertisementManager 3.1 - 'req' Parameter Local and Remote File Inclusion AdvertisementManager 3.1 - 'req' Parameter Local File Inclusion / Remote File Inclusion CMS WebManager-Pro 7.4.3 - Cross-Site Scripting and SQL Injection CMS WebManager-Pro 7.4.3 - Cross-Site Scripting / SQL Injection Centreon SQL and Command Injection Centreon - SQL Injection / Command Injection net2ftp 0.98 - (stable) 'admin1.template.php' Local and Remote File Inclusion net2ftp 0.98 - (stable) 'admin1.template.php' Local File Inclusion / Remote File Inclusion PHP TopSites 2.1 - 'rate.php' Cross-Site Scripting and SQL Injection PHP TopSites 2.1 - 'rate.php' Cross-Site Scripting / SQL Injection BLOG:CMS 4.2.1 e Multiple HTML Injection and Cross-Site Scripting Vulnerabilities BLOG:CMS 4.2.1 e - Multiple HTML Injection / Cross-Site Scripting Modx CMS 2.2.14 - CSRF Bypass & Reflected XSS & Stored XSS Modx CMS 2.2.14 - CSRF Bypass / Reflected XSS / Stored XSS BlogEngine.NET 1.6 - Directory Traversal and Information Disclosure BlogEngine.NET 1.6 - Directory Traversal / Information Disclosure TinyWebGallery 1.8.3 - Cross-Site Scripting and Local File Inclusion TinyWebGallery 1.8.3 - Cross-Site Scripting / Local File Inclusion Batavi 1.0 - Multiple Local File Inclusion and Cross-Site Scripting Vulnerabilities Batavi 1.0 - Multiple Local File Inclusion / Cross-Site Scripting Vulnerabilities 1 Flash Gallery WordPress Plugin 0.2.5 - Cross-Site Scripting and SQL Injection 1 Flash Gallery WordPress Plugin 0.2.5 - Cross-Site Scripting / SQL Injection CosmoShop 10.05.00 - Multiple Cross-Site Scripting and SQL Injection CosmoShop 10.05.00 - Multiple Cross-Site Scripting / SQL Injection Anantasoft Gazelle CMS 1.0 - Cross-Site Scripting and SQL Injection Anantasoft Gazelle CMS 1.0 - Cross-Site Scripting / SQL Injection Online store php script Multiple Cross-Site Scripting and SQL Injection Online store php script Multiple Cross-Site Scripting / SQL Injection Ripe Website Manager 1.1 - Cross-Site Scripting and Multiple SQL Injection Ripe Website Manager 1.1 - Cross-Site Scripting / Multiple SQL Injection Cetera eCommerce Multiple Cross-Site Scripting and SQL Injection Cetera eCommerce Multiple Cross-Site Scripting / SQL Injection osCSS 2.1 - Cross-Site Scripting and Multiple Local File Inclusion osCSS 2.1 - Cross-Site Scripting / Multiple Local File Inclusion CIK Telecom VoIP router SVG6000RW - Privilege Escalation and Command Execution CIK Telecom VoIP router SVG6000RW - Privilege Escalation / Command Execution Spellchecker Plugin 3.1 for WordPress - 'general.php' Local and Remote File Inclusion Spellchecker Plugin 3.1 for WordPress - 'general.php' Local File Inclusion / Remote File Inclusion PhoenixCMS 1.7 - Local File Inclusion and SQL Injection PhoenixCMS 1.7 - Local File Inclusion / SQL Injection 4Images 1.7.9 - Multiple Remote File Inclusion and SQL Injection 4Images 1.7.9 - Multiple Remote File Inclusions / SQL Injection Sermon Browser WordPress Plugin 0.43 - Cross-Site Scripting and SQL Injection Sermon Browser WordPress Plugin 0.43 - Cross-Site Scripting / SQL Injection Nuke Evolution Xtreme 2.0 - Local File Inclusion and SQL Injection Nuke Evolution Xtreme 2.0 - Local File Inclusion / SQL Injection Tine 2.0 - 'vbook.php' Cross Site Scripting LANSA aXes Web Terminal TN5250 - 'axes_default.css' Cross Site Scripting LDAP Account Manager 3.4.0 selfserviceSaveOk Parameter Cross Site Scripting Tine 2.0 - 'vbook.php' Cross-Site Scripting LANSA aXes Web Terminal TN5250 - 'axes_default.css' Cross-Site Scripting LDAP Account Manager 3.4.0 selfserviceSaveOk Parameter Cross-Site Scripting E2 Photo Gallery 0.9 - 'index.php' Cross Site Scripting YaPIG 0.95 Multiple Cross Site Scripting Vulnerabilities Web Auction 0.3.6 'lang' Parameter Cross Site Scripting Proofpoint Protection Server 5.5.5 - 'process.cgi' Cross Site Scripting E2 Photo Gallery 0.9 - 'index.php' Cross-Site Scripting YaPIG 0.95 - Multiple Cross-Site Scripting Vulnerabilities Web Auction 0.3.6 'lang' Parameter Cross-Site Scripting Proofpoint Protection Server 5.5.5 - 'process.cgi' Cross-Site Scripting SelectaPix 1.4.1 - 'uploadername' Parameter Cross Site Scripting Multiple GoT.MY Products 'theme_dir' Parameter Cross Site Scripting SelectaPix 1.4.1 - 'uploadername' Parameter Cross-Site Scripting Multiple GoT.MY Products 'theme_dir' Parameter Cross-Site Scripting WP Ajax Calendar 1.0 - 'example.php' Cross Site Scripting PHP Directory Listing Script 3.1 - 'index.php' Cross Site Scripting BMC Remedy Knowledge Management 7.5.00 Default Account and Multiple Cross Site Scripting Vulnerabilities BMC Dashboards 7.6.01 - Cross Site Scripting / Information Disclosure PHPDug 2.0 Multiple Cross Site Scripting Vulnerabilities WP Ajax Calendar 1.0 - 'example.php' Cross-Site Scripting PHP Directory Listing Script 3.1 - 'index.php' Cross-Site Scripting BMC Remedy Knowledge Management 7.5.00 Default Account and Multiple Cross-Site Scripting Vulnerabilities BMC Dashboards 7.6.01 - Cross-Site Scripting / Information Disclosure PHPDug 2.0 - Multiple Cross-Site Scripting Vulnerabilities encoder 0.4.10 - 'edit.php' Cross Site Scripting Ampache 3.5.4 - 'login.php' Cross Site Scripting encoder 0.4.10 - 'edit.php' Cross-Site Scripting Ampache 3.5.4 - 'login.php' Cross-Site Scripting Gelsheet 1.02 - 'index.php' Cross Site Scripting Gelsheet 1.02 - 'index.php' Cross-Site Scripting Perl 5.10 Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities Perl 5.10 - Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities Keyfax Customer Response Management 3.2.2.6 Multiple Cross Site Scripting Vulnerabilities Keyfax Customer Response Management 3.2.2.6 - Multiple Cross-Site Scripting Vulnerabilities Pandora 3.1 - Auth Bypass and Arbitrary File Upload Pandora 3.1 - Auth Bypass / Arbitrary File Upload Apache Struts 2.0.0 <= 2.2.1.1 - XWork 's:submit' HTML Tag Cross Site Scripting poMMo Aardvark PR16.1 Multiple Cross Site Scripting Vulnerabilities Calendarix 0.8.20080808 Multiple Cross Site Scripting and SQL Injection Apache Struts 2.0.0 <= 2.2.1.1 - XWork 's:submit' HTML Tag Cross-Site Scripting poMMo Aardvark PR16.1 - Multiple Cross-Site Scripting Vulnerabilities Calendarix 0.8.20080808 - Multiple Cross-Site Scripting and SQL Injection Argyle Social Multiple Cross Site Scripting Vulnerabilities Argyle Social - Multiple Cross-Site Scripting Vulnerabilities Mitel Audio and Web Conferencing 4.4.3.0 Multiple Cross Site Scripting Vulnerabilities Mitel Audio and Web Conferencing 4.4.3.0 - Multiple Cross-Site Scripting Vulnerabilities allocPSA 1.7.4 - 'login/login.php' Cross Site Scripting DocMGR 1.1.2 - 'history.php' Cross Site Scripting openQRM 4.8 - 'source_tab' Parameter Cross Site Scripting allocPSA 1.7.4 - 'login/login.php' Cross-Site Scripting DocMGR 1.1.2 - 'history.php' Cross-Site Scripting openQRM 4.8 - 'source_tab' Parameter Cross-Site Scripting eFront 3.6.9 - 'submitScore.php' Cross Site Scripting PHP Calendar Basic 2.3 Multiple Cross Site Scripting Vulnerabilities TWiki 5.0.1 - 'origurl' Parameter Cross Site Scripting eFront 3.6.9 - 'submitScore.php' Cross-Site Scripting PHP Calendar Basic 2.3 - Multiple Cross-Site Scripting Vulnerabilities TWiki 5.0.1 - 'origurl' Parameter Cross-Site Scripting CiscoWorks Common Services Framework 3.1.1 Help Servlet Cross Site Scripting Cisco Unified Operations Manager 8.5 Common Services Device Center Cross Site Scripting CiscoWorks Common Services Framework 3.1.1 Help Servlet Cross-Site Scripting Cisco Unified Operations Manager 8.5 Common Services Device Center Cross-Site Scripting Room Juice 0.3.3 - 'display.php' Cross Site Scripting Room Juice 0.3.3 - 'display.php' Cross-Site Scripting LimeSurvey 1.85+ 'admin.php' Cross Site Scripting LimeSurvey 1.85+ 'admin.php' Cross-Site Scripting phpScheduleIt 1.2.12 Multiple Cross Site Scripting Vulnerabilities phpScheduleIt 1.2.12 - Multiple Cross-Site Scripting Vulnerabilities Ajax Chat 1.0 - 'ajax-chat.php' Cross Site Scripting Gadu-Gadu Instant Messenger 6.0 File Transfer Cross Site Scripting Ajax Chat 1.0 - 'ajax-chat.php' Cross-Site Scripting Gadu-Gadu Instant Messenger 6.0 File Transfer Cross-Site Scripting Cotonti 0.9.2 Multiple SQL Injection Cotonti 0.9.2 - Multiple SQL Injection Kryn.cms 0.9 - '_kurl' Parameter Cross Site Scripting Kryn.cms 0.9 - '_kurl' Parameter Cross-Site Scripting Blackboard Learn 8.0 - 'keywordraw' Parameter Cross Site Scripting Blackboard Learn 8.0 - 'keywordraw' Parameter Cross-Site Scripting Kentico CMS 5.5R2.23 - 'userContextMenu_parameter' Parameter Cross Site Scripting Serendipity Freetag-plugin 3.21 - 'index.php' Cross Site Scripting Kentico CMS 5.5R2.23 - 'userContextMenu_parameter' Parameter Cross-Site Scripting Serendipity Freetag-plugin 3.21 - 'index.php' Cross-Site Scripting ARSC Really Simple Chat 3.3-rc2 - Cross Site Scripting and Multiple SQL Injection ARSC Really Simple Chat 3.3-rc2 - Cross-Site Scripting / Multiple SQL Injection Nagios 3.2.3 - 'expand' Parameter Cross Site Scripting Nagios 3.2.3 - 'expand' Parameter Cross-Site Scripting vBulletin vBExperience 3 - 'sortorder' Parameter Cross Site Scripting vBulletin vBExperience 3 - 'sortorder' Parameter Cross-Site Scripting Nakid CMS 1.0.2 - 'CKEditorFuncNum' Parameter Cross Site Scripting Multiple WordPress WooThemes - 'test.php' Cross Site Scripting Nakid CMS 1.0.2 - 'CKEditorFuncNum' Parameter Cross-Site Scripting Multiple WordPress WooThemes - 'test.php' Cross-Site Scripting Squiz Matrix 4 - 'colour_picker.php' Cross Site Scripting Squiz Matrix 4 - 'colour_picker.php' Cross-Site Scripting BLOG:CMS 4.2 Multiple Cross Site Scripting Vulnerabilities BLOG:CMS 4.2 - Multiple Cross-Site Scripting Vulnerabilities The Pacer Edition CMS 2.1 - 'email' Parameter Cross Site Scripting The Pacer Edition CMS 2.1 - 'email' Parameter Cross-Site Scripting vBTube 1.2.9 - 'vBTube.php' Multiple Cross Site Scripting Vulnerabilities miniblog 1.0 Multiple Cross Site Scripting Vulnerabilities vBTube 1.2.9 - 'vBTube.php' Multiple Cross-Site Scripting Vulnerabilities miniblog 1.0 - Multiple Cross-Site Scripting Vulnerabilities Sunway ForceControl 6.1 Multiple Heap Based Buffer Overflow Vulnerabilities Sunway ForceControl 6.1 - Multiple Heap Based Buffer Overflow Vulnerabilities Immophp 1.1.1 Cross Site Scripting and SQL Injection Taha Portal 3.2 - 'sitemap.php' Cross Site Scripting Immophp 1.1.1 Cross-Site Scripting and SQL Injection Taha Portal 3.2 - 'sitemap.php' Cross-Site Scripting Sitemagic CMS 2010.04.17 - 'SMExt' Parameter Cross Site Scripting Sitemagic CMS 2010.04.17 - 'SMExt' Parameter Cross-Site Scripting FanUpdate 3.0 - 'pageTitle' Parameter Cross Site Scripting FanUpdate 3.0 - 'pageTitle' Parameter Cross-Site Scripting ecommerceMajor - SQL Injection And Authentication bypass ecommerceMajor - SQL Injection / Authentication bypass Mambo CMS 4.6.x Multiple Cross Site Scripting Vulnerabilities Mambo CMS 4.6.x Multiple Cross-Site Scripting Vulnerabilities Joomla! CMS 1.6.3 Multiple Cross Site Scripting Vulnerabilities Joomla! CMS 1.6.3 - Multiple Cross-Site Scripting Vulnerabilities FlatPress 0.1010.1 Multiple Cross Site Scripting Vulnerabilities FlatPress 0.1010.1 - Multiple Cross-Site Scripting Vulnerabilities webERP 4.3.8 Multiple Script URI XSS webERP 4.3.8 - Multiple Script URI XSS PHPJunkYard GBook 1.6/1.7 Multiple Cross Site Scripting Vulnerabilities PHPJunkYard GBook 1.6/1.7 - Multiple Cross-Site Scripting Vulnerabilities WebCalendar 1.2.3 Multiple Cross Site Scripting Vulnerabilities WebCalendar 1.2.3 - Multiple Cross-Site Scripting Vulnerabilities Paliz Portal Cross Site Scripting and Multiple SQL Injection Paliz Portal Cross-Site Scripting and Multiple SQL Injection Classified Script c-BrowseClassified URL Cross Site Scripting Classified Script c-BrowseClassified URL Cross-Site Scripting Prontus CMS 'page' Parameter Cross Site Scripting Prontus CMS 'page' Parameter Cross-Site Scripting Alice Modem 1111 - 'rulename' Parameter Cross Site Scripting / Denial of Service Alice Modem 1111 - 'rulename' Parameter Cross-Site Scripting / Denial of Service Flowplayer 3.2.7 linkUrl' Parameter Cross Site Scripting TCExam 11.2.x Multiple Cross Site Scripting Vulnerabilities Flowplayer 3.2.7 linkUrl' Parameter Cross-Site Scripting TCExam 11.2.x Multiple Cross-Site Scripting Vulnerabilities Joomla! 'com_resman' Component Cross Site Scripting Joomla! 'com_resman' Component Cross-Site Scripting Joomla! 1.6.5 and Prior Multiple Cross Site Scripting Vulnerabilities Tiki Wiki CMS Groupware 7.2 - 'snarf_ajax.php' Cross Site Scripting Cyberoam UTM Multiple Cross Site Scripting Vulnerabilities Joomla! 1.6.5 and Prior Multiple Cross-Site Scripting Vulnerabilities Tiki Wiki CMS Groupware 7.2 - 'snarf_ajax.php' Cross-Site Scripting Cyberoam UTM Multiple Cross-Site Scripting Vulnerabilities Online Grades 3.2.5 Multiple Cross Site Scripting Vulnerabilities Online Grades 3.2.5 - Multiple Cross-Site Scripting Vulnerabilities Curverider Elgg 1.7.9 Multiple Cross Site Scripting Vulnerabilities Curverider Elgg 1.7.9 - Multiple Cross-Site Scripting Vulnerabilities mt LinkDatenbank 'b' Parameter Cross Site Scripting BESNI OKUL PORTAL 'sayfa.asp' Cross Site Scripting mt LinkDatenbank 'b' Parameter Cross-Site Scripting BESNI OKUL PORTAL 'sayfa.asp' Cross-Site Scripting HESK 2.2 Multiple Cross Site Scripting Vulnerabilities WordPress WP e-Commerce Plugin 3.8.6 - 'cart_messages[]' Parameter Cross Site Scripting Community Server 2007/2008 - 'TagSelector.aspx' Cross Site Scripting Microsoft Visual Studio Report Viewer 2005 Control Multiple Cross Site Scripting Vulnerabilities HESK 2.2 - Multiple Cross-Site Scripting Vulnerabilities WordPress WP e-Commerce Plugin 3.8.6 - 'cart_messages[]' Parameter Cross-Site Scripting Community Server 2007/2008 - 'TagSelector.aspx' Cross-Site Scripting Microsoft Visual Studio Report Viewer 2005 Control Multiple Cross-Site Scripting Vulnerabilities u5CMS 3.9.3 - Multiple Stored And Reflected XSS Vulnerabilities u5CMS 3.9.3 - Multiple Stored XSS / Reflected XSS Vulnerabilities Softbiz Recipes Portal Script Multiple Cross Site Scripting Vulnerabilities Search Network 2.0 - 'query' Parameter Cross Site Scripting OpenEMR 4.0 Multiple Cross Site Scripting Vulnerabilities Softbiz Recipes Portal Script Multiple Cross-Site Scripting Vulnerabilities Search Network 2.0 - 'query' Parameter Cross-Site Scripting OpenEMR 4.0 - Multiple Cross-Site Scripting Vulnerabilities WordPress eShop Plugin 6.2.8 - Multiple Cross Site Scripting Vulnerabilities WordPress eShop Plugin 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities SurgeFTP 23b6 Multiple Cross Site Scripting Vulnerabilities phpWebSite 'page_id' Parameter Cross Site Scripting awiki 20100125 Multiple Local File Inclusion SurgeFTP 23b6 - Multiple Cross-Site Scripting Vulnerabilities phpWebSite 'page_id' Parameter Cross-Site Scripting awiki 20100125 - Multiple Local File Inclusion WordPress Fast Secure Contact Form 3.0.3.1 - 'index.php' Cross Site Scripting WordPress WP-Stats-Dashboard Plugin 2.6.5.1 - Multiple Cross Site Scripting Vulnerabilities WordPress Fast Secure Contact Form 3.0.3.1 - 'index.php' Cross-Site Scripting WordPress WP-Stats-Dashboard Plugin 2.6.5.1 - Multiple Cross-Site Scripting Vulnerabilities PHP Prior to 5.3.7 Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities PHP Prior to 5.3.7 - Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities Adobe ColdFusion - 'probe.cfm' Cross Site Scripting MantisBT 1.1.8 Cross Site Scripting and SQL Injection Adobe ColdFusion - 'probe.cfm' Cross-Site Scripting MantisBT 1.1.8 Cross-Site Scripting and SQL Injection OneFileCMS 1.1.1 - 'onefilecms.php' Cross Site Scripting Pandora FMS 3.x - 'index.php' Cross Site Scripting OneFileCMS 1.1.1 - 'onefilecms.php' Cross-Site Scripting Pandora FMS 3.x - 'index.php' Cross-Site Scripting Concrete 5.4.1 1 - 'rcID' Parameter Cross Site Scripting Open Classifieds 1.7.2 Multiple Cross Site Scripting Vulnerabilities Concrete 5.4.1 1 - 'rcID' Parameter Cross-Site Scripting Open Classifieds 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities WonderPlugin Audio Player 2.0 - Blind SQL Injection and XSS WonderPlugin Audio Player 2.0 - Blind SQL Injection / XSS IBM Open Admin Tool 2.71 Multiple Cross Site Scripting Vulnerabilities IBM Open Admin Tool 2.71 - Multiple Cross-Site Scripting Vulnerabilities Mambo CMS N-Skyrslur Cross Site Scripting Mambo CMS N-Skyrslur Cross-Site Scripting GuppY CMS 5.0.9 & 5.00.10 Multiple CSRF Vulnerabilities GuppY CMS 5.0.9 & 5.00.10 - Multiple CSRF Vulnerabilities ACal 2.2.6 'calendar.php' Cross Site Scripting ACal 2.2.6 'calendar.php' Cross-Site Scripting YABSoft Advanced Image Hosting Script 2.3 - 'report.php' Cross Site Scripting YABSoft Advanced Image Hosting Script 2.3 - 'report.php' Cross-Site Scripting Kisanji 'gr' Parameter Cross Site Scripting GeoClassifieds Lite 2.0.x Multiple Cross Site Scripting and SQL Injection Kisanji 'gr' Parameter Cross-Site Scripting GeoClassifieds Lite 2.0.x Multiple Cross-Site Scripting and SQL Injection Zikula Application Framework 1.2.7/1.3 - 'themename' Parameter Cross Site Scripting SkaDate 'blogs.php' Cross Site Scripting Zikula Application Framework 1.2.7/1.3 - 'themename' Parameter Cross-Site Scripting SkaDate 'blogs.php' Cross-Site Scripting Pluck 4.7 Multiple Local File Inclusion and File Disclosure Vulnerabilities Pluck 4.7 - Multiple Local File Inclusion and File Disclosure Vulnerabilities Papoo CMS Light 4.0 Multiple Cross Site Scripting Vulnerabilities Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities Orion Network Performance Monitor 10.1.3 - 'CustomChart.aspx' Cross Site Scripting Orion Network Performance Monitor 10.1.3 - 'CustomChart.aspx' Cross-Site Scripting PunBB 1.3.5 Multiple Cross-Site Scripting Vulnerabilities PunBB 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities Toko LiteCMS 1.5.2 - HTTP Response Splitting / Cross Site Scripting Aspgwy Access 1.0 - 'matchword' Parameter Cross Site Scripting net4visions Multiple Products - 'dir' parameters Multiple Cross Site Scripting Vulnerabilities Toko LiteCMS 1.5.2 - HTTP Response Splitting / Cross-Site Scripting Aspgwy Access 1.0 - 'matchword' Parameter Cross-Site Scripting net4visions Multiple Products - 'dir' parameters Multiple Cross-Site Scripting Vulnerabilities Card sharj 1.0 Multiple SQL Injection Card sharj 1.0 - Multiple SQL Injection i-Gallery 3.4 - 'd' Parameter Cross Site Scripting Free Help Desk 1.1b Multiple Input Validation Vulnerabilities phpRS 2.8.1 Multiple SQL Injection and Cross Site Scripting Vulnerabilities OneCMS 2.6.4 Multiple SQL Injection Zyncro 3.0.1.20 Multiple HTML Injection Vulnerabilities i-Gallery 3.4 - 'd' Parameter Cross-Site Scripting Free Help Desk 1.1b - Multiple Input Validation Vulnerabilities phpRS 2.8.1 - Multiple SQL Injection / Cross-Site Scripting OneCMS 2.6.4 - Multiple SQL Injection Zyncro 3.0.1.20 - Multiple HTML Injection Vulnerabilities AdaptCMS 2.0.1 - Cross Site Scripting / Information Disclosure Serendipity Freetag-plugin 3.23 - 'serendipity[tagview]' Cross Site Scripting AdaptCMS 2.0.1 - Cross-Site Scripting / Information Disclosure Serendipity Freetag-plugin 3.23 - 'serendipity[tagview]' Cross-Site Scripting Adobe ColdFusion 7 - Multiple Cross Site Scripting Vulnerabilities Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities Traq 2.2 Multiple SQL Injection and Cross Site Scripting Vulnerabilities Joomla! 1.7.0 and Prior Multiple Cross Site Scripting Vulnerabilities Bitweaver 2.8.1 Multiple Cross-Site Scripting Vulnerabilities WordPress Atahualpa Theme 3.6.7 - 's' Parameter Cross Site Scripting WordPress Hybrid Theme 0.9 - 'cpage' Parameter Cross Site Scripting WordPress F8 Lite Theme 4.2.1 - 's' Parameter Cross Site Scripting WordPress Elegant Grunge Theme 1.0.3 - 's' Parameter Cross Site Scripting WordPress EvoLve Theme 1.2.5 - 's' Parameter Cross Site Scripting WordPress Cover WP Theme 1.6.5 - 's' Parameter Cross Site Scripting WordPress Web Minimalist Theme 1.1 - 'index.php' Cross Site Scripting WordPress Pixiv Custom Theme 2.1.5 - 'cpage' Parameter Cross Site Scripting WordPress Morning Coffee Theme 3.5 - 'index.php' Cross Site Scripting WordPress Black-LetterHead Theme 1.5 - 'index.php' Cross Site Scripting Traq 2.2 - Multiple SQL Injection / Cross-Site Scripting Joomla! 1.7.0 and Prior Multiple Cross-Site Scripting Vulnerabilities Bitweaver 2.8.1 - Multiple Cross-Site Scripting Vulnerabilities WordPress Atahualpa Theme 3.6.7 - 's' Parameter Cross-Site Scripting WordPress Hybrid Theme 0.9 - 'cpage' Parameter Cross-Site Scripting WordPress F8 Lite Theme 4.2.1 - 's' Parameter Cross-Site Scripting WordPress Elegant Grunge Theme 1.0.3 - 's' Parameter Cross-Site Scripting WordPress EvoLve Theme 1.2.5 - 's' Parameter Cross-Site Scripting WordPress Cover WP Theme 1.6.5 - 's' Parameter Cross-Site Scripting WordPress Web Minimalist Theme 1.1 - 'index.php' Cross-Site Scripting WordPress Pixiv Custom Theme 2.1.5 - 'cpage' Parameter Cross-Site Scripting WordPress Morning Coffee Theme 3.5 - 'index.php' Cross-Site Scripting WordPress Black-LetterHead Theme 1.5 - 'index.php' Cross-Site Scripting WordPress RedLine Theme 1.65 - 's' Parameter Cross Site Scripting WordPress RedLine Theme 1.65 - 's' Parameter Cross-Site Scripting WordPress Trending 0.1 - 'cpage' Parameter Cross Site Scripting WordPress Trending 0.1 - 'cpage' Parameter Cross-Site Scripting Innovate Portal 2.0 - 'cat' Parameter Cross Site Scripting Active CMS 1.2 - 'mod' Parameter Cross Site Scripting Innovate Portal 2.0 - 'cat' Parameter Cross-Site Scripting Active CMS 1.2 - 'mod' Parameter Cross-Site Scripting Jaws 0.8.14 Multiple Remote File Inclusion Jaws 0.8.14 - Multiple Remote File Inclusion 6KBBS 8.0 build 20101201 - Cross Site Scripting / Information Disclosure 6KBBS 8.0 build 20101201 - Cross-Site Scripting / Information Disclosure SilverStripe 2.4.5 Multiple Cross-Site Scripting Vulnerabilities SilverStripe 2.4.5 - Multiple Cross-Site Scripting Vulnerabilities BugFree 2.1.3 Multiple Cross Site Scripting Vulnerabilities BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities WordPress Pretty Link Plugin 1.4.56 - Multiple Cross Site Scripting Vulnerabilities WordPress Pretty Link Plugin 1.4.56 - Multiple Cross-Site Scripting Vulnerabilities PROMOTIC 8.1.3 Multiple Security Vulnerabilities Xenon 'id' Parameter Multiple SQL Injection asgbookphp 1.9 - 'index.php' Cross Site Scripting PROMOTIC 8.1.3 - Multiple Security Vulnerabilities Xenon - 'id' Parameter Multiple SQL Injection asgbookphp 1.9 - 'index.php' Cross-Site Scripting Check Point UTM-1 Edge and Safe 8.2.43 Multiple Security Vulnerabilities Site@School 2.4.10 - 'index.php' Cross Site Scripting and SQL Injection Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Security Vulnerabilities Site@School 2.4.10 - 'index.php' Cross-Site Scripting / SQL Injection WordPress Theme Photocrati 4.x.x - SQL Injection & XSS WordPress Theme Photocrati 4.x.x - SQL Injection / XSS Splunk 4.1.6 'segment' Parameter Cross Site Scripting Splunk 4.1.6 'segment' Parameter Cross-Site Scripting osCommerce - Remote File Upload and File Disclosure Tine 2.0 Multiple Cross Site Scripting Vulnerabilities osCommerce - Remote File Upload / File Disclosure Tine 2.0 - Multiple Cross-Site Scripting Vulnerabilities InverseFlow 2.4 Multiple Cross Site Scripting Vulnerabilities Alsbtain Bulletin 1.5/1.6 Multiple Local File Inclusion vtiger CRM 5.2.1 - 'index.php' Multiple Cross Site Scripting Vulnerabilities InverseFlow 2.4 - Multiple Cross-Site Scripting Vulnerabilities Alsbtain Bulletin 1.5/1.6 - Multiple Local File Inclusion vtiger CRM 5.2.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities XAMPP 1.7.4 Multiple Cross Site Scripting Vulnerabilities XAMPP 1.7.4 - Multiple Cross-Site Scripting Vulnerabilities Plici Search 2.0.0.Stable.r.1878 - 'p48-search.html' Cross Site Scripting Plici Search 2.0.0.Stable.r.1878 - 'p48-search.html' Cross-Site Scripting Domain Shop 'index.php' Cross Site Scripting vBulletin 4.1.7 Multiple Remote File Inclusion Domain Shop 'index.php' Cross-Site Scripting vBulletin 4.1.7 - Multiple Remote File Inclusion Hyperic HQ Enterprise 4.5.1 Cross Site Scripting and Multiple Unspecified Security Vulnerabilities Hyperic HQ Enterprise 4.5.1 Cross-Site Scripting and Multiple Unspecified Security Vulnerabilities IBSng B1.34(T96) 'str' Parameter Cross Site Scripting eFront 3.6.10 Build 11944 Multiple Cross Site Scripting Vulnerabilities eFront 3.6.x Multiple Cross Site Scripting and SQL Injection Serendipity 1.5.5 - 'serendipity[filter][bp.ALT]' Parameter Cross Site Scripting IBSng B1.34(T96) 'str' Parameter Cross-Site Scripting eFront 3.6.10 Build 11944 - Multiple Cross-Site Scripting Vulnerabilities eFront 3.6.x Multiple Cross-Site Scripting and SQL Injection Serendipity 1.5.5 - 'serendipity[filter][bp.ALT]' Parameter Cross-Site Scripting CmyDocument Multiple Cross Site Scripting Vulnerabilities CmyDocument Multiple Cross-Site Scripting Vulnerabilities WordPress Bonus Theme 1.0 - 's' Parameter Cross Site Scripting WordPress Bonus Theme 1.0 - 's' Parameter Cross-Site Scripting SmartJobBoard 'keywords' Parameter Cross Site Scripting SmartJobBoard 'keywords' Parameter Cross-Site Scripting XAMPP 1.7.7 - 'PHP_SELF' Variable Multiple Cross Site Scripting Vulnerabilities XAMPP 1.7.7 - 'PHP_SELF' Variable Multiple Cross-Site Scripting Vulnerabilities AShop - Open-Redirection / Cross Site Scripting Joomla! 1.9.3 - 'com_alfcontact' Extension Multiple Cross Site Scripting Vulnerabilities Infoblox NetMRI 6.2.1 Admin Login Page Multiple Cross Site Scripting Vulnerabilities AShop - Open-Redirection / Cross-Site Scripting Joomla! 1.9.3 - 'com_alfcontact' Extension Multiple Cross-Site Scripting Vulnerabilities Infoblox NetMRI 6.2.1 Admin Login Page Multiple Cross-Site Scripting Vulnerabilities PHP Betoffice (Betster) 1.0.4 - Authentication Bypass And SQL Injection PHP Betoffice (Betster) 1.0.4 - Authentication Bypass / SQL Injection ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 Cross Site Scripting WordPress Flexible Custom Post Type plugin - 'id' Parameter Cross Site Scripting ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 Cross-Site Scripting WordPress Flexible Custom Post Type plugin - 'id' Parameter Cross-Site Scripting GoAhead WebServer 2.5 - 'goform/formTest' Multiple Cross Site Scripting Vulnerabilities GoAhead WebServer 2.5 - 'goform/formTest' Multiple Cross-Site Scripting Vulnerabilities WordPress Alert Before Your Post Plugin - 'name' Parameter Cross Site Scripting WordPress Advanced Text Widget Plugin 2.0 - 'page' Parameter Cross Site Scripting WordPress Adminimize Plugin 1.7.21 - 'page' Parameter Cross Site Scripting WordPress Lanoba Social Plugin 1.0 - 'action' Parameter Cross Site Scripting WordPress Alert Before Your Post Plugin - 'name' Parameter Cross-Site Scripting WordPress Advanced Text Widget Plugin 2.0 - 'page' Parameter Cross-Site Scripting WordPress Adminimize Plugin 1.7.21 - 'page' Parameter Cross-Site Scripting WordPress Lanoba Social Plugin 1.0 - 'action' Parameter Cross-Site Scripting WordPress ClickDesk Live Support Plugin 2.0 - 'cdwidget' Parameter Cross Site Scripting WordPress Featurific For WordPress Plugin 1.6.2 - 'snum' Parameter Cross Site Scripting WordPress Newsletter Meenews Plugin 5.1 - 'idnews' Parameter Cross Site Scripting WordPress ClickDesk Live Support Plugin 2.0 - 'cdwidget' Parameter Cross-Site Scripting WordPress Featurific For WordPress Plugin 1.6.2 - 'snum' Parameter Cross-Site Scripting WordPress Newsletter Meenews Plugin 5.1 - 'idnews' Parameter Cross-Site Scripting Zen Cart CMS 1.3.9h Multiple Cross Site Scripting Vulnerabilities Hastymail2 - 'rs' Parameter Cross Site Scripting Zen Cart CMS 1.3.9h Multiple Cross-Site Scripting Vulnerabilities Hastymail2 - 'rs' Parameter Cross-Site Scripting eSyndiCat Pro 2.3.5 Multiple Cross Site Scripting Vulnerabilities WordPress Skysa App Bar Plugin 'idnews' Parameter Cross Site Scripting eSyndiCat Pro 2.3.5 - Multiple Cross-Site Scripting Vulnerabilities WordPress Skysa App Bar Plugin 'idnews' Parameter Cross-Site Scripting WordPress 1-jquery-photo-gallery-slideshow-flash Plugin 1.01 Cross Site Scripting WordPress flash-album-gallery Plugin 'facebook.php' Cross Site Scripting WordPress 1-jquery-photo-gallery-slideshow-flash Plugin 1.01 Cross-Site Scripting WordPress flash-album-gallery Plugin 'facebook.php' Cross-Site Scripting WordPress TheCartPress Plugin 1.6 'OptionsPostsList.php' Cross Site Scripting WordPress TheCartPress Plugin 1.6 'OptionsPostsList.php' Cross-Site Scripting WordPress Pretty Link Plugin 1.5.2 - 'pretty-bar.php' Cross Site Scripting WordPress Pretty Link Plugin 1.5.2 - 'pretty-bar.php' Cross-Site Scripting Hero 3.69 - 'month' Parameter Cross Site Scripting Hero 3.69 - 'month' Parameter Cross-Site Scripting Siena CMS 1.242 - 'err' Parameter Cross Site Scripting WordPress WP Live.php 1.2.1 - 's' Parameter Cross Site Scripting PHPB2B 4.1 - 'q' Parameter Cross Site Scripting FuseTalk Forums 3.2 - 'windowed' Parameter Cross Site Scripting Siena CMS 1.242 - 'err' Parameter Cross-Site Scripting WordPress WP Live.php 1.2.1 - 's' Parameter Cross-Site Scripting PHPB2B 4.1 - 'q' Parameter Cross-Site Scripting FuseTalk Forums 3.2 - 'windowed' Parameter Cross-Site Scripting Axis M10 Series Network Cameras Cross Site Scripting Axis M10 Series Network Cameras Cross-Site Scripting Pet Listing 'preview.php' Cross Site Scripting Pet Listing 'preview.php' Cross-Site Scripting WordPress GRAND FlAGallery Plugin 1.57 - 'flagshow.php' Cross Site Scripting WordPress GRAND FlAGallery Plugin 1.57 - 'flagshow.php' Cross-Site Scripting WordPress flash-album-gallery Plugin 'flagshow.php' Cross Site Scripting WordPress The Welcomizer Plugin 1.3.9.4 - 'twiz-index.php' Cross Site Scripting Fork CMS 3.1.5 Multiple Cross Site Scripting Vulnerabilities Pulse Pro 1.7.2 Multiple Cross Site Scripting Vulnerabilities WordPress flash-album-gallery Plugin 'flagshow.php' Cross-Site Scripting WordPress The Welcomizer Plugin 1.3.9.4 - 'twiz-index.php' Cross-Site Scripting Fork CMS 3.1.5 - Multiple Cross-Site Scripting Vulnerabilities Pulse Pro 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities BrowserCRM 5.100.1 Multiple Script URI XSS BrowserCRM 5.100.1 - Multiple Script URI XSS Nagios XI Multiple Cross Site Scripting and HTML Injection Vulnerabilities Nagios XI - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Websense 7.6 Triton Report Management Interface Cross Site Scripting Websense 7.6 Triton Report Management Interface Cross-Site Scripting PHP Booking Calendar 10e 'page_info_message' Parameter Cross Site Scripting PHP Booking Calendar 10e 'page_info_message' Parameter Cross-Site Scripting PHPShop CMS 3.4 Multiple Cross Site Scripting and SQL Injection PHPShop CMS 3.4 - Multiple Cross-Site Scripting and SQL Injection epesi BIM 1.2 rev 8154 Multiple Cross-Site Scripting Vulnerabilities Barracuda Control Center 620 - Cross Site Scripting / HTML Injection epesi BIM 1.2 rev 8154 - Multiple Cross-Site Scripting Vulnerabilities Barracuda Control Center 620 - Cross-Site Scripting / HTML Injection WordPress Comment Rating Plugin 2.9.20 - 'path' Parameter Cross Site Scripting WordPress WHOIS Plugin 1.4.2 3 - 'domain' Parameter Cross Site Scripting TextPattern 4.4.1 - 'ddb' Parameter Cross Site Scripting WordPress Comment Rating Plugin 2.9.20 - 'path' Parameter Cross-Site Scripting WordPress WHOIS Plugin 1.4.2 3 - 'domain' Parameter Cross-Site Scripting TextPattern 4.4.1 - 'ddb' Parameter Cross-Site Scripting Limny 3.0.1 - 'login.php' Script Cross Site Scripting Limny 3.0.1 - 'login.php' Script Cross-Site Scripting Pligg CMS 1.1.4 - 'SERVER[php_self]' Cross Site Scripting UBB.threads 7.5.6 'Username' Field Cross Site Scripting Yaws 1.88 - Multiple Cross Site Scripting / HTML Injection Vulnerabilities StatIt 4 - 'statistik.php' Multiple Cross Site Scripting Vulnerabilities Pligg CMS 1.1.4 - 'SERVER[php_self]' Cross-Site Scripting UBB.threads 7.5.6 'Username' Field Cross-Site Scripting Yaws 1.88 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities StatIt 4 - 'statistik.php' Multiple Cross-Site Scripting Vulnerabilities VertrigoServ 2.25 - 'extensions.php' Script Cross Site Scripting VertrigoServ 2.25 - 'extensions.php' Script Cross-Site Scripting DIGIT CMS 1.0.7 Cross Site Scripting and SQL Injection DIGIT CMS 1.0.7 Cross-Site Scripting and SQL Injection SonicWall AntiSpam & EMail 7.3.1 Multiple Security vulnerabilities Gregarius 0.6.1 Multiple SQL Injection and Cross Site Scripting Vulnerabilities Advanced File Management 1.4 - 'users.php' Cross Site Scripting SonicWall AntiSpam & EMail 7.3.1 - Multiple Security vulnerabilities Gregarius 0.6.1 - Multiple SQL Injection / Cross-Site Scripting Advanced File Management 1.4 - 'users.php' Cross-Site Scripting PHP-Fusion 7.2.4 - 'downloads.php' Cross Site Scripting PHP-Fusion 7.2.4 - 'downloads.php' Cross-Site Scripting KnowledgeTree 3.x Multiple Cross Site Scripting Vulnerabilities KnowledgeTree 3.x Multiple Cross-Site Scripting Vulnerabilities MailEnable 6.02 - 'ForgottonPassword.aspx' Cross Site Scripting MailEnable 6.02 - 'ForgottonPassword.aspx' Cross-Site Scripting PHP Membership Site Manager Script 2.1 - 'index.php' Cross Site Scripting PHP Ringtone Website 'ringtones.php' Multiple Cross Site Scripting Vulnerabilities BoltWire 3.4.16 Multiple 'index.php' Cross Site Scripting Vulnerabilities PHP Membership Site Manager Script 2.1 - 'index.php' Cross-Site Scripting PHP Ringtone Website 'ringtones.php' Multiple Cross-Site Scripting Vulnerabilities BoltWire 3.4.16 - Multiple 'index.php' Cross-Site Scripting Vulnerabilities ATutor 2.0.3 Multiple Cross Site Scripting Vulnerabilities Beehive Forum 101 Multiple Cross Site Scripting Vulnerabilities phpVideoPro 0.8.x/0.9.7 Multiple Cross Site Scripting Vulnerabilities Giveaway Manager 'members.php' Cross Site Scripting Annuaire PHP 'sites_inscription.php' Multiple Cross Site Scripting Vulnerabilities ATutor 2.0.3 - Multiple Cross-Site Scripting Vulnerabilities Beehive Forum 101 - Multiple Cross-Site Scripting Vulnerabilities phpVideoPro 0.8.x/0.9.7 - Multiple Cross-Site Scripting Vulnerabilities Giveaway Manager 'members.php' Cross-Site Scripting Annuaire PHP 'sites_inscription.php' Multiple Cross-Site Scripting Vulnerabilities OneOrZero AIMS 'index.php' Cross Site Scripting OneOrZero AIMS 'index.php' Cross-Site Scripting Syneto Unified Threat Management 1.3.3/1.4.2 Multiple Cross Site Scripting and HTML Injection Vulnerabilities Syneto Unified Threat Management 1.3.3/1.4.2 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Acidcat ASP CMS 3.5 Multiple Cross Site Scripting Vulnerabilities Acidcat ASP CMS 3.5 - Multiple Cross-Site Scripting Vulnerabilities WordPress YouSayToo auto-publishing Plugin 1.0 - 'submit' Parameter Cross Site Scripting WordPress YouSayToo auto-publishing Plugin 1.0 - 'submit' Parameter Cross-Site Scripting WordPress Slideshow Gallery Plugin 1.1.x - 'border' Parameter Cross Site Scripting xClick Cart 1.0.x - 'shopping_url' Parameter Cross Site Scripting WordPress Slideshow Gallery Plugin 1.1.x - 'border' Parameter Cross-Site Scripting xClick Cart 1.0.x - 'shopping_url' Parameter Cross-Site Scripting Lead Capture 'login.php' Script Cross Site Scripting Lead Capture 'login.php' Script Cross-Site Scripting phpLDAPadmin 1.2.2 - 'base' Parameter Cross Site Scripting phpLDAPadmin 1.2.0.5-2 - 'server_id' Parameter Cross Site Scripting GForge 5.7.1 Multiple Cross Site Scripting Vulnerabilities phpLDAPadmin 1.2.2 - 'base' Parameter Cross-Site Scripting phpLDAPadmin 1.2.0.5-2 - 'server_id' Parameter Cross-Site Scripting GForge 5.7.1 - Multiple Cross-Site Scripting Vulnerabilities iknSupport 'search' Module Cross Site Scripting iknSupport 'search' Module Cross-Site Scripting project-open 3.4.x - 'account-closed.tcl' Cross Site Scripting project-open 3.4.x - 'account-closed.tcl' Cross-Site Scripting Simple Groupware 0.742 - 'export' Parameter Cross Site Scripting Simple Groupware 0.742 - 'export' Parameter Cross-Site Scripting eFront 3.6.10 - 'administrator.php' Cross Site Scripting eFront 3.6.10 - 'administrator.php' Cross-Site Scripting LxCenter Kloxo 6.1.10 Multiple HTML Injection Vulnerabilities CubeCart 3.0.20 Multiple Script redir Parameter Arbitrary Site Redirect LxCenter Kloxo 6.1.10 - Multiple HTML Injection Vulnerabilities CubeCart 3.0.20 - Multiple Script redir Parameter Arbitrary Site Redirect RabbitWiki 'title' Parameter Cross Site Scripting RabbitWiki 'title' Parameter Cross-Site Scripting Zimbra 'view' Parameter Cross Site Scripting Zimbra 'view' Parameter Cross-Site Scripting Basic Analysis and Security Engine (BASE) 1.4.5 base_db_setup.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_graph_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_graph_display.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_graph_form.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_graph_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_local_rules.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_logout.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_maintenance.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_payload.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 help/base_setup_help.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_action.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_cache.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_db.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_include.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_output_html.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_output_query.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_state_criteria.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 includes/base_state_query.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 setup/base_conf_contents.php Multiple Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_db_setup.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_graph_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_graph_display.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_graph_form.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_graph_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_local_rules.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_logout.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_maintenance.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_payload.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - help/base_setup_help.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_action.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_cache.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_db.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_include.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_output_html.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_output_query.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_state_criteria.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - includes/base_state_query.inc.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - setup/base_conf_contents.php Multiple Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 setup/setup2.php ado_inc_php Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_ag_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_qry_alert.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_qry_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_alerts.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_class.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_ipaddr.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_iplink.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_ports.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - setup/setup2.php ado_inc_php Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_ag_main.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_qry_alert.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_qry_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_alerts.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_class.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_common.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_ipaddr.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_iplink.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_ports.php BASE_path Parameter Remote File Inclusion WordPress Duplicator 0.5.14 - SQL Injection & CSRF WordPress Duplicator 0.5.14 - SQL Injection / CSRF Linux Kernel 3.13 / <= 3.14 (Ubuntu) - splice() System Call Local DoS Linux Kernel 3.13 / 3.14 (Ubuntu) - splice() System Call Local DoS Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_sensor.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_time.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_stat_uaddr.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_sensor.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_time.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_uaddr.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_user.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_user.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 index.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 admin/base_useradmin.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 admin/index.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 base_ag_main.php Crafted File Upload Arbitrary Code Execution Basic Analysis and Security Engine (BASE) 1.4.5 - index.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - admin/base_useradmin.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - admin/index.php BASE_path Parameter Remote File Inclusion Basic Analysis and Security Engine (BASE) 1.4.5 - base_ag_main.php Crafted File Upload Arbitrary Code Execution ProWiki 'id' Parameter Cross Site Scripting ProWiki 'id' Parameter Cross-Site Scripting LEPTON 1.1.3 - Cross Site Scripting LEPTON 1.1.3 - Cross-Site Scripting Tube Ace - 'q' Parameter Cross Site Scripting Tube Ace - 'q' Parameter Cross-Site Scripting ButorWiki 3.0 - 'service' Parameter Cross Site Scripting ButorWiki 3.0 - 'service' Parameter Cross-Site Scripting F*EX 20100208/20111129-2 Multiple Cross Site Scripting Vulnerabilities F*EX 20100208/20111129-2 - Multiple Cross-Site Scripting Vulnerabilities CPG Dragonfly CMS 9.3.3.0 Multiple Multiple Cross Site Scripting Vulnerabilities CPG Dragonfly CMS 9.3.3.0 - Multiple Multiple Cross-Site Scripting Vulnerabilities ContentLion Alpha 1.3 - 'login.php' Cross Site Scripting Dolibarr 3.2 Alpha Multiple Directory Traversal Vulnerabilities ContentLion Alpha 1.3 - 'login.php' Cross-Site Scripting Dolibarr 3.2 Alpha - Multiple Directory Traversal Vulnerabilities Oxwall 1.1.1 - 'plugin' Parameter Cross Site Scripting Oxwall 1.1.1 - 'plugin' Parameter Cross-Site Scripting Webglimpse 2.x Multiple Cross Site Scripting Vulnerabilities Webglimpse 2.x Multiple Cross-Site Scripting Vulnerabilities Bontq 'user/' URI Cross Site Scripting Bontq 'user/' URI Cross-Site Scripting starCMS 'q' Parameter URI Cross Site Scripting starCMS 'q' Parameter URI Cross-Site Scripting Fork CMS 3.2.x Multiple Cross Site Scripting and HTML Injection Vulnerabilities NetDecision 4.6.1 Multiple Directory Traversal Vulnerabilities Fork CMS 3.2.x Multiple Cross-Site Scripting and HTML Injection Vulnerabilities NetDecision 4.6.1 - Multiple Directory Traversal Vulnerabilities WordPress Ultimate Product Catalogue 3.1.2 - Multiple Persistent XSS & CSRF & File Upload WordPress Ultimate Product Catalogue 3.1.2 - Multiple Persistent XSS / CSRF / File Upload Omnistar Live Cross Site Scripting and SQL Injection Omnistar Live Cross-Site Scripting and SQL Injection Max's Guestbook 1.0 Multiple Remote Vulnerabilities Max's Guestbook 1.0 - Multiple Remote Vulnerabilities JavaBB 0.99 - 'userId' Parameter Cross Site Scripting JavaBB 0.99 - 'userId' Parameter Cross-Site Scripting Ilient SysAid 8.5.5 Multiple Cross Site Scripting and HTML Injection Vulnerabilities Ilient SysAid 8.5.5 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Barracuda CudaTel Communication Server 2.0.029.1 Multiple HTML Injection Vulnerabilities Barracuda CudaTel Communication Server 2.0.029.1 - Multiple HTML Injection Vulnerabilities phpMyVisites 2.4 phpmv2/index.php Multiple Cross Site Scripting Vulnerabilities singapore 0.10.1 - 'gallery' Parameter Cross Site Scripting EJBCA 4.0.7 - 'issuer' Parameter Cross Site Scripting phpMyVisites 2.4 phpmv2/index.php Multiple Cross-Site Scripting Vulnerabilities singapore 0.10.1 - 'gallery' Parameter Cross-Site Scripting EJBCA 4.0.7 - 'issuer' Parameter Cross-Site Scripting Synology Photo Station 5 DSM 3.2 - 'photo_one.php' Script Cross Site Scripting Synology Photo Station 5 DSM 3.2 - 'photo_one.php' Script Cross-Site Scripting VFront 0.99.2 CSRF & Persistent XSS VFront 0.99.2 - CSRF / Persistent XSS Minify 2.1.x - 'g' Parameter Cross Site Scripting Minify 2.1.x - 'g' Parameter Cross-Site Scripting CMSimple 3.3 - 'index.php' Cross Site Scripting CMSimple 3.3 - 'index.php' Cross-Site Scripting Open Journal Systems (OJS) 2.3.6 Multiple Script Arbitrary File Upload Open Journal Systems (OJS) 2.3.6 - Multiple Script Arbitrary File Upload AtMail 1.04 Multiple Security Vulnerabilities Event Calendar PHP 'cal_year' Parameter Cross Site Scripting AtMail 1.04 - Multiple Security Vulnerabilities Event Calendar PHP 'cal_year' Parameter Cross-Site Scripting Zumset.com FbiLike 1.00 - 'id' Parameter Cross Site Scripting Zumset.com FbiLike 1.00 - 'id' Parameter Cross-Site Scripting Matthew1471 BlogX Multiple Cross Site Scripting Vulnerabilities WordPress Integrator 1.32 - 'redirect_to' Parameter Cross Site Scripting Invision Power Board 4.2.1 - 'searchText' Parameter Cross Site Scripting Matthew1471 BlogX Multiple Cross-Site Scripting Vulnerabilities WordPress Integrator 1.32 - 'redirect_to' Parameter Cross-Site Scripting Invision Power Board 4.2.1 - 'searchText' Parameter Cross-Site Scripting eZ Publish 4.x - 'ezjscore' Module Cross Site Scripting eZ Publish 4.x - 'ezjscore' Module Cross-Site Scripting JamWiki 1.1.5 - 'num' Parameter Cross Site Scripting JamWiki 1.1.5 - 'num' Parameter Cross-Site Scripting JBMC Software DirectAdmin 1.403 - 'domain' Parameter Cross Site Scripting JBMC Software DirectAdmin 1.403 - 'domain' Parameter Cross-Site Scripting Arbor Networks Peakflow SP 3.6.1 - 'index/' Cross Site Scripting Arbor Networks Peakflow SP 3.6.1 - 'index/' Cross-Site Scripting Forma LMS 1.3 Multiple PHP Object Injection Vulnerabilities Forma LMS 1.3 - Multiple PHP Object Injection Vulnerabilities WordPress Uploadify Integration Plugin 0.9.6 Multiple Cross Site Scripting Vulnerabilities CitrusDB 2.4.1 - Local File Inclusion and SQL Injection Matterdaddy Market 1.1 Multiple SQL Injection BGS CMS 2.2.1 Multiple Cross Site Scripting and HTML Injection Vulnerabilities WordPress Uploadify Integration Plugin 0.9.6 - Multiple Cross-Site Scripting Vulnerabilities CitrusDB 2.4.1 - Local File Inclusion / SQL Injection Matterdaddy Market 1.1 - Multiple SQL Injection BGS CMS 2.2.1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Forma LMS 1.3 Multiple SQL Injection Forma LMS 1.3 - Multiple SQL Injection Bioly 1.3 - 'index.php' Cross Site Scripting and SQL Injection Joomla! Beatz Plugin 1.1 Multiple Cross Site Scripting Vulnerabilities Bioly 1.3 - 'index.php' Cross-Site Scripting / SQL Injection Joomla! Beatz Plugin 1.1 - Multiple Cross-Site Scripting Vulnerabilities WordPress Yahoo Answer Plugin Multiple Cross Site Scripting Vulnerabilities WordPress Yahoo Answer Plugin Multiple Cross-Site Scripting Vulnerabilities Acuity CMS 2.6.2 - 'UserName' Parameter Cross Site Scripting Acuity CMS 2.6.2 - 'UserName' Parameter Cross-Site Scripting Pendulab ChatBlazer 8.5 - 'username' Parameter Cross Site Scripting Pendulab ChatBlazer 8.5 - 'username' Parameter Cross-Site Scripting concrete5 5.5.2.1 - Information Disclosure / SQL Injection / Cross Site Scripting gpEasy 2.3.3 - 'jsoncallback' Parameter Cross Site Scripting Quick.CMS 4.0 - 'p' Parameter Cross Site Scripting concrete5 5.5.2.1 - Information Disclosure / SQL Injection / Cross-Site Scripting gpEasy 2.3.3 - 'jsoncallback' Parameter Cross-Site Scripting Quick.CMS 4.0 - 'p' Parameter Cross-Site Scripting Croogo CMS 1.3.4 Multiple HTML Injection Vulnerabilities SKYUC 3.2.1 - 'encode' Parameter Cross Site Scripting Croogo CMS 1.3.4 - Multiple HTML Injection Vulnerabilities SKYUC 3.2.1 - 'encode' Parameter Cross-Site Scripting WordPress WPsc MijnPress Plugin 'rwflush' Parameter Cross Site Scripting WordPress WPsc MijnPress Plugin 'rwflush' Parameter Cross-Site Scripting MySQLDumper 1.24.4 Multiple Script Direct Request Information Disclosure MySQLDumper 1.24.4 - Multiple Script Direct Request Information Disclosure iGuard Security Access Control Device Firmware 3.6.7427A Cross Site Scripting iGuard Security Access Control Device Firmware 3.6.7427A Cross-Site Scripting Ramui Forum Script 'query' Parameter Cross Site Scripting Ramui Forum Script 'query' Parameter Cross-Site Scripting PivotX 2.3.2 - 'ajaxhelper.php' Cross Site Scripting PivotX 2.3.2 - 'ajaxhelper.php' Cross-Site Scripting WordPress WP-FaceThumb 0.1 - 'pagination_wp_facethum' Parameter Cross Site Scripting WordPress WP-FaceThumb 0.1 - 'pagination_wp_facethum' Parameter Cross-Site Scripting WordPress GRAND Flash Album Gallery 1.71 - 'admin.php' Cross Site Scripting Dynamic Widgets WordPress Plugin 1.5.1 - 'themes.php' Cross Site Scripting WordPress GRAND Flash Album Gallery 1.71 - 'admin.php' Cross-Site Scripting Dynamic Widgets WordPress Plugin 1.5.1 - 'themes.php' Cross-Site Scripting Download Monitor 3.3.5.4 - 'uploader.php' Multiple Cross Site Scripting Vulnerabilities WordPress Network Publisher 5.0.1 - 'networkpub_key' Cross Site Scripting Download Manager 2.2.2 - 'cid' Parameter Cross Site Scripting PDF & Print Button Joliprint 1.3.0 Multiple Cross Site Scripting Vulnerabilities CataBlog WordPress Plugin 1.6 'admin.php' Cross Site Scripting 2 Click Social Media Buttons 0.32.2 Multiple Cross Site Scripting Vulnerabilities iFrame Admin Pages 0.1 - 'main_page.php' Cross Site Scripting WordPress Newsletter Manager Plugin 1.0 Multiple Cross Site Scripting Vulnerabilities Download Monitor 3.3.5.4 - 'uploader.php' Multiple Cross-Site Scripting Vulnerabilities WordPress Network Publisher 5.0.1 - 'networkpub_key' Cross-Site Scripting Download Manager 2.2.2 - 'cid' Parameter Cross-Site Scripting PDF & Print Button Joliprint 1.3.0 - Multiple Cross-Site Scripting Vulnerabilities CataBlog WordPress Plugin 1.6 'admin.php' Cross-Site Scripting 2 Click Social Media Buttons 0.32.2 - Multiple Cross-Site Scripting Vulnerabilities iFrame Admin Pages 0.1 - 'main_page.php' Cross-Site Scripting WordPress Newsletter Manager Plugin 1.0 - Multiple Cross-Site Scripting Vulnerabilities Media Library Categories Multiple Cross Site Scripting Vulnerabilities LeagueManager 3.7 Multiple Cross Site Scripting Vulnerabilities Media Library Categories Multiple Cross-Site Scripting Vulnerabilities LeagueManager 3.7 - Multiple Cross-Site Scripting Vulnerabilities GD Star Rating 1.9.16 'tpl_section' Parameter Cross Site Scripting Mingle Forum 1.0.33 - 'admin.php' Multiple Cross Site Scripting Vulnerabilities GD Star Rating 1.9.16 'tpl_section' Parameter Cross-Site Scripting Mingle Forum 1.0.33 - 'admin.php' Multiple Cross-Site Scripting Vulnerabilities Pretty Link Lite WordPress Plugin 1.5.2 - SQL Injection / Cross Site Scripting Pretty Link Lite WordPress Plugin 1.5.2 - SQL Injection / Cross-Site Scripting WordPress zM Ajax Login & Register Plugin 1.0.9 Local File Inclusion WordPress Sharebar Plugin 1.2.1 - SQL Injection / Cross Site Scripting Share and Follow 1.80.3 - 'admin.php' Cross Site Scripting WordPress Soundcloud Is Gold 2.1 - 'width' Parameter Cross Site Scripting WordPress Track That Stat 1.0.8 Cross Site Scripting LongTail JW Player 'debug' Parameter Cross Site Scripting WordPress zM Ajax Login & Register Plugin 1.0.9 - Local File Inclusion WordPress Sharebar Plugin 1.2.1 - SQL Injection / Cross-Site Scripting Share and Follow 1.80.3 - 'admin.php' Cross-Site Scripting WordPress Soundcloud Is Gold 2.1 - 'width' Parameter Cross-Site Scripting WordPress Track That Stat 1.0.8 Cross-Site Scripting LongTail JW Player 'debug' Parameter Cross-Site Scripting backupDB() 1.2.7a 'onlyDB' Parameter Cross Site Scripting backupDB() 1.2.7a 'onlyDB' Parameter Cross-Site Scripting Unijimpe Captcha 'captchademo.php' Cross Site Scripting Artiphp 5.5.0 Neo - 'index.php' Multiple Cross Site Scripting Vulnerabilities Unijimpe Captcha 'captchademo.php' Cross-Site Scripting Artiphp 5.5.0 Neo - 'index.php' Multiple Cross-Site Scripting Vulnerabilities PHP Address Book 7.0 Multiple Cross Site Scripting Vulnerabilities PHP Address Book 7.0 - Multiple Cross-Site Scripting Vulnerabilities Yandex.Server 2010 9.0 - 'text' Parameter Cross Site Scripting Yandex.Server 2010 9.0 - 'text' Parameter Cross-Site Scripting phphq.Net phAlbum 1.5.1 - 'index.php' Cross Site Scripting RuubikCMS 1.1.x - Cross Site Scripting / Information Disclosure / Directory Traversal phphq.Net phAlbum 1.5.1 - 'index.php' Cross-Site Scripting RuubikCMS 1.1.x - Cross-Site Scripting / Information Disclosure / Directory Traversal AZ Photo Album - Cross Site Scripting / Arbitrary File Upload AZ Photo Album - Cross-Site Scripting / Arbitrary File Upload Nilehoster Topics Viewer 2.3 Multiple SQL Injection and Local File Inclusion Nilehoster Topics Viewer 2.3 - Multiple SQL Injection and Local File Inclusion AzDGDatingMedium 1.9.3 Multiple Remote Vulnerabilities AzDGDatingMedium 1.9.3 - Multiple Remote Vulnerabilities WHMCompleteSolution (WHMCS) 5.0 Multiple Application Function CSRF WHMCompleteSolution (WHMCS) 5.0 - Multiple Application Function CSRF VoipNow Professional 2.5.3 - 'nsextt' Parameter Cross Site Scripting VoipNow Professional 2.5.3 - 'nsextt' Parameter Cross-Site Scripting WeBid Multiple Cross Site Scripting And LDAP Injection Vulnerabilities WeBid Multiple Cross-Site Scripting And LDAP Injection Vulnerabilities Koha 3.20.1 - Multiple XSS and XSRF Vulnerabilities Koha 3.20.1 - Multiple XSS / XSRF Vulnerabilities XAMPP for Windows 1.7.7 - Multiple Cross Site Scripting / SQL Injection SPIP 2.x Multiple Cross Site Scripting Vulnerabilities XAMPP for Windows 1.7.7 - Multiple Cross-Site Scripting / SQL Injection SPIP 2.x Multiple Cross-Site Scripting Vulnerabilities Juniper Networks Mobility System Software 'aaa/wba_login.html' Cross Site Scripting Juniper Networks Mobility System Software 'aaa/wba_login.html' Cross-Site Scripting MediaWiki 1.x - 'uselang' Parameter Cross Site Scripting MediaWiki 1.x - 'uselang' Parameter Cross-Site Scripting Simple Document Management System 1.1.5 Multiple SQL Injection Webify Multiple Products - Multiple HTML Injection and Local File Inclusion Squiz CMS Multiple Cross Site Scripting and XML External Entity Injection Vulnerabilities Simple Document Management System 1.1.5 - Multiple SQL Injection Webify Multiple Products - Multiple HTML Injection / Local File Inclusion Squiz CMS Multiple Cross-Site Scripting and XML External Entity Injection Vulnerabilities Mahara 1.4.1 Multiple Cross Site Scripting and HTML Injection Vulnerabilities Mahara 1.4.1 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities Flogr 'tag' Parameter Multiple Cross Site Scripting Vulnerabilities Flogr 'tag' Parameter Multiple Cross-Site Scripting Vulnerabilities CMS Balitbang Multiple HTML Injection and Cross Site Scripting Vulnerabilities CMS Balitbang - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities AdaptCMS 2.0.2 - 'index.php' Script Cross Site Scripting AdaptCMS 2.0.2 - 'index.php' Script Cross-Site Scripting web@all Cross Site Scripting Commentics 'index.php' Cross Site Scripting web@all Cross-Site Scripting Commentics 'index.php' Cross-Site Scripting Adiscan LogAnalyzer 3.4.3 Cross Site Scripting Adiscan LogAnalyzer 3.4.3 Cross-Site Scripting CMS Lokomedia Multiple Cross Site Scripting and HTML Injection Vulnerabilities CMS Lokomedia - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Phonalisa Multiple HTML-Injection Cross-Site Scripting Phonalisa - Multiple HTML-Injection Cross-Site Scripting FCKEditor Core - (Editor 'spellchecker.php') Cross Site Scripting FCKEditor Core - (Editor 'spellchecker.php') Cross-Site Scripting TEMENOS T24 Multiple Cross Site Scripting Vulnerabilities TEMENOS T24 - Multiple Cross-Site Scripting Vulnerabilities SWFUpload 'movieName' Parameter Cross Site Scripting SWFUpload 'movieName' Parameter Cross-Site Scripting Joomla 2.5.x Language Switcher ModuleMultiple Cross Site Scripting Vulnerabilities Joomla 2.5.x Language Switcher ModuleMultiple Cross-Site Scripting Vulnerabilities php MBB Cross Site Scripting and SQL Injection php MBB Cross-Site Scripting and SQL Injection WordPress SocialFit Plugin 'msg' Parameter Cross Site Scripting WordPress custom tables Plugin 'key' Parameter Cross Site Scripting WordPress SocialFit Plugin 'msg' Parameter Cross-Site Scripting WordPress custom tables Plugin 'key' Parameter Cross-Site Scripting WordPress Knews Multilingual Newsletters Plugin Cross Site Scripting WordPress PHPFreeChat 'url' Parameter Cross Site Scripting WordPress Knews Multilingual Newsletters Plugin Cross-Site Scripting WordPress PHPFreeChat 'url' Parameter Cross-Site Scripting MGB Multiple Cross Site Scripting and SQL Injection MGB - Multiple Cross-Site Scripting / SQL Injection Funeral Script PHP Cross Site Scripting and SQL Injection Funeral Script PHP Cross-Site Scripting and SQL Injection Simple Machines 2.0.2 Multiple HTML Injection Vulnerabilities Simple Machines 2.0.2 - Multiple HTML Injection Vulnerabilities web@all 'name' Parameter Cross Site Scripting web@all 'name' Parameter Cross-Site Scripting REDAXO 'subpage' Parameter Cross Site Scripting REDAXO 'subpage' Parameter Cross-Site Scripting Scrutinizer 9.0.1.19899 Multiple Cross Site Scripting Vulnerabilities Scrutinizer 9.0.1.19899 - Multiple Cross-Site Scripting Vulnerabilities phpBB Multiple SQL Injection JW Player 'playerready' Parameter Cross Site Scripting phpBB - Multiple SQL Injection JW Player 'playerready' Parameter Cross-Site Scripting Distimo Monitor Multiple Cross Site Scripting Vulnerabilities ManageEngine Applications Manager Multiple Cross Site Scripting and SQL Injection Distimo Monitor Multiple Cross-Site Scripting Vulnerabilities ManageEngine Applications Manager Multiple Cross-Site Scripting and SQL Injection ntop 'arbfile' Parameter Cross Site Scripting ntop 'arbfile' Parameter Cross-Site Scripting Zenoss 3.2.1 Multiple Security Vulnerabilities Elefant CMS 'id' Parameter Cross Site Scripting Worksforweb iAuto - Multiple Cross Site Scripting / HTML Injection Vulnerabilities Zenoss 3.2.1 - Multiple Security Vulnerabilities Elefant CMS 'id' Parameter Cross-Site Scripting Worksforweb iAuto - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities PolarisCMS 'WebForm_OnSubmit()' Function Cross Site Scripting PolarisCMS 'WebForm_OnSubmit()' Function Cross-Site Scripting ConcourseSuite Multiple Cross Site Scripting and Cross Site Request Forgery Vulnerabilities ConcourseSuite Multiple Cross-Site Scripting and Cross Site Request Forgery Vulnerabilities Hotel Booking Portal 0.1 Multiple SQL Injection and Cross Site Scripting Vulnerabilities Hotel Booking Portal 0.1 - Multiple SQL Injection / Cross-Site Scripting Total Shop UK eCommerce CodeIgniter Multiple Cross Site Scripting Vulnerabilities mIRC 'projects.php' Cross Site Scripting MindTouch DekiWiki Multiple Remote and Local File Inclusion Total Shop UK eCommerce CodeIgniter Multiple Cross-Site Scripting Vulnerabilities mIRC 'projects.php' Cross-Site Scripting MindTouch DekiWiki - Multiple Remote File Inclusion / Local File Inclusion ShopperPress WordPress Theme - SQL Injection / Cross Site Scripting ShopperPress WordPress Theme - SQL Injection / Cross-Site Scripting LISTSERV 16 'SHOWTPL' Parameter Cross Site Scripting LISTSERV 16 'SHOWTPL' Parameter Cross-Site Scripting JPM Article Blog Script 6 'tid' Parameter Cross Site Scripting SaltOS 'download.php' Cross Site Scripting IBM Rational ClearQuest 8.0 Multiple Security Vulnerabilities Jara 1.6 Multiple SQL Injection and Multiple Cross Site Scripting Vulnerabilities OrderSys 1.6.4 Multiple SQL Injection and Multiple Cross Site Scripting Vulnerabilities Banana Dance Cross Site Scripting and SQL Injection JPM Article Blog Script 6 'tid' Parameter Cross-Site Scripting SaltOS 'download.php' Cross-Site Scripting IBM Rational ClearQuest 8.0 - Multiple Security Vulnerabilities Jara 1.6 - Multiple SQL Injection and Multiple Cross-Site Scripting Vulnerabilities OrderSys 1.6.4 - Multiple SQL Injection and Multiple Cross-Site Scripting Vulnerabilities Banana Dance - Cross-Site Scripting / SQL Injection SiNG cms 'password.php' Cross Site Scripting SiNG cms 'password.php' Cross-Site Scripting Monstra Multiple HTML Injection Vulnerabilities KindEditor 'name' Parameter Cross Site Scripting Monstra - Multiple HTML Injection Vulnerabilities KindEditor 'name' Parameter Cross-Site Scripting Websense Content Gateway Multiple Cross Site Scripting Vulnerabilities JW Player 'logo.link' Parameter Cross Site Scripting Websense Content Gateway Multiple Cross-Site Scripting Vulnerabilities JW Player 'logo.link' Parameter Cross-Site Scripting Power-eCommerce Multiple Cross Site Scripting Vulnerabilities WordPress Finder 'order' Parameter Cross Site Scripting Power-eCommerce Multiple Cross-Site Scripting Vulnerabilities WordPress Finder 'order' Parameter Cross-Site Scripting LibGuides Multiple Cross Site Scripting Vulnerabilities Mihalism Multi Host 'users.php' Cross Site Scripting LibGuides Multiple Cross-Site Scripting Vulnerabilities Mihalism Multi Host 'users.php' Cross-Site Scripting Phorum 5.2.18 Multiple Cross Site Scripting Vulnerabilities PrestaShop 1.4.7 Multiple Cross Site Scripting Vulnerabilities Phorum 5.2.18 - Multiple Cross-Site Scripting Vulnerabilities PrestaShop 1.4.7 - Multiple Cross-Site Scripting Vulnerabilities TomatoCart 'example_form.ajax.php' Cross Site Scripting TomatoCart 'example_form.ajax.php' Cross-Site Scripting Crowbar 'file' Parameter Multiple Cross Site Scripting Vulnerabilities Crowbar 'file' Parameter Multiple Cross-Site Scripting Vulnerabilities phpFox 3.0.1 - 'ajax.php' Multiple Cross Site Scripting Vulnerabilities Kayako Fusion 'download.php' Cross Site Scripting phpFox 3.0.1 - 'ajax.php' Multiple Cross-Site Scripting Vulnerabilities Kayako Fusion 'download.php' Cross-Site Scripting Hawkeye-G 3.0.1.4912 - Persistent XSS & Information Leakage Hawkeye-G 3.0.1.4912 - Persistent XSS / Information Leakage LiteSpeed Web Server 'gtitle' parameter Cross Site Scripting WordPress Slideshow Plugin Multiple Cross Site Scripting Vulnerabilities LiteSpeed Web Server 'gtitle' parameter Cross-Site Scripting WordPress Slideshow Plugin Multiple Cross-Site Scripting Vulnerabilities Printer Pro 5.4.3 IOS - Persistent Cross Site Scripting Printer Pro 5.4.3 IOS - Persistent Cross-Site Scripting Flogr 'index.php' Multiple Cross Site Scripting Vulnerabilities Flogr 'index.php' Multiple Cross-Site Scripting Vulnerabilities ExtCalendar 2.0 Multiple SQL Injection and HTML Injection Vulnerabilities ExtCalendar 2.0 - Multiple SQL Injection and HTML Injection Vulnerabilities WordPress Download Monitor Plugin 'dlsearch' Parameter Cross Site Scripting WordPress Download Monitor Plugin 'dlsearch' Parameter Cross-Site Scripting Openfiler 2.3 Multiple Cross Site Scripting and Information Disclosure Vulnerabilities Openfiler 2.3 - Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities Atlassian Confluence 3.4.x Error Page Cross Site Scripting Atlassian Confluence 3.4.x Error Page Cross-Site Scripting vBSEO 'u' parameter Cross Site Scripting vBSEO 'u' parameter Cross-Site Scripting minimal Gallery 'index.php' Multiple Cross Site Scripting Vulnerabilities minimal Gallery 'index.php' Multiple Cross-Site Scripting Vulnerabilities AxisInternet VoIP Manager Multiple Cross Site Scripting Vulnerabilities AxisInternet VoIP Manager Multiple Cross-Site Scripting Vulnerabilities WordPress Purity Theme Multiple Cross Site Scripting Vulnerabilities Poweradmin 'index.php' Cross Site Scripting WordPress MF Gig Calendar Plugin Cross Site Scripting WordPress Purity Theme Multiple Cross-Site Scripting Vulnerabilities Poweradmin 'index.php' Cross-Site Scripting WordPress MF Gig Calendar Plugin Cross-Site Scripting WordPress Video Lead Form Plugin 'errMsg' Parameter Cross Site Scripting WordPress Video Lead Form Plugin 'errMsg' Parameter Cross-Site Scripting YCommerce Multiple SQL Injection YCommerce - Multiple SQL Injection WordPress Token Manager Plugin 'tid' Parameter Cross Site Scripting WordPress Token Manager Plugin 'tid' Parameter Cross-Site Scripting Neturf eCommerce Shopping Cart 'SearchFor' Parameter Cross Site Scripting Neturf eCommerce Shopping Cart 'SearchFor' Parameter Cross-Site Scripting WordPress ABC Test Plugin 'id' Parameter Cross Site Scripting WordPress ABC Test Plugin 'id' Parameter Cross-Site Scripting WordPress Akismet Plugin Multiple Cross Site Scripting Vulnerabilities Zenphoto 'admin-news-articles.php' Cross Site Scripting WordPress Akismet Plugin Multiple Cross-Site Scripting Vulnerabilities Zenphoto 'admin-news-articles.php' Cross-Site Scripting Interspire Email Marketer - (Cross Site Scripting/HTML Injection/SQL Injection) Multiple Vulnerabilities Interspire Email Marketer - (Cross-Site Scripting/HTML Injection/SQL Injection) Multiple Vulnerabilities CMS Mini 0.2.2 - 'index.php' Script Cross Site Scripting CMS Mini 0.2.2 - 'index.php' Script Cross-Site Scripting WordPress Wordfence Security Plugin Cross Site Scripting WordPress Wordfence Security Plugin Cross-Site Scripting SMF 'view' Parameter Cross Site Scripting Inventory Multiple Cross Site Scripting and SQL Injection SMF 'view' Parameter Cross-Site Scripting Inventory Multiple Cross-Site Scripting and SQL Injection Gramophone 'rs' Parameter Cross Site Scripting Gramophone 'rs' Parameter Cross-Site Scripting WANem Multiple Cross Site Scripting Vulnerabilities CorePlayer 'callback' Parameter Cross Site Scripting WANem Multiple Cross-Site Scripting Vulnerabilities CorePlayer 'callback' Parameter Cross-Site Scripting NetCat CMS Multiple Cross Site Scripting Vulnerabilities SolarWinds Orion IP Address Manager (IPAM) 'search.aspx' Cross Site Scripting NetCat CMS Multiple Cross-Site Scripting Vulnerabilities SolarWinds Orion IP Address Manager (IPAM) 'search.aspx' Cross-Site Scripting bloofoxCMS 0.3.5 Multiple Cross Site Scripting Vulnerabilities bloofoxCMS 0.3.5 - Multiple Cross-Site Scripting Vulnerabilities WebKit Cross Site Scripting Filter 'XSSAuditor.cpp' Security Bypass WebKit Cross-Site Scripting Filter 'XSSAuditor.cpp' Security Bypass Elastix 'page' Parameter Cross Site Scripting TinyMCPUK 'test' Parameter Cross Site Scripting Elastix 'page' Parameter Cross-Site Scripting TinyMCPUK 'test' Parameter Cross-Site Scripting Multiple Fortinet FortiWeb Appliances Multiple Cross Site Scripting Vulnerabilities Multiple Fortinet FortiWeb Appliances Multiple Cross-Site Scripting Vulnerabilities PHP Address Book 'group' Parameter Cross Site Scripting PHP Address Book 'group' Parameter Cross-Site Scripting cPanel 'account' Parameter Cross Site Scripting cPanel 'account' Parameter Cross-Site Scripting WHM 'filtername' Parameter Cross Site Scripting cPanel 'dir' Parameter Cross Site Scripting WHM 'filtername' Parameter Cross-Site Scripting cPanel 'dir' Parameter Cross-Site Scripting Joomla! Incapsula Component Multiple Cross Site Scripting Vulnerabilities WordPress NextGEN Gallery Plugin 'test-head' Parameter Cross Site Scripting Joomla! Incapsula Component Multiple Cross-Site Scripting Vulnerabilities WordPress NextGEN Gallery Plugin 'test-head' Parameter Cross-Site Scripting Dell OpenManage Server Administrator Cross Site Scripting Dell OpenManage Server Administrator Cross-Site Scripting Quick.Cms/Quick.Cart Cross Site Scripting Quick.Cms/Quick.Cart Cross-Site Scripting Apache OFBiz 10.4.x Multiple Cross Site Scripting Vulnerabilities Scripts Genie Classified Ultra - SQL Injection / Cross Site Scripting Apache OFBiz 10.4.x Multiple Cross-Site Scripting Vulnerabilities Scripts Genie Classified Ultra - SQL Injection / Cross-Site Scripting Perforce P4Web Multiple Cross Site Scripting Vulnerabilities gpEasy CMS 'section' Parameter Cross Site Scripting Perforce P4Web - Multiple Cross-Site Scripting Vulnerabilities gpEasy CMS 'section' Parameter Cross-Site Scripting Novell Groupwise Client 8.0 Multiple Remote Code Execution Vulnerabilities WordPress WP-Table Reloaded Plugin 'id' Parameter Cross Site Scripting Novell Groupwise Client 8.0 - Multiple Remote Code Execution Vulnerabilities WordPress WP-Table Reloaded Plugin 'id' Parameter Cross-Site Scripting WordPress CommentLuv Plugin '_ajax_nonce' Parameter Cross Site Scripting WordPress CommentLuv Plugin '_ajax_nonce' Parameter Cross-Site Scripting WordPress Audio Player Plugin 'playerID' Parameter Cross Site Scripting WordPress Pinboard Theme 'tab' Parameter Cross Site Scripting WordPress Audio Player Plugin 'playerID' Parameter Cross-Site Scripting WordPress Pinboard Theme 'tab' Parameter Cross-Site Scripting AbanteCart 'index.php' Multiple Cross Site Scripting Vulnerabilities AbanteCart 'index.php' Multiple Cross-Site Scripting Vulnerabilities Sonar Multiple Cross Site Scripting Vulnerabilities Sonar Multiple Cross-Site Scripting Vulnerabilities MIMEsweeper For SMTP Multiple Cross Site Scripting Vulnerabilities MIMEsweeper For SMTP Multiple Cross-Site Scripting Vulnerabilities Squirrelcart 'table' Parameter Cross Site Scripting Squirrelcart 'table' Parameter Cross-Site Scripting CKEditor 'posteddata.php' Cross Site Scripting CKEditor 'posteddata.php' Cross-Site Scripting WordPress Pretty Link Plugin Cross Site Scripting WordPress Pretty Link Plugin Cross-Site Scripting Zenphoto 'index.php' SQL Injection PHPmyGallery 1.5 - Local File Disclosure / Cross Site Scripting OpenEMR 'site' Parameter Cross Site Scripting ZeroClipboard 1.9.x - 'id' Parameter Cross Site Scripting Zenphoto - 'index.php' SQL Injection PHPmyGallery 1.5 - Local File Disclosure / Cross-Site Scripting OpenEMR 'site' Parameter Cross-Site Scripting ZeroClipboard 1.9.x - 'id' Parameter Cross-Site Scripting WordPress Smart Flv Plugin 'jwplayer.swf' Multiple Cross Site Scripting Vulnerabilities Batavi 'index.php' Cross Site Scripting WordPress Smart Flv Plugin 'jwplayer.swf' Multiple Cross-Site Scripting Vulnerabilities Batavi 'index.php' Cross-Site Scripting JForum 'jforum.page' Multiple Cross Site Scripting Vulnerabilities Geeklog Cross Site Scripting JForum 'jforum.page' Multiple Cross-Site Scripting Vulnerabilities Geeklog Cross-Site Scripting WordPress Uploader Plugin 'blog' Parameter Cross Site Scripting WordPress Uploader Plugin 'blog' Parameter Cross-Site Scripting HP Intelligent Management Center 'topoContent.jsf' Cross Site Scripting WordPress Count Per Day Plugin 'daytoshow' Parameter Cross Site Scripting HP Intelligent Management Center 'topoContent.jsf' Cross-Site Scripting WordPress Count Per Day Plugin 'daytoshow' Parameter Cross-Site Scripting Your Own Classifieds Cross Site Scripting McAfee Vulnerability Manager - 'cert_cn' Parameter Cross Site Scripting Your Own Classifieds Cross-Site Scripting McAfee Vulnerability Manager - 'cert_cn' Parameter Cross-Site Scripting SWFUpload Multiple Content Spoofing And Cross Site Scripting Vulnerabilities Asteriskguru Queue Statistics 'warning' Parameter Cross Site Scripting WordPress podPress Plugin 'playerID' Parameter Cross Site Scripting SWFUpload Multiple Content Spoofing And Cross-Site Scripting Vulnerabilities Asteriskguru Queue Statistics 'warning' Parameter Cross-Site Scripting WordPress podPress Plugin 'playerID' Parameter Cross-Site Scripting Petite Annonce Cross Site Scripting Petite Annonce Cross-Site Scripting WordPress ADIF Log Search Widget Plugin 'logbook_search.php' Cross Site Scripting WordPress ADIF Log Search Widget Plugin 'logbook_search.php' Cross-Site Scripting Jaow CMS 'add_ons' Parameter Cross Site Scripting Jaow CMS 'add_ons' Parameter Cross-Site Scripting IBM Lotus Domino 8.5.x - 'x.nsf' Multiple Cross Site Scripting Vulnerabilities OrionDB Web Directory Multiple Cross Site Scripting Vulnerabilities WordPress Feedweb Plugin 'wp_post_id' Parameter Cross Site Scripting C2 WebResource 'File' Parameter Cross Site Scripting e107 - 'content_preset.php' Cross Site Scripting IBM Lotus Domino 8.5.x - 'x.nsf' Multiple Cross-Site Scripting Vulnerabilities OrionDB Web Directory Multiple Cross-Site Scripting Vulnerabilities WordPress Feedweb Plugin 'wp_post_id' Parameter Cross-Site Scripting C2 WebResource 'File' Parameter Cross-Site Scripting e107 - 'content_preset.php' Cross-Site Scripting Zimbra 'aspell.php' Cross Site Scripting Zimbra 'aspell.php' Cross-Site Scripting WordPress Traffic Analyzer Plugin 'aoid' Parameter Cross Site Scripting phpMyAdmin - 'tbl_gis_visualization.php' Multiple Cross Site Scripting Vulnerabilities WordPress Traffic Analyzer Plugin 'aoid' Parameter Cross-Site Scripting phpMyAdmin - 'tbl_gis_visualization.php' Multiple Cross-Site Scripting Vulnerabilities Dream CMS 2.3.0 - CSRF Add Extension And File Upload PHP Code Execution Dream CMS 2.3.0 - CSRF Add Extension / File Upload PHP Code Execution jPlayer 'Jplayer.swf' Script Cross Site Scripting jPlayer 'Jplayer.swf' Script Cross-Site Scripting Matrix42 Service Store 'default.aspx' Cross Site Scripting Matrix42 Service Store 'default.aspx' Cross-Site Scripting Crafty Syntax Live Help 3.1.2 - Remote File Inclusion and Path Disclosure Crafty Syntax Live Help 3.1.2 - Remote File Inclusion / Path Disclosure RealtyScript 4.0.2 - Multiple CSRF And Persistent XSS Vulnerabilities RealtyScript 4.0.2 - Multiple CSRF / Persistent XSS Vulnerabilities Cisco Linksys E4200 /apply.cgi Multiple Parameter XSS Cisco Linksys E4200 /apply.cgi - Multiple Parameter XSS MyBB Game Section Plugin 'games.php' Multiple Cross Site Scripting Vulnerabilities Securimage 'example_form.php' Cross Site Scripting WordPress Securimage-WP Plugin 'siwp_test.php' Cross Site Scripting MyBB Game Section Plugin 'games.php' Multiple Cross-Site Scripting Vulnerabilities Securimage 'example_form.php' Cross-Site Scripting WordPress Securimage-WP Plugin 'siwp_test.php' Cross-Site Scripting Jojo CMS 'search' Parameter Cross Site Scripting Jojo CMS 'search' Parameter Cross-Site Scripting Elastix Multiple Cross Site Scripting Vulnerabilities Telaen 2.7.x Cross Site Scripting Elastix Multiple Cross-Site Scripting Vulnerabilities Telaen 2.7.x Cross-Site Scripting WordPress Ambience Theme 'src' Parameter Cross Site Scripting WordPress Ambience Theme 'src' Parameter Cross-Site Scripting Xaraya Multiple Cross Site Scripting Vulnerabilities Xaraya - Multiple Cross-Site Scripting Vulnerabilities Nameko 'nameko.php' Cross Site Scripting Nameko 'nameko.php' Cross-Site Scripting Xorbin Analog Flash Clock 'widgetUrl' Parameter Cross Site Scripting Xorbin Analog Flash Clock 'widgetUrl' Parameter Cross-Site Scripting WordPress Xorbin Digital Flash Clock 'widgetUrl' Parameter Cross Site Scripting WordPress Xorbin Digital Flash Clock 'widgetUrl' Parameter Cross-Site Scripting WordPress Category Grid View Gallery Plugin 'ID' Parameter Cross Site Scripting WordPress Category Grid View Gallery Plugin 'ID' Parameter Cross-Site Scripting Serendipity 1.6.2 - 'serendipity_admin_image_selector.php' Cross Site Scripting Serendipity 1.6.2 - 'serendipity_admin_image_selector.php' Cross-Site Scripting Mintboard Multiple Cross Site Scripting Vulnerabilities miniBB SQL Injection and Multiple Cross Site Scripting Vulnerabilities Mintboard Multiple Cross-Site Scripting Vulnerabilities miniBB SQL Injection and Multiple Cross-Site Scripting Vulnerabilities WordPress Pie Register Plugin 'wp-login.php' Multiple Cross Site Scripting Vulnerabilities WordPress Pie Register Plugin 'wp-login.php' Multiple Cross-Site Scripting Vulnerabilities Corda .NET Redirector 'redirector.corda' Cross Site Scripting Corda .NET Redirector 'redirector.corda' Cross-Site Scripting Apache Struts 2.2.3 Multiple Open Redirection Vulnerabilities Apache Struts 2.2.3 - Multiple Open Redirection Vulnerabilities YardRadius Multiple Local Format String Vulnerabilities YardRadius - Multiple Local Format String Vulnerabilities WordPress FlagEm Plugin 'cID' Parameter Cross Site Scripting Magnolia CMS Multiple Cross Site Scripting Vulnerabilities WordPress Duplicator Plugin Cross Site Scripting WordPress FlagEm Plugin 'cID' Parameter Cross-Site Scripting Magnolia CMS Multiple Cross-Site Scripting Vulnerabilities WordPress Duplicator Plugin Cross-Site Scripting AlienVault Open Source SIEM (OSSIM) - Multiple Cross Site Scripting Vulnerabilities AlienVault Open Source SIEM (OSSIM) - Multiple Cross-Site Scripting Vulnerabilities AlgoSec Firewall Analyzer Cross Site Scripting AlgoSec Firewall Analyzer Cross-Site Scripting DotNetNuke 6.1.x Cross Site Scripting DotNetNuke 6.1.x Cross-Site Scripting Bo-Blog 2.1.1 Cross Site Scripting and SQL Injection Bo-Blog 2.1.1 - Cross-Site Scripting / SQL Injection Netwin SurgeFTP Sever 23d6 - Stored Cross Site Scripting Netwin SurgeFTP Sever 23d6 - Stored Cross-Site Scripting Oracle Glassfish Server 2.1.1/3.0.1 Multiple Subcomponent Resource Identifier Traversal Arbitrary File Access Oracle Glassfish Server 2.1.1/3.0.1 - Multiple Subcomponent Resource Identifier Traversal Arbitrary File Access Bugzilla 'editflagtypes.cgi' Multiple Cross Site Scripting Vulnerabilities Bugzilla 'editflagtypes.cgi' Multiple Cross-Site Scripting Vulnerabilities Course Registration Management System Cross Site Scripting and SQL Injection Course Registration Management System Cross-Site Scripting and SQL Injection WordPress Plugin WP Easy Poll 1.1.3 - XSS and CSRF WordPress Plugin WP Easy Poll 1.1.3 - XSS / CSRF Dell Kace 1000 Systems Management Appliance DS-2014-001 Multiple SQL Injection Dell Kace 1000 Systems Management Appliance DS-2014-001 - Multiple SQL Injection Rhino Cross Site Scripting and Password Reset Security Bypass Vulnerabilities Rhino Cross-Site Scripting and Password Reset Security Bypass Vulnerabilities Maian Uploader 4.0 Multiple Security Vulnerabilities Maian Uploader 4.0 - Multiple Security Vulnerabilities Singapore 0.9.9 b beta - Image Gallery Remote File Inclusion / Cross Site Scripting Singapore 0.9.9 b beta - Image Gallery Remote File Inclusion / Cross-Site Scripting ATutor Multiple Cross Site Scripting and HTML Injection Vulnerabilities ATutor - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities Xangati /servlet/MGConfigData Multiple Parameter Remote Path Traversal File Access Xangati /servlet/MGConfigData - Multiple Parameter Remote Path Traversal File Access ZamFoo Multiple Remote Command Execution Vulnerabilities ZamFoo - Multiple Remote Command Execution Vulnerabilities WordPress DZS-VideoGallery Plugin - Cross Site Scripting / Command Injection WordPress DZS-VideoGallery Plugin - Cross-Site Scripting / Command Injection Adobe Photoshop CC & Bridge CC PNG File Parsing Memory Corruption Adobe Photoshop CC & Bridge CC PNG File Parsing Memory Corruption 2 Adobe Photoshop CC & Bridge CC PNG File Parsing Memory Corruption (1) Adobe Photoshop CC & Bridge CC PNG File Parsing Memory Corruption (2) Chamilo LMS - Persistent Cross Site Scripting Chamilo LMS - Persistent Cross-Site Scripting WordPress Site Import Plugin 1.0.1 - Local and Remote File Inclusion WordPress Site Import Plugin 1.0.1 - Local File Inclusion / Remote File Inclusion PHP 5.5.33 / <= 7.0.4 - SNMP Format String Exploit PHP 5.5.33 / 7.0.4 - SNMP Format String Exploit CMS Made Simple < 2.1.3 & < 1.12.1 - Web Server Cache Poisoning CMS Made Simple < 2.1.3 / < 1.12.1 - Web Server Cache Poisoning ImageMagick 6.9.3-9 / <= 7.0.1-0 - Multiple Vulnerabilities (ImageTragick) ImageMagick 6.9.3-9 / 7.0.1-0 - Multiple Vulnerabilities (ImageTragick) ImageMagick 6.9.3-9 / <= 7.0.1-0 - Delegate Arbitrary Command Execution (ImageTragick) ImageMagick 6.9.3-9 / 7.0.1-0 - Delegate Arbitrary Command Execution (ImageTragick) Windows - Functional Keylogger to File Null Free Shellcode (601 (0x0259) bytes) Windows - Functional Keylogger to File Null Free Shellcode (601 (0x0259) bytes) iBilling 3.7.0 - Stored and Reflected XSS iBilling 3.7.0 - Stored XSS / Reflected XSS CoolPlayer+ Portable 2.19.6 - .m3u Stack Overflow (Egghunter + ASLR bypass) CoolPlayer+ Portable 2.19.6 - .m3u Stack Overflow (Egghunter + ASLR Bypass) WordPress Booking Calendar Plugin 6.2 - SQL Injection WordPress WP Live Chat Support Plugin 6.2.03 - Stored XSS WordPress ALO EasyMail Newsletter Plugin 2.9.2 - (Add/Import Arbitrary Subscribers) CSRF Halliburton LogView Pro 9.7.5 - (.cgm/.tif/.tiff/.tifh) Crash PoC	2016-08-02 05:08:00 +00:00
Offensive Security	d1e88dd6d0	DB: 2016-07-30	2016-07-30 07:05:01 +00:00
Offensive Security	9680c9c2cb	DB: 2016-07-27 ... 6 new exploits Invision Power Board <= 3.0.4_ <= 3.0.4_ <= 2.3.6 - LFI and SQL Injection Invision Power Board <= 3.0.4 / <= 3.0.4 / <= 2.3.6 - LFI and SQL Injection Linux/x86 - connect back (140.115.53.35:9999)_ download a file (cb) and execute shellcode (149 bytes) Linux/x86 - Connect back (140.115.53.35:9999)_ download a file (cb) and execute shellcode (149 bytes) Linux/x86 - quick (yet conditional_ eax != 0 and edx == 0) exit shellcode (4 bytes) Linux/x86 - Quick (yet conditional_ eax != 0 and edx == 0) exit shellcode (4 bytes) Win32 - connectback_ receive_ save and execute shellcode Win32 - Connectback_ receive_ save and execute shellcode DVD X Player 5.5 Professional (.plf) Universal Buffer Overflow DVD X Player 5.5 Professional - (.plf) Universal Buffer Overflow DVD X Player 5.5.0 Pro / Standard - Universal Exploit (DEP+ASLR Bypass) DVD X Player 5.5.0 Pro / Standard - Universal Exploit (DEP + ASLR Bypass) ISC BIND <= 8.2.2_IRIX <= 6.5.17_Solaris 7.0 - (NXT Overflow and Denial of Service) Vulnerabilities ISC BIND <= 8.2.2 / IRIX <= 6.5.17 / Solaris 7.0 - (NXT Overflow and Denial of Service) Vulnerabilities LedgerSMB1.0/1.1_SQL-Ledger 2.6.x Login Parameter Local File Include And Authentication Bypass Vulnerabilities LedgerSMB1.0/1.1 / SQL-Ledger 2.6.x - Login Parameter Local File Include And Authentication Bypass Vulnerabilities Lighttpd <= 1.4.15 - Multiple Code Execution_ Denial of Service and Information Disclosure Vulnerabilities Lighttpd <= 1.4.15 - Multiple Code Execution + Denial of Service + Information Disclosure Vulnerabilities Symantec Endpoint Protection 11.x/12.x - Kernel Pool Overflow Symantec Endpoint Protection 11.x/12.x - Kernel Pool Overflow Privilege Escalation Windows TrackPopupMenu Win32k NULL Pointer Dereference Windows - TrackPopupMenu Win32k NULL Pointer Dereference ManageEngine OpManager_ Social IT Plus and IT360 - Multiple Vulnerabilities ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities Wikipad 1.6.0 - Cross-Site Scripting_ HTML Injection and Information Disclosure Vulnerabilities Wikipad 1.6.0 - Cross-Site Scripting + HTML Injection + Information Disclosure Vulnerabilities concrete5 5.5.2.1 Information Disclosure_ SQL Injection and Cross Site Scripting Vulnerabilities concrete5 5.5.2.1 - Information Disclosure + SQL Injection + Cross Site Scripting Vulnerabilities RuubikCMS 1.1.x Cross Site Scripting_ Information Disclosure and Directory Traversal Vulnerabilities RuubikCMS 1.1.x - Cross Site Scripting + Information Disclosure + Directory Traversal Vulnerabilities Windows Kernel Win32k.sys Privilege Escalation Exploit (MS14-058) Windows Kernel - Win32k.sys Privilege Escalation Exploit (MS14-058) Tiki-Wiki CMS Calendar 14.2_ 12.5 LTS_ 9.11 LTS_ and 6.15 - Remote Code Execution Tiki-Wiki CMS Calendar 14.2 / 12.5 LTS / 9.11 LTS / 6.15 - Remote Code Execution PHP 7.0.8_ 5.6.23 and 5.5.37 - bzread() Out-of-Bounds Write PHP 7.0.8 / 5.6.23 / 5.5.37 - bzread() Out-of-Bounds Write Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 - Post Auth Remote Root Exploit (Metasploit) PHP File Vault 0.9 - Directory Traversal Iris ID IrisAccess ICU 7000-2 - Multiple Vulnerabilities Iris ID IrisAccess ICU 7000-2 - Remote Root Command Execution Iris ID IrisAccess iCAM4000/iCAM7000 - Hardcoded Credentials Remote Shell Access	2016-07-27 05:06:35 +00:00
Offensive Security	d06dff59f9	DB: 2016-07-26 ... 16 new exploits Ubuntu Breezy 5.10 - Installer Password Disclosure Ubuntu 5.10 - Installer Password Disclosure BSD/x86 - setuid/portbind (TCP 31337) shellcode (94 bytes) BSD/x86 - setuid/portbind 31337/TCP shellcode (94 bytes) Linux/x86 - shellcode that forks a HTTP Server on port tcp/8800 (166 bytes) Linux/x86 - listens for shellcode on tcp/5555 and jumps to it (83 bytes) Linux/x86 - Forks a HTTP Server on port 8800/TCP shellcode (166 bytes) Linux/x86 - Listens for shellcode on 5555/TCP and jumps to it (83 bytes) Linux/x86 - Shellcode Polymorphic chmod(_/etc/shadow__666) (54 bytes) Linux/x86 - Polymorphic chmod(_/etc/shadow__666) Shellcode (54 bytes) Linux/x86 - Add root user _r00t_ with no password to /etc/passwd shellcode (69 bytes) Linux/x86 - Add root user 'r00t' with no password to /etc/passwd shellcode (69 bytes) Linux/x86 - SET_PORT() portbind 31337 tcp shellcode (100 bytes) Linux/x86 - SET_PORT() portbind 31337/TCP shellcode (100 bytes) Linux/x86 - Add User _xtz_ without Password to /etc/passwd shellcode (59 bytes) Linux/x86 - Add User 'xtz' without Password to /etc/passwd shellcode (59 bytes) Linux/x86 - Bind /bin/sh to 31337/tcp shellcode (80 bytes) Linux/x86 - Bind /bin/sh to 31337/tcp + fork() shellcode (98 bytes) Linux/x86 - Bind /bin/sh to 31337/TCP shellcode (80 bytes) Linux/x86 - Bind /bin/sh to 31337/TCP + fork() shellcode (98 bytes) Linux/x86 - connect-back shellcode 127.0.0.1:31337/tcp (74 bytes) Linux/x86 - Connect-back shellcode 127.0.0.1:31337/TCP (74 bytes) Linux/x86 - Add user _t00r_ encrypt shellcode (116 bytes) Linux/x86 - Add user 't00r' encrypt shellcode (116 bytes) Linux/x86 - Add user _t00r_ shellcode (82 bytes) Linux/x86 - Add user 't00r' shellcode (82 bytes) Linux/x86 - Add user _z_ shellcode (70 bytes) Linux/x86 - Add User 'z' shellcode (70 bytes) Solaris/x86 - portbind/tcp shellcode (Generator) Solaris/x86 - portbind/TCP shellcode (Generator) Linux/x86 - append _/etc/passwd_ & exit() shellcode (107 bytes) Linux/x86 - append '/etc/passwd' & exit() shellcode (107 bytes) Linux/x86 - sends _Phuck3d!_ to all terminals shellcode (60 bytes) Linux/x86 - sends 'Phuck3d!' to all terminals shellcode (60 bytes) Linux/x86 - change mode 0777 of _/etc/shadow_ with sys_chmod syscall shellcode (39 bytes) Linux/x86 - change mode 0777 of '/etc/shadow' with sys_chmod syscall shellcode (39 bytes) Linux/x86 - change mode 0777 of _/etc/passwd_ with sys_chmod syscall shellcode (39 bytes) Linux/x86 - change mode 0777 of '/etc/passwd' with sys_chmod syscall shellcode (39 bytes) Linux/ARM - Add root user _shell-storm_ with password _toor_ shellcode (151 bytes) Linux/ARM - Add root user 'shell-storm' with password 'toor' shellcode (151 bytes) OS-X/Intel - reverse_tcp shell x86_64 shellcode (131 bytes) OS-X/Intel (x86_64) - reverse_tcp shell shellcode (131 bytes) Linux/SuperH (sh4) - Add root user _shell-storm_ with password _toor_ shellcode (143 bytes) Linux/SuperH (sh4) - Add root user 'shell-storm' with password 'toor' shellcode (143 bytes) Linux/MIPS - Add user(UID 0) _rOOt_ with password _pwn3d_ shellcode (164 bytes) Linux/MIPS - Add user(UID 0) 'rOOt' with password 'pwn3d' shellcode (164 bytes) Linux/x86-64 - Bind TCP 4444 Port Shellcode (81 bytes / 96 bytes with password) Linux/x86-64 - Bind 4444/TCP Port Shellcode (81 bytes / 96 bytes with password) Linux/x86 - TCP Bind Shell 33333 Port Shellcode (96 bytes) Linux/x86 - Bind Shell 33333/TCP Port Shellcode (96 bytes) OS-X/x86-64 - tcp 4444 port bind Nullfree shellcode (144 bytes) OS-X/x86-64 - 4444/TPC port bind Nullfree shellcode (144 bytes) Linux/x86-64 - Bind TCP 4444 Port Shellcode (103 bytes) Linux/x86-64 - TCP 4444 port Bindshell with Password Prompt shellcode (162 bytes) Linux/x86-64 - Bind 4444/TCP Port Shellcode (103 bytes) Linux/x86-64 - Bindshell 4444/TCP with Password Prompt shellcode (162 bytes) Linux/x86-64 - Bind TCP Port 1472 shellcode (IPv6) (199 bytes) Linux/x86-64 - Bind 1472/TCP shellcode (IPv6) (199 bytes) Linux/x86 - TCP Bind Shell Port 4444 shellcode (656 bytes) Linux/x86 - Bind Shell Port 4444/TCP shellcode (656 bytes) Linux/x86 - TCP Bind Shell Port 4444 shellcode (98 bytes) Linux/x86 - Bind Shell Port 4444/TCP shellcode (98 bytes) Rapid7 AppSpider 6.12 - Local Privilege Escalation Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 - Remote Command Execution (Metasploit) Barracuda Spam & Virus Firewall 5.1.3.007 - Remote Command Execution (Metasploit) MediaCoder 0.8.43.5852 - .m3u SEH Exploit Drupal CODER Module 2.5 - Remote Command Execution (Metasploit) CodoForum 3.2.1 - SQL Injection CoolPlayer+ Portable 2.19.6 - .m3u Stack Overflow (Egghunter+ASLR bypass) GRR Système de Gestion et de Réservations de Ressources 3.0.0-RC1 - Arbitrary File Upload PHP gettext (gettext.php) 1.0.12 - Unauthenticated Code Execution PHP 7.0.8_ 5.6.23 and 5.5.37 - bzread() Out-of-Bounds Write Ubee EVW3226 Modem/Router 1.0.20 - Multiple Vulnerabilities Technicolor TC7200 Modem/Router STD6.02.11 - Multiple Vulnerabilities Hitron CGNV4 Modem/Router 4.3.9.9-SIP-UPC - Multiple Vulnerabilities Compal CH7465LG-LC Modem/Router CH7465LG-NCIP-4.50.18.13-NOSH - Multiple Vulnerabilities Bellini/Supercook Wi-Fi Yumi SC200 - Multiple Vulnerabilities Micro Focus Filr 2 2.0.0.421_ Filr 1.2 1.2.0.846 - Multiple Vulnerabilities	2016-07-26 05:04:05 +00:00
Offensive Security	be496c36bc	DB: 2016-07-23 ... 3 new exploits Mandrake Linux 8.2 - /usr/mail Local Exploit /usr/mail (Mandrake Linux 8.2) - Local Exploit Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Bound Checking Root Exploit (3) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Bound Checking Local Root Exploit (3) Linux Kernel 2.2 - (TCP/IP Weakness) Exploit Linux Kernel 2.2 - TCP/IP Weakness Spoof IP Exploit CDRecord's ReadCD - Local Root Privileges CDRecord's ReadCD - Local Root Exploit NetBSD FTPd / tnftpd Remote Stack Overflow PoC NetBSD FTPd / Tnftpd - Remote Stack Overflow PoC Linux Kernel <= 2.6.24_16-23 / <= 2.6.28.3 (Ubuntu 8.04/8.10 & Fedora Core 10 x86_64) - set_selection() UTF-8 Off By One Local Exploit Linux Kernel <= 2.6.24_16-23 / <= 2.6.28.3 (Ubuntu 8.04/8.10 / Fedora Core 10 x86_64) - set_selection() UTF-8 Off By One Local Exploit Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - ip_append_data() ring0 Root Exploit (1) Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - 'ip_append_data()' ring0 Root Exploit (1) Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation Local Root Exploit (1) Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation (1) SimpNews 2.16.2 and Below Multiple SQL Injection Vulnerabilities SimpNews <= 2.16.2 - Multiple SQL Injection Vulnerabilities NetBSD 5.0 and below Hack GENOCIDE Environment Overflow proof of concept NetBSD 5.0 and below Hack PATH Environment Overflow proof of concept NetBSD <= 5.0 - Hack GENOCIDE Environment Overflow proof of concept NetBSD <= 5.0 - Hack PATH Environment Overflow proof of concept Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation Local Root Exploit (2) Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation (2) Linux Kernel < 2.6.34 (Ubuntu 10.10) - CAP_SYS_ADMIN x86 Local Privilege Escalation Exploit (1) Linux Kernel < 2.6.34 (Ubuntu 10.10 x86) - 'CAP_SYS_ADMIN' Local Privilege Escalation Exploit (1) Linux Kernel < 2.6.34 (Ubuntu 11.10 x86/x64) - CAP_SYS_ADMIN Local Privilege Escalation Exploit (2) Linux Kernel < 2.6.34 (Ubuntu 10.10 x86/x64) - 'CAP_SYS_ADMIN' Local Privilege Escalation Exploit (2) Linux Kernel <= 2.6.37-rc1 - serial_multiport_struct Local Info Leak Exploit Linux Kernel <= 2.6.37-rc1 - serial_multiport_struct Local Information Leak Exploit NetBSD <= 1.3.2_SGI IRIX <= 6.5.1 at(1) NetBSD <= 1.3.2_SGI IRIX <= 6.5.1 at(1) - Exploit NetBSD <= 1.4_OpenBSD <= 2.5_Solaris <= 7.0 profil(2) NetBSD <= 1.4 / OpenBSD <= 2.5 /Solaris <= 7.0 profil(2) - Exploit FreeBSD 3.4/4.0/5.0_NetBSD 1.4 Unaligned IP Option Denial of Service FreeBSD 3.4/4.0/5.0 / NetBSD 1.4 - Unaligned IP Option Denial of Service FreeBSD 2.2-4.2_NetBSD 1.2-4.5_OpenBSD 2.x ftpd glob() Buffer Overflow FreeBSD 2.2-4.2 / NetBSD 1.2-4.5 / OpenBSD 2.x FTPd - glob() Buffer Overflow NetBSD 1.x TalkD User Validation NetBSD 1.x TalkD - User Validation FreeBSD 4.x_NetBSD 1.4.x/1.5.x/1.6_OpenBSD 3 pppd Arbitrary File Permission Modification Race Condition FreeBSD 4.x / NetBSD 1.4.x/1.5.x/1.6 / OpenBSD 3 - pppd Arbitrary File Permission Modification Race Condition Linux Kernel 2.4 - execve() System Call Race Condition PoC Linux Kernel 2.4 - suid execve() System Call Race Condition PoC Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index PoC (1) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index (Proof of Concept) (1) Linux Kernel < 3.8.9 (x86_64) - perf_swevent_init Local Root Exploit (2) Linux Kernel < 3.8.9 (x86_64) - 'perf_swevent_init' Local Root Exploit (2) NetBSD 3.1 Ftpd and Tnftpd Port Remote Buffer Overflow NetBSD 3.1 FTPd / Tnftpd - Port Remote Buffer Overflow OpenBSD 4.6 and NetBSD 5.0.1 - 'printf(1)' Format String Parsing Denial of Service OpenBSD 4.6 / NetBSD 5.0.1 - 'printf(1)' Format String Parsing Denial of Service Linux Kernel <= 3.2.0-23 / <= 3.5.0-23 (Ubuntu 12.04.0/1/2 x64) - perf_swevent_init Local Root Exploit (3) Linux Kernel <= 3.2.0-23 / <= 3.5.0-23 (Ubuntu 12.04/12.04.1/12.04.2 x64) - 'perf_swevent_init' Local Root Exploit (3) Mozilla Firefox SeaMonkey <= 3.6.10 and Thunderbird <= 3.1.4 - 'document.write' Memory Corruption Mozilla Firefox SeaMonkey <= 3.6.10 / Thunderbird <= 3.1.4 - 'document.write' Memory Corruption Mozilla Firefox/Thunderbird/SeaMonkey Multiple HTML Injection Vulnerabilities Mozilla Firefox/Thunderbird/SeaMonkey - Multiple HTML Injection Vulnerabilities Linux Kernel <= 3.14.5 (RHEL/CentOS 7) - libfutex Local Root Linux Kernel <= 3.14.5 (RHEL / CentOS 7) - 'libfutex' Local Root Exploit NetBSD 5.1 Multiple 'libc/net' Functions Stack Buffer Overflow NetBSD 5.1 - Multiple 'libc/net' Functions Stack Buffer Overflow VSAT Sailor 900 - Remote Exploit Linux Kernel 2.6.26 - Auerswald USB Device Driver Buffer Overflow (Proof of Concept) Mac OS X < 10.7.5/10.8.2/10.9.5/10.10.2 - rootpipe Local Privilege Escalation Mac OS X < 10.7.5/10.8.2/10.9.5/10.10.2 - 'rootpipe' Privilege Escalation Apple OS X Entitlements Rootpipe Privilege Escalation Apple OS X Entitlements - 'Rootpipe' Privilege Escalation OS-X/x86-64 - /bin/sh Shellcode - NULL Byte Free (34 bytes) OS-X/x86-64 - /bin/sh Shellcode NULL Byte Free (34 bytes) OS X Install.framework suid root Runner Binary Privilege Escalation OS X Install.framework - suid root Runner Binary Privilege Escalation Linux/MIPS Kernel 2.6.36 NetUSB - Remote Code Execution Exploit Linux/MIPS Kernel 2.6.36 - 'NetUSB' Remote Code Execution Exploit Linux/x86-64 - bindshell (Pori: 5600) shellcode (81 bytes) Linux/x86-64 - bindshell (Port 5600) shellcode (81 bytes) Linux Kernel 4.4.x (Ubuntu 16.04) - double-fdput() in bpf(BPF_PROG_LOAD) Local Root Exploit Linux Kernel 4.4.x (Ubuntu 16.04) - 'double-fdput()' in bpf(BPF_PROG_LOAD) Local Root Exploit Exim 4 (Debian/Ubuntu) - Spool Local Root Privilege Escalation Exim 4 (Debian / Ubuntu) - Spool Local Privilege Escalation Windows 7-10 and 2k8-2k12 x86/x64 - Secondary Logon Handle Privilege Escalation (MS16-032) Windows 7-10 and 2008-2012 (x86/x64) - Secondary Logon Handle Privilege Escalation (MS16-032) Internet Explorer 11 (on Windows 10) - VBScript Memory Corruption Proof-of-Concept Exploit (MS16-051) Internet Explorer 11 (Windows 10) - VBScript Memory Corruption Proof-of-Concept Exploit (MS16-051) Linux/x86-64 - Syscall Persistent Bind Shell + (Multi-terminal) + Password + Daemon (83_ 148_ 177 bytes) Linux/x86-64 - Syscall Persistent Bind Shell + Multi-terminal + Password + Daemon (83_ 148_ 177 bytes) mail.local(8) (NetBSD) - Local Root Exploit (NetBSD-SA2016-006) Apache 2.4.7 & PHP <= 7.0.2 - openssl_seal() Uninitialized Memory Code Execution	2016-07-23 05:07:15 +00:00
Offensive Security	789febc361	DB: 2016-07-22 ... 4 new exploits Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Local Proof of Concept (1) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Local Proof of Concept (2) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (1) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Validator (Proof of Concept) (2) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'mremap()' Bound Checking Root Exploit (3) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Bound Checking Root Exploit (3) Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Local Proof of Concept (2) Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Validator (Proof of Concept) (1) Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Missing 'do_munmap' Exploit (1) Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Local Root Exploit (2) Linux Kernel <= 2.4.29-rc2 - 'uselib()' Privilege Elevation (1) Linux Kernel <= 2.4.29-rc2 - 'uselib()' Privilege Escalation (1) Linux Kernel 2.4 - 'uselib()' Privilege Elevation Exploit (2) Linux Kernel 2.4 - 'uselib()' Privilege Escalation Exploit (2) Linux Kernel 2.4 / 2.6 x86_64) - System Call Emulation Exploit Linux Kernel 2.4 / 2.6 (x86_64) - System Call Emulation Local Root Exploit TFTP Server 1.4 - ST Buffer Overflow Exploit (0Day) TFTP Server 1.4 - ST Buffer Overflow Exploit Linux Kernel < 2.6.22 - ftruncate()/open() Local Exploit Linux Kernel < 2.6.22 - ftruncate()/open() Local Root Exploit MuPDF pdf_shade4.c Multiple Stack-Based Buffer Overflows MuPDF < 20091125231942 - pdf_shade4.c Multiple Stack-Based Buffer Overflows (Linux Kernel <= 2.6.34-rc3) ReiserFS xattr (Redhat/Ubuntu 9.10) - Privilege Escalation ReiserFS xattr (Linux Kernel <= 2.6.34-rc3) (Redhat / Ubuntu 9.10) - Privilege Escalation Microsoft ASN.1 Library Bitstring Heap Overflow Microsoft Windows - ASN.1 Library Bitstring Heap Overflow (MS04-007) Linux Kernel 2.0 / 2.1 / 2.2 - autofs Linux Kernel 2.2 - ldd core Force Reboot Linux Kernel 2.2 - 'ldd core' Force Reboot OpenSSH 3.x Challenge-Response Buffer Overflow Vulnerabilities (1) OpenSSH 3.x Challenge-Response Buffer Overflow Vulnerabilities (2) OpenSSH 3.x - Challenge-Response Buffer Overflow Vulnerabilities (1) OpenSSH 3.x - Challenge-Response Buffer Overflow Vulnerabilities (2) Linux Kernel Samba 2.2.8 (Debian/Mandrake) - Share Local Privilege Elevation Linux Kernel Samba 2.2.8 (Debian / Mandrake) - Share Local Privilege Escalation Linux Kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition Local Privilege Escalation (x64) Linux Kernel 3.14-rc1 <= 3.15-rc4 (x64) - Raw Mode PTY Local Echo Race Condition Local Privilege Escalation Linux Kernel 2.6.26 - Auerswald USB Device Driver Buffer Overflow Proof of Concept Linux Kernel 2.6.26 - Auerswald USB Device Driver Buffer Overflow (Proof of Concept) Apport/Abrt - Local Root Exploit Apport/Abrt (Ubuntu / Fedora) - Local Root Exploit Ubuntu usb-creator 0.2.x - Local Privilege Escalation usb-creator 0.2.x (Ubuntu 12.04/14.04/14.10) - Local Privilege Escalation Apport/Ubuntu - Local Root Race Condition Apport (Ubuntu 14.04/14.10/15.04) - Local Root Race Condition Linux Kernel 4.4.0-2 (Ubuntu 16.04) - netfilter target_offset OOB Local Root Exploit Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - netfilter target_offset OOB Local Root Exploit TFTP Server 1.4 - WRQ Buffer Overflow Exploit (Egghunter) Linux/x86-64 - Subtle Probing Reverse Shell_ Timer_ Burst_ Password_ Multi-Terminal (84_ 122_ 172 bytes) TeamPass Passwords Management System 2.1.26 - Arbitrary File Download	2016-07-22 05:05:29 +00:00
Offensive Security	ec03ab428f	DB: 2016-07-21 ... 10 new exploits Microsoft Internet Explorer <= XP SP2 - HTML Help Control Local Zone Bypass Microsoft Internet Explorer XP SP2 - HTML Help Control Local Zone Bypass Mambo <= 4.5.3 & Joomla <= 1.0.7 - (feed) Path Disclosure and Denial of Service Exploit Mambo 4.5.3 & Joomla 1.0.7 - (feed) Path Disclosure and Denial of Service Exploit Simplog <= 0.9.3 - (tid) Remote SQL Injection Exploit Simplog 0.9.3 - (tid) SQL Injection Skulltag <= 0.96f - (Version String) Remote Format String PoC OpenTTD <= 0.4.7 - Multiple Vulnerabilities/Denial of Service Exploit Skulltag 0.96f - (Version String) Remote Format String PoC OpenTTD 0.4.7 - Multiple Vulnerabilities Apple Mac OS X Safari <= 2.0.3 (417.9.2) - Multiple Vulnerabilities (PoC) Apple Mac OS X Safari 2.0.3 (417.9.2) - Multiple Vulnerabilities Apple Mac OS X Safari <= 2.0.3 - (417.9.2) (ROWSPAN) DoS PoC Apple Mac OS X Safari 2.0.3 - (417.9.2) (ROWSPAN) DoS PoC Aardvark Topsites PHP <= 4.2.2 - (path) Remote File Inclusion phpMyAgenda <= 3.0 Final (rootagenda) Remote Include Aardvark Topsites PHP <= 4.2.2 - (lostpw.php) Remote Include Exploit Aardvark Topsites PHP 4.2.2 - (path) Remote File Inclusion phpMyAgenda 3.0 Final - (rootagenda) Remote Include Aardvark Topsites PHP 4.2.2 - (lostpw.php) Remote File Inclusion X7 Chat <= 2.0 - (help_file) Remote Commands Execution Exploit X7 Chat 2.0 - (help_file) Remote Command Execution Auction <= 1.3m (phpbb_root_path) Remote File Include Exploit Auction 1.3m - (phpbb_root_path) Remote File Inclusion acFTP FTP Server <= 1.4 - (USER) Remote Buffer Overflow PoC Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit acFTP FTP Server 1.4 - (USER) Remote Buffer Overflow PoC Quake 3 Engine 1.32b - R_RemapShader() Remote Client BoF Exploit AWStats <= 6.5 - (migrate) Remote Shell Command Injection Exploit AWStats 6.5 - (migrate) Remote Shell Command Injection acFTP FTP Server <= 1.4 - (USER) Remote Denial of Service Exploit acFTP FTP Server 1.4 - (USER) Remote Denial of Service PHP-Fusion <= 6.00.306 - Multiple Vulnerabilities Jetbox CMS <= 2.1 - (relative_script_path) Remote File Inclusion Exploit ACal <= 2.2.6 - (day.php) Remote File Inclusion EQdkp <= 1.3.0 - (dbal.php) Remote File Inclusion PHP-Fusion 6.00.306 - Multiple Vulnerabilities Jetbox CMS 2.1 - (relative_script_path) Remote File Inclusion ACal 2.2.6 - (day.php) Remote File Inclusion EQdkp 1.3.0 - (dbal.php) Remote File Inclusion Microsoft Internet Explorer <= 6.0.2900 SP2 - (CSS Attribute) Denial of Service Microsoft Internet Explorer 6.0.2900 SP2 - (CSS Attribute) Denial of Service Unclassified NewsBoard <= 1.6.1 patch 1 - Arbitrary Local Inclusion Exploit Unclassified NewsBoard 1.6.1 patch 1 - Local File Inclusion Linux Kernel 2.6.13 <= 2.6.17.4 - sys_prctl() Local Root Exploit (1) Linux Kernel 2.6.13 <= 2.6.17.4 - sys_prctl() Local Root Exploit (2) Linux Kernel 2.6.13 <= 2.6.17.4 - sys_prctl() Local Root Exploit (3) Linux Kernel 2.6.13 <= 2.6.17.4 - 'sys_prctl()' Local Root Exploit (1) Linux Kernel 2.6.13 <= 2.6.17.4 - 'sys_prctl()' Local Root Exploit (2) Linux Kernel 2.6.13 <= 2.6.17.4 - 'sys_prctl()' Local Root Exploit (3) Linux Kernel 2.6.13 <= 2.6.17.4 - sys_prctl() Local Root Exploit (4) Linux Kernel 2.6.13 <= 2.6.17.4 - 'sys_prctl()' Local Root Exploit (4) Linux Kernel <= 2.6.17.4 - (proc) Local Root Exploit Linux Kernel <= 2.6.17.4 - 'proc' Local Root Exploit Linux Kernel 2.4 / 2.6 (x86_64) - System Call Emulation Exploit Linux Kernel 2.4 / 2.6 x86_64) - System Call Emulation Exploit \o - Local File Inclusion (1st) Keller Web Admin CMS 0.94 Pro - Local File Inclusion (1) PulseAudio setuid (Ubuntu 9.04 & Slackware 12.2.0) - Local Privilege Escalation PulseAudio setuid (Ubuntu 9.04 / Slackware 12.2.0) - Local Privilege Escalation Linux Kernel < 2.6.36-rc6 (Redhat/Ubuntu 10.04) - pktcdvd Kernel Memory Disclosure Proof of Concept Linux Kernel < 2.6.36-rc6 (Redhat / Ubuntu 10.04) - pktcdvd Kernel Memory Disclosure Proof of Concept Linux Kernel <= 2.2.18 (RH 7.0/6.2 / 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root (1) Linux Kernel <= 2.2.18 (RH 7.0/6.2 & 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root (1) Linux/CRISv32 - Axis Communication Connect Back Shellcode (189 bytes) Django CMS 3.3.0 - (Editor Snippet) Persistent XSS Drupal RESTWS Module 7.x - Remote PHP Code Execution (Metasploit) Linux/x86 - execve /bin/sh Shellcode (19 bytes) Wowza Streaming Engine 4.5.0 - Local Privilege Escalation Wowza Streaming Engine 4.5.0 - Remote Privilege Escalation Wowza Streaming Engine 4.5.0 - Add Advanced Admin CSRF Wowza Streaming Engine 4.5.0 - Multiple XSS OpenSSHD <= 7.2p2 - Username Enumeration WordPress Video Player Plugin 1.5.16 - SQL Injection	2016-07-21 05:06:28 +00:00
Offensive Security	965b4bba8f	DB: 2016-07-20 ... 4 new exploits Microsoft Internet Explorer Object Tag Exploit (MS03-020) Microsoft Internet Explorer - Object Tag Exploit (MS03-020) ICQ Pro 2003a Password Bypass Exploit (ca1-icq.asm) ICQ Pro 2003a - Password Bypass Exploit (ca1-icq.asm) Cisco IOS IPv4 Packets Denial of Service Exploit Cisco IOS - IPv4 Packets Denial of Service Exploit Cisco IOS (using hping) Remote Denial of Service Exploit Cisco IOS - (using hping) Remote Denial of Service Exploit Microsoft Windows SQL Server Denial of Service Remote Exploit (MS03-031) Microsoft Windows SQL Server - Denial of Service Remote Exploit (MS03-031) Microsoft Windows RPC DCOM Remote Exploit (18 Targets) Microsoft Windows RPC - DCOM Remote Exploit (18 Targets) man-db 2.4.1 open_cat_stream() Local uid=man Exploit man-db 2.4.1 - open_cat_stream() Local uid=man Exploit Cisco IOS 12.x/11.x HTTP Remote Integer Overflow Exploit Cisco IOS 12.x/11.x - HTTP Remote Integer Overflow Exploit DameWare Mini Remote Control Server SYSTEM Exploit DameWare Mini Remote Control Server - SYSTEM Exploit Microsoft Internet Explorer Object Data Remote Exploit (M03-032) Microsoft Internet Explorer - Object Data Remote Exploit (M03-032) eMule/xMule/LMule OP_SERVERMESSAGE Format String Exploit eMule/xMule/LMule - OP_SERVERMESSAGE Format String Exploit Microsoft WordPerfect Document Converter Exploit (MS03-036) Microsoft WordPerfect Document Converter - Exploit (MS03-036) Roger Wilco 1.x Client Data Buffer Overflow Exploit Roger Wilco 1.x - Client Data Buffer Overflow Exploit Solaris Sadmind Default Configuration Remote Root Exploit Solaris Sadmind - Default Configuration Remote Root Exploit Microsoft Windows Messenger Service Denial of Service Exploit (MS03-043) Microsoft Windows Messenger Service - Denial of Service Exploit (MS03-043) Microsoft Exchange 2000 XEXCH50 Heap Overflow PoC (MS03-046) Microsoft Exchange 2000 - XEXCH50 Heap Overflow PoC (MS03-046) Microsoft Frontpage Server Extensions fp30reg.dll Exploit (MS03-051) Microsoft Frontpage Server Extensions - fp30reg.dll Exploit (MS03-051) Microsoft Windows Workstation Service WKSSVC Remote Exploit (MS03-049) Microsoft Windows Workstation Service - WKSSVC Remote Exploit (MS03-049) Microsoft Windows XP Workstation Service Remote Exploit (MS03-049) Microsoft Windows XP Workstation Service - Remote Exploit (MS03-049) Microsoft Windows Messenger Service Remote Exploit FR (MS03-043) Microsoft Windows Messenger Service - Remote Exploit FR (MS03-043) GateKeeper Pro 4.7 Web proxy Remote Buffer Overflow Exploit GateKeeper Pro 4.7 - Web proxy Remote Buffer Overflow Exploit Eudora 6.0.3 Attachment Spoofing Exploit (windows) Foxmail 5.0 PunyLib.dll Remote Stack Overflow Exploit Eudora 6.0.3 - Attachment Spoofing Exploit (Windows) Foxmail 5.0 - PunyLib.dll Remote Stack Overflow Exploit eSignal 7.6 STREAMQUOTE Remote Buffer Overflow Exploit eSignal 7.6 - STREAMQUOTE Remote Buffer Overflow Exploit OpenBSD 2.6 - / 2.7ftpd Remote Exploit OpenBSD 2.6 / 2.7ftpd - Remote Exploit Redhat 6.1 - / 6.2 TTY Flood Users Exploit Redhat 6.1 / 6.2 - TTY Flood Users Exploit Solaris 2.6 - / 7 / 8 Lock Users Out of mailx Exploit Solaris 2.6 / 7 / 8 - Lock Users Out of mailx Exploit Solaris 2.5 - / 2.5.1 getgrnam() Local Overflow Exploit Solaris 2.5 / 2.5.1 - getgrnam() Local Overflow Exploit Solaris 7 - / 8-beta arp Local Overflow Exploit Solaris 7 / 8-beta - arp Local Overflow Exploit Solaris 2.6 - / 2.7 /usr/bin/write Local Overflow Exploit Solaris 2.6 / 2.7 - /usr/bin/write Local Overflow Exploit Cisco Multiple Products Automated Exploit Tool Cisco Multiple Products - Automated Exploit Tool Microsoft Internet Explorer (11 bytes) Denial of Service Exploit Microsoft Internet Explorer - Denial of Service Exploit (11 bytes) PHP <= 4.3.7/ 5.0.0RC3 - memory_limit Remote Exploit PHP <= 4.3.7/5.0.0RC3 - memory_limit Remote Exploit VisualBoyAdvanced 1.7.x - Local Shell Exploit (non suid) (updated) VisualBoyAdvanced 1.7.x - Local Shell Exploit (non suid) GoodTech Telnet Server < 5.0.7 - Remote BoF Exploit (updated) GoodTech Telnet Server < 5.0.7 - Remote BoF Exploit (2) WebAPP 0.9.9.2.1 - Remote Command Execution Exploit (2nd updated) WebAPP 0.9.9.2.1 - Remote Command Execution Exploit (1st) WebAPP 0.9.9.2.1 - Remote Command Execution Exploit (2) WebAPP 0.9.9.2.1 - Remote Command Execution Exploit (1) Maxwebportal <= 1.36 password.asp Change Password Exploit (3 - perl) Maxwebportal <= 1.36 password.asp Change Password Exploit (2 - php) Maxwebportal <= 1.36 password.asp Change Password Exploit (1 - html) Maxwebportal <= 1.36 password.asp Change Password Exploit (3) (perl) Maxwebportal <= 1.36 password.asp Change Password Exploit (2) (php) Maxwebportal <= 1.36 password.asp Change Password Exploit (1) (html) ProRat Server <= 1.9 - (Fix-2) Buffer Overflow Crash Exploit ProRat Server <= 1.9 (Fix-2) - Buffer Overflow Crash Exploit Microsoft Windows DTC Remote Exploit (PoC) (MS05-051) (updated) Microsoft Windows - DTC Remote Exploit (PoC) (MS05-051) (2) phpBB <= 2.0.18 - Remote Bruteforce/Dictionary Attack Tool (updated) phpBB <= 2.0.18 - Remote Bruteforce/Dictionary Attack Tool (2) Microsoft Windows - ACLs Local Privilege Escalation Exploit (Updated) Microsoft Windows - ACLs Local Privilege Escalation Exploit (2) HPE <= 1.0 - (HPEinc) Remote File Include Vulnerabilities (updated) HPE <= 1.0 - (HPEinc) Remote File Include Vulnerabilities (2) phpBB Journals System Mod 1.0.2 [RC2] - Remote File Include Exploit phpBB Journals System Mod 1.0.2 RC2 - Remote File Include Exploit Mozilla Firefox <= 1.5.0.7/ 2.0 - (createRange) Remote DoS Exploit Mozilla Firefox <= 1.5.0.7/2.0 - (createRange) Remote DoS Exploit BrowseDialog Class (ccrpbds6.dll) Multiple Methods DoS Exploit BrowseDialog Class - (ccrpbds6.dll) Multiple Methods DoS Exploit Asterisk <= 1.2.15 - / 1.4.0 pre-auth Remote Denial of Service Exploit Asterisk <= 1.2.15 / 1.4.0 - pre-auth Remote Denial of Service Exploit PHP < 4.4.5 - / 5.2.1 php_binary Session Deserialization Information Leak PHP < 4.4.5 - / 5.2.1 WDDX Session Deserialization Information Leak PHP < 4.4.5 - / 5.2.1 - php_binary Session Deserialization Information Leak PHP < 4.4.5 - / 5.2.1 - WDDX Session Deserialization Information Leak PHP <= 4.4.6 - / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit PHP <= 4.4.6 / 5.2.1 - array_user_key_compare() ZVAL dtor Local Exploit PHP <= 4.4.6 - / 5.2.1 ext/gd Already Freed Resources Usage Exploit PHP <= 4.4.6 / 5.2.1 - ext/gd Already Freed Resources Usage Exploit Asterisk <= 1.2.16 - / 1.4.1 SIP INVITE Remote Denial of Service Exploit Asterisk <= 1.2.16 / 1.4.1 - SIP INVITE Remote Denial of Service Exploit PHP < 4.4.5 - / 5.2.1 _SESSION unset() Local Exploit PHP < 4.4.5 - / 5.2.1 _SESSION Deserialization Overwrite Exploit PHP < 4.4.5 - / 5.2.1 - _SESSION unset() Local Exploit PHP < 4.4.5 - / 5.2.1 - _SESSION Deserialization Overwrite Exploit PHP 4.4.5 - / 4.4.6 session_decode() Double Free Exploit PoC PHP 4.4.5 / 4.4.6 - session_decode() Double Free Exploit PoC XOOPS Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit XOOPS Module MyAds Bug Fix <= 2.04jp - (index.php) SQL Injection Exploit Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities Kaqoo Auction - (install_root) Multiple Remote File Include Vulnerabilities Asterisk < 1.2.22 - / 1.4.8 / 2.2.1 chan_skinny Remote Denial of Service Asterisk < 1.2.22 / 1.4.8 / 2.2.1 - chan_skinny Remote Denial of Service Weblogicnet (files_dir) Multiple Remote File Inclusion Vulnerabilities Weblogicnet - (files_dir) Multiple Remote File Inclusion Vulnerabilities PHP <= 4.4.7 - / 5.2.3 MySQL/MySQLi Safe Mode Bypass PHP <= 4.4.7 / 5.2.3 - MySQL/MySQLi Safe Mode Bypass EB Design Pty Ltd (EBCRYPT.DLL 2.0) Multiple Remote Vulnerabilites EB Design Pty Ltd - (EBCRYPT.DLL 2.0) Multiple Remote Vulnerabilites Lama Software (14.12.2007) Multiple Remote File Inclusion Vulnerabilities Lama Software 14.12.2007 - Multiple Remote File Inclusion Vulnerabilities sCssBoard (pwnpack) Multiple Versions Remote Exploit sCssBoard - (pwnpack) Multiple Versions Remote Exploit Data Dynamics ActiveBar (Actbar3.ocx 3.2) Multiple Insecure Methods Data Dynamics ActiveBar (Actbar3.ocx 3.2) - Multiple Insecure Methods Shader TV (Beta) Multiple Remote SQL Injection Vulnerabilities Shader TV (Beta) - Multiple Remote SQL Injection Vulnerabilities Keller Web Admin CMS 0.94 Pro Local File Inclusion Keller Web Admin CMS 0.94 Pro - Local File Inclusion Keller Web Admin CMS 0.94 Pro Local File Inclusion (1st) \o - Local File Inclusion (1st) HRS Multi (picture_pic_bv.asp key) Blind SQL Injection Exploit HRS Multi - (picture_pic_bv.asp key) Blind SQL Injection Exploit Kasra CMS (index.php) Multiple SQL Injection Vulnerabilities Kasra CMS - (index.php) Multiple SQL Injection Vulnerabilities Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - < UDEV 1.4.1 Local Privilege Escalation Exploit (1) Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - UDEV < 1.4.1 Local Privilege Escalation Exploit (1) Linux Kernel 2.6.x (<= 2.6.20 / <= 2.6.24 / <= 2.6.27_7-10) (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit Linux Kernel <= 2.6.20 / <= 2.6.24 / <= 2.6.27_7-10 (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit Mac OS X - Java applet Remote Deserialization Remote PoC (Updated) Mac OS X - Java applet Remote Deserialization Remote PoC (2) ZaoCMS (user_updated.php) Remote Change Password Exploit ZaoCMS - (user_updated.php) Remote Change Password Exploit eZoneScripts Hotornot2 Script (Admin Bypass) Multiple Remote Vulnerabilities eZoneScripts Hotornot2 Script - (Admin Bypass) Multiple Remote Vulnerabilities phpdirectorysource (XSS/SQL) Multiple Vulnerabilities phpdirectorysource - (XSS/SQL) Multiple Vulnerabilities Million-Dollar Pixel Ads Platinum (SQL/XSS) Multiple Vulnerabilities Million-Dollar Pixel Ads Platinum - (SQL/XSS) Multiple Vulnerabilities garagesalesjunkie (SQL/XSS) Multiple Vulnerabilities garagesalesjunkie - (SQL/XSS) Multiple Vulnerabilities Miniweb 2.0 Module Publisher (bSQL-XSS) Multiple Vulnerabilities Miniweb 2.0 Module Publisher - (bSQL/XSS) Multiple Vulnerabilities PHP Script Forum Hoster (Topic Delete/XSS) Multiple Vulnerabilities PHP Script Forum Hoster - (Topic Delete/XSS) Multiple Vulnerabilities Linux Kernel 2.x - sock_sendpage() Local Root Exploit (Android) Linux Kernel 2.x - 'sock_sendpage()' Local Root Exploit (Android) GDivX Zenith Player AviFixer Class (fix.dll 1.0.0.1) Buffer Overflow PoC GDivX Zenith Player AviFixer Class - (fix.dll 1.0.0.1) Buffer Overflow PoC Linux Kernel 2.4.x / 2.6.x (CentOS 4.8/5.3 / RHEL 4.8/5.3 / SUSE 10 SP2/11 / Ubuntu 8.10) - sock_sendpage() Local Root (PPC) Linux Kernel 2.4.x / 2.6.x (CentOS 4.8/5.3 / RHEL 4.8/5.3 / SUSE 10 SP2/11 / Ubuntu 8.10) - 'sock_sendpage()' Local Root (PPC) phpMySite (XSS/SQLi) Multiple Vulnerabilities phpMySite - (XSS/SQLi) Multiple Vulnerabilities (Tod Miller's) Sudo/SudoEdit 1.6.x / 1.7.x (<= 1.6.9p21 / <= 1.7.2p4) - Local Root Exploit (Tod Miller's) Sudo/SudoEdit <= 1.6.9p21 / <= 1.7.2p4 - Local Root Exploit Preisschlacht Multi Liveshop System SQL Injection (seite&aid) index.php Preisschlacht Multi Liveshop System - SQL Injection (seite&aid) index.php quality point 1.0 newsfeed (SQL/XSS) Multiple Vulnerabilities quality point 1.0 newsfeed - (SQL/XSS) Multiple Vulnerabilities Open Web Analytics 1.2.3 multi file include Open Web Analytics 1.2.3 - multi file include Scratcher (SQL/XSS) Multiple Remote Scratcher - (SQL/XSS) Multiple Remote phpscripte24 Live Shopping Multi Portal System SQL Injection Exploit phpscripte24 Live Shopping Multi Portal System - SQL Injection Exploit e-webtech (fixed_page.asp) SQL Injection e-webtech - (fixed_page.asp) SQL Injection parlic Design (SQL/XSS/HTML) Multiple Vulnerabilities parlic Design - (SQL/XSS/HTML) Multiple Vulnerabilities MileHigh Creative (SQL/XSS/HTML Injection) Multiple Vulnerabilities MileHigh Creative - (SQL/XSS/HTML Injection) Multiple Vulnerabilities CMScout (XSS/HTML Injection) Multiple Vulnerabilities CMScout - (XSS/HTML Injection) Multiple Vulnerabilities k-search (SQL/XSS) Multiple Vulnerabilities k-search - (SQL/XSS) Multiple Vulnerabilities GuestBook Script PHP (XSS/HTML Injection) Multiple Vulnerabilities GuestBook Script PHP - (XSS/HTML Injection) Multiple Vulnerabilities Max's Guestbook (HTML Injection/XSS) Multiple Vulnerabilities Max's Guestbook - (HTML Injection/XSS) Multiple Vulnerabilities Joomla Component (com_jefaqpro) Multiple Blind SQL Injection Vulnerabilities Joomla Component (com_jefaqpro) - Multiple Blind SQL Injection Vulnerabilities Joomla Component (com_restaurantguide) Multiple Vulnerabilities Joomla Component - (com_restaurantguide) Multiple Vulnerabilities TradeMC E-Ticaret (SQL/XSS) Multiple Vulnerabilities TradeMC E-Ticaret - (SQL/XSS) Multiple Vulnerabilities Projekt Shop (details.php) Multiple SQL Injection Vulnerabilities Projekt Shop - (details.php) Multiple SQL Injection Vulnerabilities CakePHP <= 1.3.5 - / 1.2.8 unserialize() CakePHP <= 1.3.5 / 1.2.8 - unserialize() Rae Media Real Estate Multi Agent SQL Injection Rae Media Real Estate Multi Agent - SQL Injection Solaris ypupdated Command Execution Solaris - ypupdated Command Execution CakePHP <= 1.3.5 - / 1.2.8 Cache Corruption Exploit CakePHP <= 1.3.5 / 1.2.8 - Cache Corruption Exploit Joomla HM-Community (com_hmcommunity) Multiple Vulnerabilities Joomla HM-Community - (com_hmcommunity) Multiple Vulnerabilities Siemens SIMATIC WinCC Flexible (Runtime) Multiple Vulnerabilities Siemens SIMATIC WinCC Flexible (Runtime) - Multiple Vulnerabilities CyberLink Multiple Products File Project Handling Stack Buffer Overflow PoC CyberLink Multiple Products - File Project Handling Stack Buffer Overflow PoC Ruby on Rails ActionPack Inline ERB Code Execution Ruby on Rails ActionPack Inline ERB - Code Execution HP-UX 10/11_IRIX 3/4/5/6_OpenSolaris build snv_Solaris 8/9/10_SunOS 4.1 RPC.YPUpdated Command Execution (1) HP-UX 10/11_IRIX 3/4/5/6_OpenSolaris build snv_Solaris 8/9/10_SunOS 4.1 RPC.YPUpdated Command Execution (2) HP-UX 10/11_IRIX 3/4/5/6_OpenSolaris build snv_Solaris 8/9/10_SunOS 4.1 - RPC.YPUpdated Command Execution (1) HP-UX 10/11_IRIX 3/4/5/6_OpenSolaris build snv_Solaris 8/9/10_SunOS 4.1 - RPC.YPUpdated Command Execution (2) ASTPP VoIP Billing (4cf207a) Multiple Vulnerabilities ASTPP VoIP Billing (4cf207a) - Multiple Vulnerabilities Drummond Miles A1Stats 1.0 a1disp2.cgi Traversal Arbitrary File Read Drummond Miles A1Stats 1.0 a1disp3.cgi Traversal Arbitrary File Read Drummond Miles A1Stats 1.0 a1disp4.cgi Traversal Arbitrary File Read Drummond Miles A1Stats 1.0 - a1disp2.cgi Traversal Arbitrary File Read Drummond Miles A1Stats 1.0 - a1disp3.cgi Traversal Arbitrary File Read Drummond Miles A1Stats 1.0 - a1disp4.cgi Traversal Arbitrary File Read Symantec Norton Personal Firewall 2002/ Kaspersky Labs Anti-Hacker 1.0/BlackIce Server Protection 3.5/BlackICE Defender 2.9 - Auto Block DoS Weakness Symantec Norton Personal Firewall 2002/Kaspersky Labs Anti-Hacker 1.0/BlackIce Server Protection 3.5/BlackICE Defender 2.9 - Auto Block DoS Weakness Oracle WebCenter Sites (FatWire Content Server) Multiple Vulnerabilities Oracle WebCenter Sites (FatWire Content Server) - Multiple Vulnerabilities Microsoft URLScan 2.5/ RSA Security SecurID 5.0 Configuration Enumeration Weakness Microsoft URLScan 2.5/RSA Security SecurID 5.0 - Configuration Enumeration Weakness WinSyslog Interactive Syslog Server 4.21/ long Message Remote Denial of Service WinSyslog Interactive Syslog Server 4.21 - long Message Remote Denial of Service VocalTec VGW120/ VGW480 Telephony Gateway Remote H.225 - Denial of Service VocalTec VGW120/VGW480 Telephony Gateway Remote H.225 - Denial of Service Web Wiz Multiple Products SQL Injection Web Wiz Multiple Products - SQL Injection RealNetworks Multiple Products Multiple Buffer Overflow Vulnerabilities RealNetworks Multiple Products - Multiple Buffer Overflow Vulnerabilities Geodesic Solutions Multiple Products index.php b Parameter SQL Injection Geodesic Solutions Multiple Products - index.php b Parameter SQL Injection HP ProCurve Manager SNAC UpdateDomainControllerServlet File Upload HP ProCurve Manager - SNAC UpdateDomainControllerServlet File Upload Linux Kernel 2.6.x (<= 2.6.17.7) - NFS and EXT3 Combination Remote Denial of Service Linux Kernel <= 2.6.17.7 - NFS and EXT3 Combination Remote Denial of Service Apache HTTP Server (<= 1.3.35 / <= 2.0.58 / <= 2.2.2) - Arbitrary HTTP Request Headers Security Weakness Apache HTTP Server <= 1.3.35 / <= 2.0.58 / <= 2.2.2 - Arbitrary HTTP Request Headers Security Weakness Symantec Multiple Products SymEvent Driver Local Denial of Service Symantec Multiple Products - SymEvent Driver Local Denial of Service FreeBSD 5.x I386_Set_LDT() Multiple Local Denial of Service Vulnerabilities FreeBSD 5.x I386_Set_LDT() - Multiple Local Denial of Service Vulnerabilities Apache + PHP 5.x (< 5.3.12 & < 5.4.2) - cgi-bin Remote Code Execution Exploit Apache + PHP < 5.3.12 & < 5.4.2 - cgi-bin Remote Code Execution Exploit Apache + PHP 5.x (< 5.3.12 & < 5.4.2) - Remote Code Execution (Multithreaded Scanner) Apache + PHP < 5.3.12 & < 5.4.2 - Remote Code Execution (Multithreaded Scanner) PHP Multi User Randomizer 2006.09.13 Configure_Plugin.TPL.php Cross-Site Scripting PHP Multi User Randomizer 2006.09.13 - Configure_Plugin.TPL.php Cross-Site Scripting Symantec Multiple Products SPBBCDrv Driver Local Denial of Service Symantec Multiple Products - SPBBCDrv Driver Local Denial of Service Exponent CMS 0.96.5/ 0.96.6 magpie_debug.php url Parameter XSS Exponent CMS 0.96.5/ 0.96.6 magpie_slashbox.php rss_url Parameter XSS Exponent CMS 0.96.5/ 0.96.6 iconspopup.php icodir Variable Traversal Arbitrary Directory Listing Exponent CMS 0.96.5/0.96.6 - magpie_debug.php url Parameter XSS Exponent CMS 0.96.5/0.96.6 - magpie_slashbox.php rss_url Parameter XSS Exponent CMS 0.96.5/0.96.6 - iconspopup.php icodir Variable Traversal Arbitrary Directory Listing Simple OS CMS 0.1c_beta 'login.php' SQL Injection Simple OS CMS 0.1c_beta - 'login.php' SQL Injection WebcamXP 3.72.440/4.05.280 beta /pocketpc camnum Variable Arbitrary Memory Disclosure WebcamXP 3.72.440/4.05.280 beta /show_gallery_pic id Variable Arbitrary Memory Disclosure WebcamXP 3.72.440/4.05.280 beta - /pocketpc camnum Variable Arbitrary Memory Disclosure WebcamXP 3.72.440/4.05.280 beta - /show_gallery_pic id Variable Arbitrary Memory Disclosure Adobe Flash Player 8/ 9.0.x - SWF File 'DeclareFunction2' ActionScript Tag Remote Code Execution Adobe Flash Player 8/9.0.x - SWF File 'DeclareFunction2' ActionScript Tag Remote Code Execution IBM Maximo 4.1/ 5.2 - 'debug.jsp' HTML Injection And Information Disclosure Vulnerabilities IBM Maximo 4.1/5.2 - 'debug.jsp' HTML Injection And Information Disclosure Vulnerabilities Symantec Multiple Products Client Proxy ActiveX (CLIproxy.dll) Remote Overflow Symantec Multiple Products - Client Proxy ActiveX (CLIproxy.dll) Remote Overflow Blog Ink (Blink) Multiple SQL Injection Vulnerabilities Blog Ink (Blink) - Multiple SQL Injection Vulnerabilities PHP Scripts Now Multiple Products bios.php rank Parameter XSS PHP Scripts Now Multiple Products bios.php rank Parameter SQL Injection PHP Scripts Now Multiple Products - bios.php rank Parameter XSS PHP Scripts Now Multiple Products - bios.php rank Parameter SQL Injection cformsII 11.5/ 13.1 Plugin for WordPress - 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities cformsII 11.5/13.1 Plugin for WordPress - 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities Native Instruments Multiple Products DLL Loading Arbitrary Code Execution Native Instruments Multiple Products - DLL Loading Arbitrary Code Execution PHP 5.x (< 5.6.2) - Bypass disable_functions Exploit (Shellshock) PHP < 5.6.2 - Bypass disable_functions Exploit (Shellshock) PHP 5.x (< 5.3.6) 'Zip' Extension - 'zip_fread()' Function Denial of Service PHP 5.x (< 5.3.6) OpenSSL Extension - openssl_encrypt Function Plaintext Data Memory Leak DoS PHP 5.x (< 5.3.6) OpenSSL Extension - openssl_decrypt Function Ciphertext Data Memory Leak DoS PHP < 5.3.6 'Zip' Extension - 'zip_fread()' Function Denial of Service PHP < 5.3.6 OpenSSL Extension - openssl_encrypt Function Plaintext Data Memory Leak DoS PHP < 5.3.6 OpenSSL Extension - openssl_decrypt Function Ciphertext Data Memory Leak DoS ManageEngine Multiple Products Authenticated File Upload ManageEngine Multiple Products - Authenticated File Upload BlueSoft Multiple Products Multiple SQL Injection Vulnerabilities BlueSoft Multiple Products - Multiple SQL Injection Vulnerabilities Ay Computer Multiple Products Multiple SQL Injection Vulnerabilities Ay Computer Multiple Products - Multiple SQL Injection Vulnerabilities net4visions Multiple Products 'dir' parameters Multiple Cross Site Scripting Vulnerabilities net4visions Multiple Products - 'dir' parameters Multiple Cross Site Scripting Vulnerabilities Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Privilege Escalation (Access /etc/shadow) Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Privilege Escalation (Access /etc/shadow) Webify Multiple Products Multiple HTML Injection and Local File Include Vulnerabilities Webify Multiple Products - Multiple HTML Injection and Local File Include Vulnerabilities AirLive Multiple Products OS Command Injection AirLive Multiple Products - OS Command Injection Sciretech Multiple Products Multiple SQL Injection Vulnerabilities Sciretech Multiple Products - Multiple SQL Injection Vulnerabilities AlienVault Open Source SIEM (OSSIM) Multiple Cross Site Scripting Vulnerabilities AlienVault Open Source SIEM (OSSIM) - Multiple Cross Site Scripting Vulnerabilities Windows x86 - URLDownloadToFileA()+SetFileAttributesA()+WinExec()+ExitProcess() Shellcode (394 bytes) Windows x86 - URLDownloadToFileA() + SetFileAttributesA() + WinExec() + ExitProcess() Shellcode (394 bytes) Riverbed SteelCentral NetProfiler/NetExpress Remote Code Execution Riverbed SteelCentral NetProfiler/NetExpress - Remote Code Execution Linux/x86-64 - Syscall Persistent Bind Shell + (Multi-terminal) + Password + Daemon (83_ 148_ 177 bytes) Axis Communications MPQT/PACS 5.20.x - Server Side Include (SSI) Daemon Remote Format String Exploit NewsP Free News Script 1.4.7 - User Credentials Disclosure newsp.eu PHP Calendar Script 1.0 - User Credentials Disclosure	2016-07-20 05:02:55 +00:00
Offensive Security	acd30ed451	DB: 2016-07-19	2016-07-19 06:38:52 +00:00
Offensive Security	0d018828aa	DB: 2016-07-15	2016-07-15 06:29:45 +00:00
Offensive Security	fc4bc08825	DB: 2016-07-12 ... 15 new exploits Apache HTTPd - Arbitrary Long HTTP Headers DoS Apache HTTPd - Arbitrary Long HTTP Headers DoS (Perl) Apache HTTPd - Arbitrary Long HTTP Headers DoS Apache HTTPd - Arbitrary Long HTTP Headers DoS (C) Mercury Mail 4.01 (Pegasus) IMAP Buffer Overflow Exploit (c code) Mercury Mail 4.01 - (Pegasus) IMAP Buffer Overflow Exploit (C) (1) Mercury Mail 4.01 - (Pegasus) IMAP Buffer Overflow (2) (c code) Mercury Mail 4.01 - (Pegasus) IMAP Buffer Overflow (C) (2) Webhints <= 1.03 - Remote Command Execution Exploit (perl code) (1) Webhints <= 1.03 - Remote Command Execution Exploit (c code) (2) Webhints <= 1.03 - Remote Command Execution Exploit (perl code) (3) Webhints <= 1.03 - Remote Command Execution Exploit (Perl) (1) Webhints <= 1.03 - Remote Command Execution Exploit (C) (2) Webhints <= 1.03 - Remote Command Execution Exploit (Perl) (3) phpBB <= 2.0.15 - Register Multiple Users Denial of Service (Perl Code) phpBB <= 2.0.15 - Register Multiple Users Denial of Service (C Code) phpBB <= 2.0.15 - Register Multiple Users Denial of Service (Perl) phpBB <= 2.0.15 - Register Multiple Users Denial of Service (C) SimpleBBS <= 1.1 - Remote Commands Execution Exploit (c code) SimpleBBS <= 1.1 - Remote Commands Execution Exploit (C) Xmame 0.102 (-lang) Local Buffer Overflow Exploit (c code) Xmame 0.102 - (lang) Local Buffer Overflow Exploit (C) aFAQ 1.0 (faqDsp.asp catcode) Remote SQL Injection Vulnerability aFAQ 1.0 - (faqDsp.asp catcode) Remote SQL Injection Vulnerability Apple CFNetwork HTTP Response Denial of Service Exploit (rb code) Apple CFNetwork - HTTP Response Denial of Service Exploit (RB) PhpBlock a8.4 (PATH_TO_CODE) Remote File Inclusion Vulnerability PhpBlock a8.4 - (PATH_TO_CODE) Remote File Inclusion Vulnerability WebPortal CMS <= 0.7.4 (code) Remote Code Execution Vulnerability WebPortal CMS <= 0.7.4 - (code) Remote Code Execution Vulnerability emergecolab 1.0 (sitecode) Local File Inclusion Vulnerability emergecolab 1.0 - (sitecode) Local File Inclusion Vulnerability Simple Machines Forums (BBCode) Cookie Stealing Vulnerability Simple Machines Forums - (BBCode) Cookie Stealing Vulnerability Movie PHP Script 2.0 (init.php anticode) Code Execution Vulnerability Movie PHP Script 2.0 - (init.php anticode) Code Execution Vulnerability Kjtechforce mailman b1 (code) SQL Injection Delete Row Vulnerability Kjtechforce mailman b1 - (code) SQL Injection Delete Row Vulnerability WordPress Activity Log Plugin 2.3.1 - Persistent XSS IPS Community Suite 4.1.12.3 - PHP Code Injection Adobe Flash - ATF Processing Overflow Adobe Flash - JXR Processing Double Free Adobe Flash - LMZA Property Decoding Heap Corruption Adobe Flash - ATF Image Packing Overflow Tiki Wiki 15.1 - Unauthenticated File Upload Vulnerability (msf) Ho' Detector (Promiscuous mode detector shellcode) (56 bytes) Ho' Detector - Promiscuous mode detector shellcode (56 bytes) MS16-016 mrxdav.sys WebDav Local Privilege Escalation Ruby on Rails ActionPack Inline ERB Code Execution Lan Messenger sending PM Buffer Overflow (UNICODE) - Overwrite SEH Lan Messenger - sending PM Buffer Overflow (UNICODE) Overwrite SEH Tiki Wiki CMS 15.0 - Arbitrary File Download Belkin Router AC1200 Firmware 1.00.27 - Authentication Bypass WordPress All in One SEO Pack Plugin 2.3.6.1 - Persistent XSS Device42 WAN Emulator 2.3 Traceroute Command Injection Device42 WAN Emulator 2.3 Ping Command Injection Device42 WAN Emulator 2.3 - Traceroute Command Injection Device42 WAN Emulator 2.3 - Ping Command Injection Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash Dell KACE K1000 File Upload Dell KACE K1000 - File Upload Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection Dell SonicWALL Scrutinizer 11.01 - methodDetail SQL Injection Valve Steam 3.42.16.13 - Local Privilege Escalation Beauty Parlour & SPA Saloon Management System - Blind SQL Injection Clinic Management System - Blind SQL Injection Linux x86-64 Continuously-Probing Reverse Shell via Socket + Port-range + Password - 172 Bytes	2016-07-12 05:05:04 +00:00
Offensive Security	76bc268c80	DB: 2016-07-11	2016-07-11 05:06:57 +00:00
Offensive Security	29f0764fac	DB: 2016-07-09 ... 9 new exploits Joomla <= 1.0.9 (Weblinks) Remote Blind SQL Injection Exploit Joomla <= 1.0.9 - (Weblinks) Remote Blind SQL Injection Exploit Microsoft Excel Malformed FEATHEADER Record Exploit (MS09-067) Microsoft Excel - Malformed FEATHEADER Record Exploit (MS09-067) Seo Panel 2.2.0 Cookie-Rendered Persistent XSS Vulnerability Seo Panel 2.2.0 - Cookie-Rendered Persistent XSS Vulnerability VLC AMV Dangling Pointer Vulnerability VLC - AMV Dangling Pointer Vulnerability Movable Type 4.2x_ 4.3x Web Upgrade Remote Code Execution Movable Type 4.2x_ 4.3x - Web Upgrade Remote Code Execution Roxio CinePlayer 3.2 SonicDVDDashVRNav.DLL ActiveX Control Remote Buffer Overflow Vulnerability Roxio CinePlayer 3.2 - SonicDVDDashVRNav.DLL ActiveX Control Remote Buffer Overflow Vulnerability HP Client Automation Command Injection HP Client - Automation Command Injection Persistent Systems Client Automation Command Injection RCE Persistent Systems Client Automation - Command Injection RCE ElasticSearch Unauthenticated Remote Code Execution ElasticSearch - Unauthenticated Remote Code Execution ElasticSearch Search Groovy Sandbox Bypass ElasticSearch - Search Groovy Sandbox Bypass Fedora abrt Race Condition Exploit Fedora - abrt Race Condition Exploit ProFTPD 1.3.5 Mod_Copy Command Execution ProFTPD 1.3.5 - Mod_Copy Command Execution Windows ClientCopyImage Win32k Exploit Microsoft Windows - ClientCopyImage Win32k Exploit Wolf CMS Arbitrary File Upload To Command Execution Wolf CMS - Arbitrary File Upload To Command Execution Windows Kernel - Bitmap Handling Use-After-Free (MS15-061) Windows Kernel - Bitmap Handling Use-After-Free (MS15-061) (1) Kaseya VSA uploader.aspx Arbitrary File Upload Kaseya Virtual System Administrator (VSA) - uploader.aspx Arbitrary File Upload Samsung Galaxy S6 - Samsung Gallery Bitmap Decoding Crash Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash Windows - Sandboxed Mount Reparse Point Creation Mitigation Bypass Redux 2 (MS16-008) Windows - Sandboxed Mount Reparse Point Creation Mitigation Bypass Redux (MS16-008) Windows - Sandboxed Mount Reparse Point Creation Mitigation Bypass Redux (2) (MS16-008) Windows - Sandboxed Mount Reparse Point Creation Mitigation Bypass Redux (1) (MS16-008) Microsoft Windows 7 SP1 x86 - WebDAV Privilege Escalation (MS16-016) Microsoft Windows 7 SP1 x86 - WebDAV Privilege Escalation (MS16-016) (1) NETGEAR ProSafe Network Management System 300 Arbitrary File Upload NETGEAR ProSafe Network Management System 300 - Arbitrary File Upload Windows - Secondary Logon Standard Handles Missing Sanitization Privilege Escalation (MS16-032) Microsoft Windows 8.1/10 - Secondary Logon Standard Handles Missing Sanitization Privilege Escalation (MS16-032) OS X / iOS Suid Binary Logic Error Kernel Code Execution OS X / iOS - Suid Binary Logic Error Kernel Code Execution Novell ServiceDesk Authenticated File Upload Novell ServiceDesk - Authenticated File Upload Mach Race OS X Local Privilege Escalation Exploit Mach Race OS X - Local Privilege Escalation Exploit Oracle ATS Arbitrary File Upload Oracle Application Testing Suite (ATS) - Arbitrary File Upload Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (Metasploit) HP Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (Metasploit) WordPress Lazy Content Slider Plugin 3.4 - (Add Catetory) CSRF Hide.Me VPN Client 1.2.4 - Privilege Escalation InstantHMI 6.1 - Privilege Escalation Microsoft Process Kill Utility (kill.exe) 6.3.9600.17298 - Crash PoC Microsoft WinDbg logviewer.exe - Crash PoC Linux x86 TCP Reverse Shellcode - 75 bytes php Real Estate Script 3 - Arbitrary File Disclosure CyberPower Systems PowerPanel 3.1.2 - XXE Out-Of-Band Data Retrieval Streamo Online Radio And TV Streaming CMS - SQL Injection	2016-07-09 05:06:22 +00:00
Offensive Security	c7daadde64	DB: 2016-07-08 ... 8 new exploits WordPress Q and A (Focus Plus) FAQ Plugin 1.3.9.7 - Multiple Vulnerabilities WordPress Huge-IT Image Gallery Plugin 1.8.9 - Multiple Vulnerabilities Codoforum 3.4 - Stored Cross-Site Scripting MediaCoder 0.8.43.5830 - .m3u Buffer Overflow SEH Exploit VUPlayer 2.49 - .m3u Buffer Overflow Exploit (Win 7 DEP Bypass) Core FTP LE 2.2 - Path Field Local Buffer Overflow OPAC KpwinSQL - Multiple Vulnerabilities GE Proficy HMI/SCADA CIMPLICITY 8.2 - Local Privilege Escalation	2016-07-08 05:06:14 +00:00
Offensive Security	52cf6a3185	DB: 2016-07-07 ... 9 new exploits CIMA DocuClass ECM - Multiple Vulnerabilities 24online SMS_2500i 8.3.6 build 9.0 - SQL Injection Linux 64bit Ncat Shellcode (SSL_ MultiChannel_ Persistant_ Fork_ IPv4/6_ Password) - 176 bytes Advanced Webhost Billing System (AWBS) 2.9.6 - Multiple Vulnerabilities PaKnPost Pro 1.14 - Multiple Vulnerabilities GNU Wget < 1.18 - Arbitrary File Upload/Remote Code Execution OpenFire 3.10.2 - 4.0.1 - Multiple Vulnerabilities Samsung Android JACK - Privilege Escalation Nagios XI Chained Remote Code Execution	2016-07-07 05:06:28 +00:00
Offensive Security	b530dd470e	DB: 2016-07-05 ... 8 new exploits BigDump - (Cross Site Scripting/SQL Injection/Arbitrary File Upload) Multiple Vulnerabilities BigDump 0.29b and 0.32b - Multiple Vulnerabilities Linux - netfilter IPT_SO_SET_REPLACE Memory Corruption Linux Kernel 3.10_ 3.18 + 4.4 - netfilter IPT_SO_SET_REPLACE Memory Corruption Debian Exim - Spool Local Root Privilege Escalation Ubuntu 16.04 local root exploit - netfilter target_offset OOB Linux Kernel 4.4.0-2 (Ubuntu 16.04) - netfilter target_offset OOB Local Root Exploit XpoLog Center 6 - Remote Command Execution CSRF Ktools Photostore 4.7.5 - Multiple Vulnerabilities Linux 64bit NetCat Bind Shell Shellcode - 64 bytes WordPress Real3D FlipBook Plugin - Multiple Vulnerabilities Linux x86 TCP Bind Shell Port 4444 - 98 bytes WebCalendar 1.2.7 - Multiple Vulnerabilities eCardMAX 10.5 - Multiple Vulnerabilities	2016-07-05 05:06:28 +00:00
Offensive Security	58c236d738	DB: 2016-07-02 ... 1 new exploits Sudo 1.3.1 - 1.6.8p - Pathname Validation Local Root Exploit (OpenBSD) Sudo 1.3.1 - 1.6.8p (OpenBSD) - Pathname Validation Local Root Exploit Seattle Lab Software Emurl 2.0 Email Account Access Vulnerability Seattle Lab Software Emurl 2.0 - Email Account Access Vulnerability Phoenix Exploit Kit - Remote Code Execution	2016-07-02 05:02:45 +00:00
Offensive Security	0fddce018e	DB: 2016-07-01 ... 2 new exploits phpBookingCalendar <= 1.0c - (details_view.php) Remote SQL Injection TFT Gallery <= 0.10 - Password Disclosure Remote Exploit phpBookingCalendar 1.0c - (details_view.php) SQL Injection TFT Gallery 0.10 - Password Disclosure Remote Exploit Seattle Lab Mail 5.5 - POP3 Buffer Overflow Seattle Lab Mail (SLMail) 5.5 - POP3 Buffer Overflow Ktools Photostore 4.7.5 - Blind SQL Injection Easy RM to MP3 Converter 2.7.3.700 - (.m3u) Exploit with Universal DEP+ASLR Bypass	2016-07-01 05:05:35 +00:00
Offensive Security	f74a7dfb7e	DB: 2016-06-30 ... 13 new exploits Symantec Antivirus - Multiple Remote Memory Corruption Unpacking RAR Symantec Antivirus - Remote Stack Buffer Overflow in dec2lha Library Symantec Antivirus - Heap Overflow Modifying MIME Messages Symantec Antivirus - Integer Overflow in TNEF Decoder Symantec Antivirus - Missing Bounds Checks in dec2zip ALPkOldFormatDecompressor::UnShrink Symantec Antivirus - PowerPoint Misaligned Stream-cache Remote Stack Buffer Overflow Windows 7 SP1 x86 - Privilege Escalation (MS16-014) Lenovo ThinkPad - System Management Mode Arbitrary Code Execution Exploit Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities WordPress Ultimate Membership Pro Plugin 3.3 - SQL Injection Cuckoo Sandbox Guest 2.0.1 - XMLRPC Privileged Remote Code Execution Ubiquiti Administration Portal - CSRF to Remote Command Execution Concrete5 5.7.3.1 - (Application::dispatch) Local File Inclusion	2016-06-30 05:05:39 +00:00
Offensive Security	e9145685e4	DB: 2016-06-28 ... 14 new exploits Linux Netcat Reverse Shell - 32bit - 77 bytes XM Easy Personal FTP Server 5.8 - (HELP) Remote DoS Vulnerability Linux x86_64 execve Shellcode - 15 bytes WordPress Ultimate Product Catalog Plugin 3.8.6 - Arbitrary File Upload OPAC KpwinSQL - SQL Injection Magnet Networks Tesley CPVA 642 Router – Weak WPA-PSK Passphrase Algorithm Option CloudGate CG0192-11897 - Multiple Vulnerabilities Kagao 3.0 - Multiple Vulnerabilities Panda Security Multiple Products - Privilege Escalation MyLittleForum 2.3.5 - PHP Command Injection iBilling 3.7.0 - Stored and Reflected XSS PInfo 0.6.9-5.1 - Local Buffer Overflow BigTree CMS 4.2.11 - SQL Injection HNB 1.9.18-10 - Local Buffer Overflow Linux x86 /bin/sh Shellcode + ASLR Bruteforce SugarCRM 6.5.18 - PHP Code Injection Riverbed SteelCentral NetProfiler & NetExpress 10.8.7 - Multiple Vulnerabilities	2016-06-28 05:03:46 +00:00
Offensive Security	3739831fb2	DB: 2016-06-24 ... 16 new exploits Banner Exchange Script 1.0 - (targetid) Blind SQL Injection Vulnerability PHP 5.3.3 - ibase_gen_id() off-by-one Overflow Vulnerability ARM Bindshell port 0x1337 ARM Bind Connect UDP Port 68 ARM Loader Port 0x1337 ARM ifconfig eth0 and Assign Address ARM Bindshell port 0x1337 ARM Bind Connect UDP Port 68 ARM Loader Port 0x1337 ARM ifconfig eth0 and Assign Address G Data TotalCare 2011 - NtOpenKey Race Condition Vulnerability ImpressPages CMS 3.8 - Stored XSS Vulnerability Seagate BlackArmor NAS sg2000-2000.1331 - Cross-Site Request Forgery Barracuda Networks #35 Web Firewall 610 6.0.1 - Filter Bypass & Persistent Vulnerability Linux Netcat Reverse Shell - 32bit - 77 bytes PrestaShop 1.4.4.1 modules/mondialrelay/kit_mondialrelay/RechercheDetailPointRelais_ajax.php Multiple Parameter XSS PrestaShop 1.4.4.1 mondialrelay (kit_mondialrelay) - Multiple Parameter XSS Getsimple CMS 3.3.10 - Arbitrary File Upload op5 v7.1.9 Configuration Command Execution op5 7.1.9 - Configuration Command Execution Alibaba Clone B2B Script - Arbitrary File Disclosure XuezhuLi FileSharing - Directory Traversal XuezhuLi FileSharing - (Add User) CSRF FinderView - Multiple Vulnerabilities	2016-06-24 05:06:19 +00:00
Offensive Security	412cc0a204	DB: 2016-06-23 ... 4 new exploits Linux Kernel 2.4 - uselib() Privilege Elevation Exploit (2) Linux Kernel 2.4 - 'uselib()' Privilege Elevation Exploit (2) Linux Kernel 2.4.x / 2.6.x - uselib() Local Privilege Escalation Exploit (3) Linux Kernel 2.4.x / 2.6.x - 'uselib()' Local Privilege Escalation Exploit (3) Linux Kernel 2.6.23 <= 2.6.24 - vmsplice Local Root Exploit (1) Linux Kernel 2.6.23 <= 2.6.24 - 'vmsplice' Local Root Exploit (1) Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - UDEV Local Privilege Escalation Exploit (1) Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - < UDEV 1.4.1 Local Privilege Escalation Exploit (1) Linux Kernel 2.x - 'sock_sendpage()' Local Root Exploit (2) Linux Kernel 2.x - 'sock_sendpage()' Local Root Exploit (4) Linux Kernel 2.4 / 2.6 (RedHat Linux 9 / Fedora Core 4~11 / Whitebox 4 / CentOS 4) - 'sock_sendpage()' ring0 Root Exploit (3) Linux Kernel 2.4 / 2.6 (RedHat Linux 9 / Fedora Core 4~11 / Whitebox 4 / CentOS 4) - 'sock_sendpage()' ring0 Root Exploit (5) Linux Kernel 2.4 / 2.6 (Fedora 11) - 'sock_sendpage()' Local Root Exploit (4) Linux Kernel 2.4 / 2.6 (Fedora 11) - 'sock_sendpage()' Local Root Exploit (2) Linux Kernel 2.4 / 2.6 - 'sock_sendpage()' Local Root Exploit (5) Linux Kernel 2.4 / 2.6 - 'sock_sendpage()' Local Root Exploit (3) Linux Kernel 2.4.1-2.4.37 / 2.6.1-2.6.32-rc5 - Pipe.c Privilege Escalation (3) Linux Kernel 2.4.1-2.4.37 / 2.6.1-2.6.32-rc5 - 'Pipe.c' Privilege Escalation (3) Linux Kernel <= 2.6.37 (Redhat / Ubuntu 10.04) - 'Full-Nelson.c' Local Privilege Escalation Linux Kernel <= 2.6.37 (Redhat / Ubuntu 10.04) - 'Full-Nelson.c' Local Privilege Escalation (1) Linux Kernel < 2.6.36.2 (Ubuntu 10.04) - 'Half-Nelson.c' Econet Privilege Escalation Exploit Linux Kernel < 2.6.36.2 (Ubuntu 10.04) - 'Half-Nelson.c' Econet Privilege Escalation Exploit (2) UNICOS 9/MAX 1.3/mk 1.5_AIX <= 4.2_libc <= 5.2.18_RedHat 4_IRIX 6_Slackware 3 NLS Vuln(1) UNICOS 9/MAX 1.3/mk 1.5_AIX <= 4.2_libc <= 5.2.18_RedHat 4_IRIX 6_Slackware 3 NLS Vuln(2) UNICOS 9/MAX 1.3/mk 1.5_AIX <= 4.2_libc <= 5.2.18_RedHat 4_IRIX 6_Slackware 3 NLS Vulnerability (1) UNICOS 9/MAX 1.3/mk 1.5_AIX <= 4.2_libc <= 5.2.18_RedHat 4_IRIX 6_Slackware 3 NLS Vulnerability (2) Linux Kernel 3.3 < 3.8 (Ubuntu/Fedora 18) - SOCK_DIAG Local Root Exploit (3) Linux Kernel 3.3 < 3.8 (Ubuntu / Fedora 18) - 'sock_diag_handlers()' Local Root Exploit (3) Linux Kernel <= 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Local Root (2) Linux Kernel <= 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Local Root (1) Linux Kernel <= 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Local Root (2) Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (MSF) Gemtek CPE7000 - WLTCS-106 sysconf.cgi Unauthenticated Remote Command Execution (MSF) Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (Metasploit) Gemtek CPE7000 - WLTCS-106 sysconf.cgi Unauthenticated Remote Command Execution (Metasploit) PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (MSF) PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (Metasploit) Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (msf) Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (Metasploit) Poison Ivy 2.1.x C2 Buffer Overflow (msf) Poison Ivy 2.1.x C2 Buffer Overflow (Metasploit) Bomgar Remote Support Unauthenticated Code Execution (msf) Bomgar Remote Support Unauthenticated Code Execution (Metasploit) Tomabo MP4 Player 3.11.6 - SEH Based Stack Overflow (msf) Tomabo MP4 Player 3.11.6 - SEH Based Stack Overflow (Metasploit) DarkComet Server Remote File Download Exploit (msf) DarkComet Server Remote File Download Exploit (Metasploit) PCMAN FTP 2.0.7 - ls Command Buffer Overflow (Metasploit) Wolf CMS 0.8.2 - Arbitrary File Upload Exploit (Metasploit) Windows x86 ShellExecuteA(NULL_NULL__cmd.exe__NULL_NULL_1) Shellcode	2016-06-23 05:06:16 +00:00
Offensive Security	0fe9b46f79	DB: 2016-06-22 ... 14 new exploits Linux Kernel <= 2.4.22 - 'do_brk' Local Root Exploit (2) Linux Kernel <= 2.4.22 - 'do_brk()' Local Root Exploit (2) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap' Local Proof of Concept (1) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap' Local Proof of Concept (2) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Local Proof of Concept (1) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'do_mremap()' Local Proof of Concept (2) Linux Kernel <= 2.4.23 / <= 2.6.0 - 'mremap()' Bound Checking Root Exploit Linux Kernel <= 2.4.23 / <= 2.6.0 - 'mremap()' Bound Checking Root Exploit (3) Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Missing 'do_munmap' Exploit Linux Kernel <= 2.2.25 / <= 2.4.24 / <= 2.6.2 - 'mremap()' Missing 'do_munmap' Exploit (1) Linux Kernel <= 2.4.29-rc2 - uselib() Privilege Elevation Linux Kernel <= 2.4.29-rc2 - 'uselib()' Privilege Elevation (1) Linux Kernel 2.4 - uselib() Privilege Elevation Exploit Linux Kernel 2.4 - uselib() Privilege Elevation Exploit (2) Linux Kernel 2.4.x / 2.6.x - uselib() Local Privilege Escalation Exploit Linux Kernel 2.4.x / 2.6.x - uselib() Local Privilege Escalation Exploit (3) Linux Kernel 2.6.17 <= 2.6.24.1 - vmsplice Local Root Exploit Linux Kernel 2.6.23 <= 2.6.24 - vmsplice Local Root Exploit Linux Kernel 2.6.17 <= 2.6.24.1 - 'vmsplice' Local Root Exploit (2) Linux Kernel 2.6.23 <= 2.6.24 - vmsplice Local Root Exploit (1) Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - UDEV Local Privilege Escalation Exploit Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - UDEV Local Privilege Escalation Exploit (1) Linux Kernel 2.6 UDEV < 141 (Gentoo / Ubuntu 8.10/9.04) - Local Privilege Escalation Exploit Linux Kernel 2.6 (Gentoo / Ubuntu 8.10/9.04) - UDEV < 141 Local Privilege Escalation Exploit (2) Linux Kernel 2.x (Redhat) - sock_sendpage() Ring0 Local Root Exploit (1) Linux Kernel 2.x - sock_sendpage() Local Root Exploit (2) Linux Kernel 2.x (Redhat) - 'sock_sendpage()' Ring0 Local Root Exploit (1) Linux Kernel 2.x - 'sock_sendpage()' Local Root Exploit (2) Linux Kernel 2.4 / 2.6 (RedHat Linux 9 / Fedora Core 4~11 / Whitebox 4 / CentOS 4) - sock_sendpage() ring0 Root Exploit (1) Linux Kernel 2.4 / 2.6 (RedHat Linux 9 / Fedora Core 4~11 / Whitebox 4 / CentOS 4) - 'sock_sendpage()' ring0 Root Exploit (3) Linux Kernel <= 2.6.30 - atalk_getname() 8-bytes Stack Disclosure Exploit Linux Kernel <= 2.6.30 - 'atalk_getname()' 8-bytes Stack Disclosure Exploit (1) Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - ip_append_data() ring0 Root Exploit Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - ip_append_data() ring0 Root Exploit (1) Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit (2) Linux Kernel < 2.6.19 (x86/x64) - udp_sendmsg Local Root Exploit Linux Kernel < 2.6.19 (Debian 4) - udp_sendmsg Local Root Exploit Linux Kernel < 2.6.19 (x86/x64) - udp_sendmsg Local Root Exploit (2) Linux Kernel < 2.6.19 (Debian 4) - 'udp_sendmsg' Local Root Exploit (3) Linux Kernel 2.4 / 2.6 (Fedora 11) - sock_sendpage() Local Root Exploit (2) Linux Kernel 2.4 / 2.6 (Fedora 11) - 'sock_sendpage()' Local Root Exploit (4) Linux Kernel 2.4 / 2.6 - sock_sendpage() Local Root Exploit (3) Linux Kernel 2.4 / 2.6 - 'sock_sendpage()' Local Root Exploit (5) Linux Kernel 2.4.1-2.4.37 / 2.6.1-2.6.32-rc5 - Pipe.c Privilege Escalation Linux Kernel 2.4.1-2.4.37 / 2.6.1-2.6.32-rc5 - Pipe.c Privilege Escalation (3) Linux Kernel <= 2.6.32 - 'pipe.c' Local Privilege Escalation Vulnerability Linux Kernel <= 2.6.32 - 'pipe.c' Local Privilege Escalation Vulnerability (4) Linux Kernel <= 2.6.37 (Redhat / Ubuntu 10.04) - 'Full Nelson' Local Privilege Escalation Linux Kernel <= 2.6.37 (Redhat / Ubuntu 10.04) - 'Full-Nelson.c' Local Privilege Escalation Linux Kernel <= 2.6.37 - Local Kernel Denial of Service Linux Kernel <= 2.6.37 - Local Kernel Denial of Service (1) Linux Kernel < 2.6.37-rc2 - TCP_MAXSEG Kernel Panic DoS Linux Kernel < 2.6.37-rc2 - TCP_MAXSEG Kernel Panic DoS (2) Linux Kernel < 2.6.36.2 (Ubuntu 10.04) - Econet Privilege Escalation Exploit Linux Kernel < 2.6.36.2 (Ubuntu 10.04) - 'Half-Nelson.c' Econet Privilege Escalation Exploit Linux Kernel 2.6.39 <= 3.2.2 (Gentoo / Ubuntu x86/x64) - Mempodipper Local Root (1) Linux Kernel 2.6.39 <= 3.2.2 (Gentoo / Ubuntu x86/x64) - 'Mempodipper.c' Local Root (1) Linux Kernel 2.0/2.1_ Digital UNIX <= 4.0 D_ FreeBSD <= 2.2.4_ HP HP-UX 10.20/11.0_ IBM AIX <= 3.2.5_ NetBSD 1.2_ Solaris <= 2.5.1 - Smurf Denial of Service Vulnerability Linux Kernel 2.0/2.1 (Digital UNIX <= 4.0 D / FreeBSD <= 2.2.4 / HP HP-UX 10.20/11.0 / IBM AIX <= 3.2.5 / NetBSD 1.2 / Solaris <= 2.5.1) - Smurf Denial of Service Vulnerability Linux Kernel <= 2.3_ BSD/OS <= 4.0_ FreeBSD <= 3.2_ NetBSD <= 1.4 - Shared Memory Denial of Service Vulnerability Linux Kernel <= 2.3 (BSD/OS <= 4.0 / FreeBSD <= 3.2 / NetBSD <= 1.4) - Shared Memory Denial of Service Vulnerability Linux Kernel 2.2.12/2.2.14/2.3.99_ RedHat 6.x - Socket Denial of Service Linux Kernel 2.2.12/2.2.14/2.3.99 (RedHat 6.x) - Socket Denial of Service Linux Kernel 2.2.x/2.4.0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail) Vulnerability (1) Linux Kernel 2.2.x/2.4.0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail <= 8.10.1) Vulnerability (2) Linux Kernel 2.2.x <= 2.4.0-test1 (SGI ProPack 1.2/1.3) - Capabilities Local Root 'sendmail' Vulnerability (1) Linux Kernel 2.2.x <= 2.4.0-test1 (SGI ProPack 1.2/1.3) - Capabilities Local Root (sendmail <= 8.10.1) Vulnerability (2) Linux Kernel < 3.3.x - 3.7.x (Arch Linux x86_64) - sock_diag_handlers[] Local Root Linux Kernel < 3.3.x - 3.7.x (Arch Linux x86_64) - 'sock_diag_handlers[]' Local Root (1) Linux Kernel <= 3.7.10 (Ubuntu 12.10 x64) - sock_diag_handlers Local Root Exploit Linux Kernel <= 3.7.10 (Ubuntu 12.10 x64) - 'sock_diag_handlers' Local Root Exploit (2) Linux Kernel 2.6.x - SYS_EPoll_Wait Local Integer Overflow Local Root Vulnerability (1) Linux Kernel 2.6.x - 'SYS_EPoll_Wait' Local Integer Overflow Local Root Vulnerability (1) Linux Kernel 2.6.32 <= 3.x.x (CentOS) - PERF_EVENTS Local Root Exploit Linux Kernel 2.6.32 <= 3.x.x (CentOS) - 'PERF_EVENTS' Local Root Exploit (1) Linux Kernel < 3.8.9 (x86_64) - perf_swevent_init Local Root Exploit Linux Kernel < 3.8.9 (x86_64) - perf_swevent_init Local Root Exploit (2) Linux Kernel 3.4 < 3.13.2 - recvmmsg x32 compat - Proof of Concept Linux Kernel 3.4 < 3.13.2 - recvmmsg x32 compat - Proof of Concept (1) Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.10) - Arbitrary Write with CONFIG_X86_X32 Exploit Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.04/13.10) - 'CONFIG_X86_X32=y' Local Root Exploit Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.10) - Arbitrary Write with 'CONFIG_X86_X32' Exploit (2) Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.04/13.10) - 'CONFIG_X86_X32=y' Local Root Exploit (3) Linux Kernel 2.6.x - 'fput()' NULL Pointer Dereference Local Denial of Service Vulnerabilty Linux Kernel 3.3 < 3.8 (Ubuntu/Fedora 18) - SOCK_DIAG Local Root Exploit Linux Kernel 3.3 < 3.8 (Ubuntu/Fedora 18) - SOCK_DIAG Local Root Exploit (3) Linux Kernel <= 3.2.0-23 / <= 3.5.0-23 (Ubuntu 12.04.(0_1_2) x64) - perf_swevent_init Local Root Exploit Linux Kernel 2.6.x - 'fasync_helper()' Local Privilege Escalation Vulnerability Linux Kernel <= 3.2.0-23 / <= 3.5.0-23 (Ubuntu 12.04.0/1/2 x64) - perf_swevent_init Local Root Exploit (3) Linux Kernel < 2.6.28 - 'fasync_helper()' Local Privilege Escalation Vulnerability Linux Kernel 2.6.39 <= 3.2.2 (x86/x64) - Mempodipper Local Root (2) Linux Kernel 2.6.39 <= 3.2.2 (x86/x64) - 'Mempodipper.c' Local Root (2) Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Local Root Shell Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Root Shell Linux Kernel <= 4.3.3 (Ubuntu 14.04/15.10) - overlayfs Local Root Exploit Linux Kernel <= 4.3.3 (Ubuntu 14.04/15.10) - 'overlayfs' Local Root Exploit (1) Linux Kernel <= 4.3.3 - overlayfs Local Privilege Escalation Linux Kernel <= 4.3.3 - 'overlayfs' Local Privilege Escalation (2) DarkComet Server Remote File Download Exploit (msf) Banshee 2.6.2 - .mp3 Crash PoC IonizeCMS 1.0.8 - (Add Admin) CSRF Yona CMS - (Add Admin) CSRF Joomla Publisher Pro (com_publisher) Component - SQL Injection Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap-Based Out-of-Bounds Reads/Memory Disclosure (MS16-074) Windows Kernel - ATMFD.DLL NamedEscape 0x250C Pool Corruption (MS16-074) Linux - ecryptfs and /proc/$pid/environ Privilege Escalation Windows - Custom Font Disable Policy Bypass Internet Explorer 11 - Garbage Collector Attribute Type Confusion (MS16-063) SAP NetWeaver AS JAVA 7.1 - 7.5 - ctcprotocol Servlet XXE SAP NetWeaver AS JAVA 7.1 - 7.5 - Directory Traversal Radiant CMS 1.1.3 - Mutiple Persistent XSS Vulnerabilities YetiForce CRM < 3.1 - Persistent XSS	2016-06-22 05:06:31 +00:00
Offensive Security	da158cde92	DB: 2016-06-21 ... 11 new exploits Linux Kernel 2.2. / 2.4.x - /proc Filesystem Potential Information Disclosure Vulnerability Linux Kernel 2.2.x / 2.4.x - /proc Filesystem Potential Information Disclosure Vulnerability WordPress Ultimate Product Catalog Plugin 3.8.1 - Privilege Escalation Linux x86_64 execve Shellcode - 15 bytes sNews CMS 1.7.1 - Multiple Vulnerabilities Joomla BT Media (com_bt_media) Component - SQL Injection Premium SEO Pack 1.9.1.3 - wp_options Overwrite Windows XP - 10 - Download & Execute Shellcode Tomabo MP4 Player 3.11.6 - SEH Based Stack Overflow (msf) Airia - (Add Content) CSRF Airia - Webshell Upload Exploit Symphony CMS 2.6.7 - Session Fixation ACROS Security 0patch 2016.05.19.539 - (0PatchServicex64.exe) Unquoted Service Path Privilege Escalation	2016-06-21 05:03:48 +00:00
Offensive Security	eb4f2190bb	DB: 2016-06-20	2016-06-20 05:06:31 +00:00
Offensive Security	929e1cb538	DB: 2016-06-18 ... 5 new exploits WordPress Gravity Forms Plugin 1.8.19 - Arbitrary File Upload Vicidial 2.11 - Scripts Stored XSS phpATM 1.32 - Remote Command Execution (Shell Upload) on Windows Servers phpATM 1.32 - Multiple Vulnerabilities op5 v7.1.9 Configuration Command Execution	2016-06-18 05:02:53 +00:00
Offensive Security	2815f48e25	DB: 2016-06-17 ... 12 new exploits Linux x86_64 - Reverse Shell Shellcode Gemalto Sentinel License Manager 18.0.1.55505 - Directory Traversal Solarwinds Virtualization Manager - Privilege Escalation Blat 3.2.14 - Stack Overflow Linux/x86 - Bindshell with Configurable Port - 87 bytes Linux x86_64 Shellcode Null-Free Reverse TCP Shell Linux x86 TCP Bind Shell Port 4444 (656 bytes) Tiki-Wiki CMS Calendar 14.2_ 12.5 LTS_ 9.11 LTS_ and 6.15 - Remote Code Execution Linux/Windows/BSD x86_64 execve(_/bin//sh__ {_//bin/sh__ _-c__ _cmd_}_ NULL) Execute Command Shellcode ATCOM PBX IP01_ IP08 _ IP4G_ IP2G4A - Authentication Bypass Roxy Fileman 1.4.4 - Arbitrary File Upload SlimCMS 0.1 - CSRF (Change Admin Password)	2016-06-17 05:05:00 +00:00
Offensive Security	33dd246d8a	DB: 2016-06-16 ... 14 new exploits Ultrabenosaurus ChatBoard - Stored XSS Ultrabenosaurus ChatBoard - CSRF (Send Message) w2wiki - Multiple XSS Vulnerabilities Hyperoptic (Tilgin) Router HG23xx - Multiple Vulnerabilities Dokeos 2.2.1 - Blind SQL Injection Joomla En Masse (com_enmasse) Component 5.1 - 6.4 - SQL Injection AdobeUpdateService 3.6.0.248 - Unquoted Service Path Privilege Escalation BookingWizz Booking System < 5.5 - Multiple Vulnerabilities jbFileManager - Directory Traversal PHPLive 4.4.8 - 4.5.4 - Password Recovery SQL Injection Bomgar Remote Support Unauthenticated Code Execution (msf) Windows 7 - win32k Bitmap Use-After-Free (MS16-062) (1) Windows 7 - win32k Bitmap Use-After-Free (MS16-062) (2) Google Chrome - GPU Process MailboxManagerImpl Double-Read	2016-06-16 05:02:53 +00:00
Offensive Security	6c005f3b2b	DB: 2016-06-15 ... 3 new exploits Easy RM to MP3 Converter 2.7.3.700 - (.m3u) Exploit with Universal DEP+ASLR Bypass Apache Continuum Arbitrary Command Execution WordPress Social Stream Plugin 1.5.15 - wp_options Overwrite Oracle Orakill.exe 11.2.0 - Buffer Overflow	2016-06-15 05:06:23 +00:00
Offensive Security	264d15855e	DB: 2016-06-14 ... 14 new exploits FRticket Ticket System - Stored XSS Viart Shopping Cart 5.0 - CSRF Shell Upload Easy RM to MP3 Converter 2.7.3.700 - (.m3u) Exploit with Universal DEP+ASLR Bypass Dream Gallery 2.0 - Admin Panel Authentication Bypass Grid Gallery 1.0 - Admin Panel Authentication Bypass Joomla PayPlans (com_payplans) Extension 3.3.6 - SQL Injection Zabbix 2.2 - 3.0.3 - RCE with API JSON-RPC iSQL 1.0 - Shell Command Injection iSQL 1.0 - isql_main.c Buffer Overflow PoC Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentParser Heap-Based Memory Corruption Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-Bounds Read Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read Foxit PDF Reader 1.0.1.0925 -kdu_core::kdu_codestream::get_subsampling Memory Corruption Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Corruption	2016-06-14 05:03:54 +00:00
Offensive Security	076ef173f9	DB: 2016-06-11 ... 23 new exploits Poison Ivy 2.1.x C2 Buffer Overflow (msf) Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation Dell OpenManage Server Administrator 8.3 - XML External Entity Exploit Mobiketa 1.0 - CSRF Add Admin Exploit miniMySQLAdmin 1.1.3 - CSRF Execute SQL Query phpMyFAQ 2.9.0 - Stored XSS Windows x86 system(_systeminfo_) Shellcode Armadito Antimalware - Backdoor/Bypass Riot Games League of Legends - Insecure File Permissions Privilege Escalation IPFire proxy.cgi RCE IPFire Bash Environment Variable Injection (Shellshock) Apache Struts REST Plugin With Dynamic Method Invocation Remote Code Execution OS X Kernel - Exploitable NULL Pointer Dereference in nvCommandQueue::GetHandleIndex in GeForce.kext Android - /system/bin/sdcard Stack Buffer Overflow OS X Kernel - Exploitable NULL Pointer Dereference in AppleMuxControl.kext OS X Kernel - Exploitable NULL Pointer Dereference in AppleGraphicsDeviceControl OS X Kernel - Exploitable NULL Dereference in IOAccelSharedUserClient2::page_off_resource OS X Kernel - Exploitable NULL Dereference in CoreCaptureResponder Due to Unchecked Return Value OS X Kernel - Exploitable NULL Pointer Dereference in IOAudioEngine OS X Kernel - OOB Read of Object Pointer Due to Insufficient Checks in Raw Cast to enum Type OS X Kernel - Use-After-Free Due to Bad Locking in IOAcceleratorFamily2 OS X/iOS Kernel - UAF Racing getProperty on IOHDIXController and testNetBootMethod on IOHDIXControllerUserClient OS X Kernel - Stack Buffer Overflow in GeForce GPU Driver	2016-06-11 05:06:22 +00:00
Offensive Security	74f927013e	DB: 2016-06-09 ... 1 new exploits Drale DBTableViewer 100123 - Blind SQL Injection	2016-06-09 05:02:54 +00:00
Offensive Security	62962d90b0	DB: 2016-06-07 ... 16 new exploits Linux Kernel < 2.6.34 (Ubuntu 11.10 x86 & x64) - CAP_SYS_ADMIN Local Privilege Escalation Exploit (2) Linux Kernel < 2.6.34 (Ubuntu 11.10 x86/x64) - CAP_SYS_ADMIN Local Privilege Escalation Exploit (2) Linux Kernel 2.4.4 <= 2.4.37.4 / 2.6.0 <= 2.6.30.4 - Sendpage Local Privilege Escalation (Metasploit) Linux Kernel 2.4.4 <= 2.4.37.4 / 2.6.0 <= 2.6.30.4 - Sendpage Local Privilege Escalation (Metasploit) Linux Kernel <= 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Linux Kernel <= 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Local Root WordPress Simple Backup Plugin 2.7.11 - Multiple Vulnerabilities Dream Gallery 1.0 - CSRF Add Admin Exploit Apache Continuum 1.4.2 - Multiple Vulnerabilities Sun Secure Global Desktop and Oracle Global Desktop 4.61.915 - ShellShock Exploit Valve Steam 3.42.16.13 - Local Privilege Escalation ArticleSetup 1.00 - CSRF Change Admin Password Electroweb Online Examination System 1.0 - SQL Injection WordPress WP Mobile Detector Plugin 3.5 - Arbitrary File Upload WordPress Creative Multi-Purpose Theme 9.1.3 - Stored XSS WordPress WP PRO Advertising System Plugin 4.6.18 - SQL Injection WordPress Newspaper Theme 6.7.1 - Privilege Escalation WordPress Uncode Theme 1.3.1 - Arbitrary File Upload WordPress Double Opt-In for Download Plugin 2.0.9 - SQL Injection Notilus Travel Solution Software 2012 R3 - SQL Injection rConfig 3.1.1 - Local File Inclusion Nagios XI 5.2.7 - Multiple Vulnerabilities	2016-06-07 05:07:41 +00:00
Offensive Security	2dba371921	DB: 2016-06-03 ... 4 new exploits Linux Kernel 2.4 / 2.6 x86-64 - System Call Emulation Exploit Linux Kernel 2.4 / 2.6 (x86_64) - System Call Emulation Exploit Linux Kernel 2.6.x (<= 2.6.20 / <= 2.6.24 / <= 2.6.27_7-10) (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit Linux Kernel 2.6.x (<= 2.6.20 / <= 2.6.24 / <= 2.6.27_7-10) (Ubuntu 7.04/8.04/8.10 / Fedora Core 10 / OpenSuse 11.1) - SCTP FWD Memory Corruption Remote Exploit Linux Kernel <= 2.6.24_16-23 / <= 2.6.28.3 (Ubuntu 8.04/8.10 & Fedora Core 10) (x86-64) - set_selection() UTF-8 Off By One Local Exploit Linux Kernel <= 2.6.24_16-23 / <= 2.6.28.3 (Ubuntu 8.04/8.10 & Fedora Core 10 x86_64) - set_selection() UTF-8 Off By One Local Exploit Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6) - (32-bit) ip_append_data() ring0 Root Exploit Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - ip_append_data() ring0 Root Exploit Linux Kernel < 2.6.36-rc4-git2 - x86_64 ia32syscall Emulation Privilege Escalation Linux Kernel 2.6.27 < 2.6.36 (x86_64) (Redhat) - compat Local Root Exploit Linux Kernel < 2.6.36-rc4-git2 (x86_64) - ia32syscall Emulation Privilege Escalation Linux Kernel 2.6.27 < 2.6.36 (Redhat x86_64) - compat Local Root Exploit Linux Kernel < 2.6.34 CAP_SYS_ADMIN x86 & x64 (Ubuntu 11.10) - Local Privilege Escalation Exploit (2) Linux Kernel < 2.6.34 (Ubuntu 11.10 x86 & x64) - CAP_SYS_ADMIN Local Privilege Escalation Exploit (2) Linux Kernel 2.6.39 <= 3.2.2 (32-bit & 64-bit) (Gentoo / Ubuntu) - Mempodipper Local Root (1) Linux Kernel 2.6.39 <= 3.2.2 (Gentoo / Ubuntu x86/x64) - Mempodipper Local Root (1) Linux Kernel < 3.3.x - 3.7.x (Arch Linux x86-64) - sock_diag_handlers[] Local Root Linux Kernel < 3.3.x - 3.7.x (Arch Linux x86_64) - sock_diag_handlers[] Local Root Linux Kernel <= 3.7.10 (Ubuntu 12.10) (64-Bit) - sock_diag_handlers Local Root Exploit Linux Kernel <= 3.7.10 (Ubuntu 12.10 x64) - sock_diag_handlers Local Root Exploit Linux Kernel < 3.8.9 - x86_64 perf_swevent_init Local Root Exploit Linux Kernel < 3.8.9 (x86_64) - perf_swevent_init Local Root Exploit Linux Kernel <= 3.7.6 (Redhat) (32bit/64bit) - 'MSR' Driver Local Privilege Escalation Linux Kernel <= 3.7.6 (Redhat x86/x64) - 'MSR' Driver Local Privilege Escalation Systrace 1.x (64-Bit) - Aware Linux Kernel Privilege Escalation Vulnerability Systrace 1.x (x64) - Aware Linux Kernel Privilege Escalation Vulnerability Linux Kernel 2.6.x - (64 bit) Personality Handling Local Denial of Service Vulnerability Linux Kernel 2.6.x (x64) - Personality Handling Local Denial of Service Vulnerability Linux Kernel < 3.2.0-23 (Ubuntu 12.04) - ptrace/sysret Local Privilege Escalation Linux Kernel < 3.2.0-23 (Ubuntu 12.04 x64) - ptrace/sysret Local Privilege Escalation Linux Kernel 2.6.39 <= 3.2.2 (32-bit & 64-bit) - Mempodipper Local Root (2) Linux Kernel 2.6.39 <= 3.2.2 (x86/x64) - Mempodipper Local Root (2) Joomla SecurityCheck Extension 2.8.9 - Multiple Vulnerabilities Liferay CE < 6.2 CE GA6 - Stored XSS Relay Ajax Directory Manager relayb01-071706_ 1.5.1_ 1.5.3 - Unauthenticated File Upload Websockify (C Implementation) 0.8.0 - Buffer Overflow	2016-06-03 05:02:50 +00:00
Offensive Security	3a855523ef	DB: 2016-06-02 ... 2 new exploits GeekLog 2.x ImageImageMagick.php Remote File Inclusion Vulnerability GeekLog 2.x - ImageImageMagick.php Remote File Inclusion Vulnerability ImageMagick 6.x PNM Image Decoding Remote Buffer Overflow Vulnerability ImageMagick 6.x - .PNM Image Decoding Remote Buffer Overflow Vulnerability ImageMagick 6.x SGI Image File Remote Heap Buffer Overflow Vulnerability ImageMagick 6.x - .SGI Image File Remote Heap Buffer Overflow Vulnerability ImageMagick < 6.9.3-9 - Multiple Vulnerabilities ImageMagick <= 6.9.3-9 / <= 7.0.1-0 - Multiple Vulnerabilities (ImageTragick) ImageMagick Delegate Arbitrary Command Execution ImageMagick <= 6.9.3-9 / <= 7.0.1-0 - Delegate Arbitrary Command Execution (ImageTragick) AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities Wireshark - erf_meta_read_tag SIGSEGV	2016-06-02 05:03:04 +00:00
Offensive Security	8164665ff7	DB: 2016-06-01 ... 6 new exploits FlatPress 1.0.3 - CSRF Arbitrary File Upload AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities ProcessMaker 3.0.1.7 - Multiple vulnerabilities CCextractor 0.80 - Crash PoC Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (msf) TCPDump 4.5.1 - Crash PoC	2016-06-01 05:01:50 +00:00
Offensive Security	22d168d0bc	DB: 2016-05-31 ... 3 new exploits MySQL 5.5.45 - procedure analyse Function Denial of Service Open Source Real Estate Script 3.6.0 - SQL Injection Linux x86_64 XOR Encode execve Shellcode	2016-05-31 05:03:26 +00:00
Offensive Security	ab85a62fd6	DB: 2016-05-28 ... 1 new exploits PHP Realestate Script Script 4.9.0 - SQL Injection	2016-05-28 05:05:01 +00:00
Offensive Security	2e7bce9702	DB: 2016-05-27 ... 9 new exploits Real Estate Portal 4.1 - Multiple Vulnerabilities EduSec 4.2.5 - SQL Injection Micro Focus Rumba+ 9.4 - Multiple Stack Buffer Overflow Vulnerabilities HP Data Protector A.09.00 - Arbitrary Command Execution Graphite2 - GlyphCache::GlyphCache Heap-Based Buffer Overflow Graphite2 - GlyphCache::Loader Heap-Based Overreads Graphite2 - TtfUtil::CheckCmapSubtable12 Heap-Based Overread Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap-Based Overread Graphite2 - NameTable::getName Multiple Heap-Based Out-of-Bounds Reads	2016-05-27 05:03:14 +00:00
Offensive Security	399580a6c2	DB: 2016-05-24 ... 5 new exploits Operation Technology ETAP 14.1.0 - Local Privilege Escalation Operation Technology ETAP 14.1.0 - Multiple Stack Buffer Overrun Vulnerabilities Linux x86_64 Information Stealer Shellcode Job Script by Scubez - Remote Code Execution XenAPI 1.4.1 for XenForo - Multiple SQL Injections	2016-05-24 05:03:46 +00:00
Offensive Security	931bae6679	DB: 2016-05-21	2016-05-21 05:05:57 +00:00
Offensive Security	a447a01cb8	DB: 2016-05-20	2016-05-20 06:50:49 +00:00
Offensive Security	feb7c15c11	DB: 2016-05-19 ... 1 new exploits Debian OpenSSL - Predictable PRNG Bruteforce SSH Exploit (Perl) Debian and Derivatives OpenSSL 0.9.8c-1<= 0.9.8g-9 - Predictable PRNG Bruteforce SSH Exploit (Perl) Debian OpenSSL - Predictable PRNG Bruteforce SSH Exploit (Ruby) Debian and Derivatives OpenSSL 0.9.8c-1<= 0.9.8g-9 - Predictable PRNG Bruteforce SSH Exploit (Ruby) Debian OpenSSL - Predictable PRNG Bruteforce SSH Exploit (Python) Debian and Derivatives OpenSSL 0.9.8c-1<= 0.9.8g-9 - Predictable PRNG Bruteforce SSH Exploit (Python) PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (1) PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (2) PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (3) PHP 4.x/5.x MySQL Library - 'Safe_Mode' Filesystem Circumvention Vulnerability (1) PHP 4.x/5.x MySQL Library - 'Safe_Mode' Filesystem Circumvention Vulnerability (2) PHP 4.x/5.x MySQL Library - 'Safe_Mode' Filesystem Circumvention Vulnerability (3) phpliteadmin 1.1 - Multiple Vulnerabilities phpLiteAdmin 1.1 - Multiple Vulnerabilities PHP <= 7.0.4/5.5.33 - SNMP Format String Exploit PHP <= 5.5.33 / <= 7.0.4 - SNMP Format String Exploit Magento < 2.0.6 - Unauthenticated Arbitrary Unserialize -> Arbitrary Write File	2016-05-19 05:05:38 +00:00
Offensive Security	8fea20e59f	DB: 2016-05-17 ... 12 new exploits Microsoft Windows WebDAV - (ntdll.dll) Remote Exploit Microsoft Windows WebDAV - Remote PoC Exploit Microsoft Windows IIS WebDAV - 'ntdll.dll' Remote Exploit Microsoft Windows IIS 5.0 WebDAV - Remote PoC Exploit Microsoft Windows WebDav II - Remote Root Exploit (2) Microsoft Windows WebDAV - Remote Root Exploit (2) Microsoft Windows WebDav III - Remote Root Exploit (xwdav) Microsoft Windows WebDAV IIS 5.0 - Remote Root Exploit (3) (xwdav) Dream FTP 1.2 - Remote Format String Exploit BolinTech Dream FTP Server 1.2 (1.02/TryFTP 1.0.0.1) - Remote User Name Format String Exploit Apache Tomcat (webdav) - Remote File Disclosure Exploit Apache Tomcat (WebDAV) - Remote File Disclosure Exploit Apache Tomcat (webdav) - Remote File Disclosure Exploit (ssl support) Apache Tomcat (WebDAV) - Remote File Disclosure Exploit (SSL) Microsoft IIS 6.0 WebDAV Remote Authentication Bypass Exploit (patch) Microsoft IIS 6.0 WebDAV - Remote Authentication Bypass Exploit (Patch) Microsoft IIS 6.0 WebDAV Remote Authentication Bypass Exploit (PHP) Microsoft IIS 6.0 WebDAV - Remote Authentication Bypass Exploit (PHP) Windows 7 IIS7.5 FTPSVC UNAUTH'D Remote DoS PoC Windows 7 IIS 7.5 - FTPSVC UNAUTH'D Remote DoS PoC Microsoft IIS 5.0 WebDAV ntdll.dll Path Overflow Microsoft Windows IIS 5.0 WebDAV - ntdll.dll Path Overflow Liferay 6.0.x Webdav File Reading Vulnerability Liferay 6.0.x WebDAV - File Reading Vulnerability Microsoft iis 6.0 and 7.5 - Multiple Vulnerabilities Microsoft IIS 6.0 and 7.5 (+ PHP) - Multiple Vulnerabilities Microsoft Windows XP/2000/NT 4 ntdll.dll Buffer Overflow Vulnerability (1) Microsoft Windows XP/2000/NT 4 ntdll.dll Buffer Overflow Vulnerability (2) Microsoft Windows XP/2000/NT 4 ntdll.dll Buffer Overflow Vulnerability (3) Microsoft Windows XP/2000/NT 4 ntdll.dll Buffer Overflow Vulnerability (4) Microsoft Windows XP/2000/NT 4 IIS 5.0 WebDAV - ntdll.dll Buffer Overflow Vulnerability (1) Microsoft Windows XP/2000/NT 4 IIS 5.0 WebDAV - ntdll.dll Buffer Overflow Vulnerability (2) Microsoft Windows XP/2000/NT 4 IIS 5.0 WebDAV - ntdll.dll Buffer Overflow Vulnerability (3) Microsoft Windows XP/2000/NT 4 IIS 5.0 WebDAV - ntdll.dll Buffer Overflow Vulnerability (4) BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability (2) Sun Solaris 8/9 - Unspecified Passwd Local Root Compromise Vulnerability Invision Power Board 2.1.x IPSClass.PHP SQL Injection Vulnerability (1) Apache 2.x HTTP Server Arbitrary HTTP Request Headers Security Weakness Apache HTTP Server (<= 1.3.35 / <= 2.0.58 / <= 2.2.2) - Arbitrary HTTP Request Headers Security Weakness Apache HTTP Server <= 2.2.4 413 Error HTTP Request Method Cross-Site Scripting Weakness Apache HTTP Server <= 2.2.4 - 413 Error HTTP Request Method Cross-Site Scripting Weakness MediaWiki 1.22.1 PdfHandler - Remote Code Execution Exploit Apache Struts 2.x XWork 's:submit' HTML Tag Cross Site Scripting Vulnerability Apache Struts 2.0.0 <= 2.2.1.1 - XWork 's:submit' HTML Tag Cross Site Scripting Vulnerability EasyCafe Server <= 2.2.14 Remote File Read EasyCafe Server <= 2.2.14 - Remote File Read x86_64 Linux bind TCP port shellcode TCP Bindshell with Password Prompt - 162 bytes x86_64 Linux bind TCP port shellcode TCP Bindshell with Password Prompt - 162 bytes Microsoft Windows 7-10 & Server 2008-2012 - Local Privilege Escalation (x32/x64) (MS16-032) (C#) CakePHP Framework 3.2.4 - IP Spoofing Multiples Nexon Games - Unquoted Path Privilege Escalation eXtplorer 2.1.9 - Archive Path Traversal Web interface for DNSmasq / Mikrotik - SQL Injection Microsoft Excel 2010 - Crash PoC Hex : Shard of Fate 1.0.1.026 - Unquoted Path Privilege Escalation Web2py 2.14.5 - Multiple Vulnerabilities	2016-05-17 05:03:19 +00:00
Offensive Security	6c6fd8d397	DB: 2016-05-15	2016-05-15 05:03:54 +00:00
Offensive Security	5e229672a0	DB: 2016-05-14 ... 3 new exploits Ethereal / tcpdump (rsvp_print) Infinite Loop Denial of Service Exploit Ethereal 0.10.10 / tcpdump 3.9.1 (rsvp_print) Infinite Loop Denial of Service Exploit Mozilla Firefox - Install Method Remote Arbitrary Code Execution Exploit Mozilla Firefox 1.0.3 - Install Method Remote Arbitrary Code Execution Exploit Active Price Comparison 4 - (ProductID) Blind SQL Injection Vulnerability Absolute Form Processor XE-V 1.5 - (auth Bypass) SQL Injection Vulnerability ipsec-tools racoon frag-isakmp Denial of Service PoC IPsec-Tools < 0.7.2 (racoon frag-isakmp) - Multiple Remote Denial of Service PoC PaoBacheca Guestbook 2.1 (login_ok) Auth Bypass Vulnerability PaoLiber 1.1 (login_ok) Authentication Bypass Vulnerability PaoBacheca Guestbook 2.1 - (login_ok) Auth Bypass Vulnerability PaoLiber 1.1 - (login_ok) Authentication Bypass Vulnerability IPsec-Tools < 0.7.2 - Multiple Remote Denial of Service Vulnerabilities ISC DHCP 'dhclient' 'script_write_params()' - Stack Buffer Overflow Vulnerability I-net Multi User Email Script SQLi Vulnerability linux/x86 - break chroot execve /bin/sh 80 bytes linux/x86 - break chroot execve /bin/sh (80 bytes) Sysax Multi Server 5.64 - Create Folder Buffer Overflow TikiWiki Project 1.8 tiki-read_article.php articleId Parameter XSS TikiWiki Project 1.8 - tiki-read_article.php articleId Parameter XSS TikiWiki Project 1.8 tiki-print_article.php articleId Parameter XSS TikiWiki Project 1.8 - tiki-print_article.php articleId Parameter XSS TikiWiki Project 1.8 tiki-list_faqs.php sort_mode Parameter SQL Injection TikiWiki Project 1.8 tiki-list_trackers.php sort_mode Parameter SQL Injection TikiWiki Project 1.8 - tiki-list_faqs.php sort_mode Parameter SQL Injection TikiWiki Project 1.8 - tiki-list_trackers.php sort_mode Parameter SQL Injection UBBCentral UBB.threads 6.2.3/6.5 login.php Cat Parameter XSS UBBCentral UBB.threads 6.2.3/6.5 online.php Cat Parameter XSS UBBCentral UBB.threads 6.2.3/6.5 - login.php Cat Parameter XSS UBBCentral UBB.threads 6.2.3/6.5 - online.php Cat Parameter XSS CityPost PHP Image Editor M1 URI Parameter Cross-Site Scripting Vulnerability CityPost PHP Image Editor M2 URI Parameter Cross-Site Scripting Vulnerability CityPost PHP Image Editor M3 URI Parameter Cross-Site Scripting Vulnerability CityPost PHP Image Editor Imgsrc URI Parameter Cross-Site Scripting Vulnerability CityPost PHP Image Editor M4 URI Parameter Cross-Site Scripting Vulnerability CityPost PHP Image Editor M1/M2/M3/Imgsrc/M4 - URI Parameter Cross-Site Scripting Vulnerability osCommerce 2.2 admin/countries.php page Parameter XSS osCommerce 2.2 admin/currencies.php page Parameter XSS osCommerce 2.2 - admin/countries.php page Parameter XSS osCommerce 2.2 - admin/currencies.php page Parameter XSS Microsoft Internet Explorer 6.0 Unspecified Code Execution Vulnerability (1) Microsoft Internet Explorer 6.0 Unspecified Code Execution Vulnerability (2) Microsoft Internet Explorer 6.0 - Unspecified Code Execution Vulnerability (1) Microsoft Internet Explorer 6.0 - Unspecified Code Execution Vulnerability (2) Joomla Gallery WD - SQL Injection Vulnerability Photoshop CC2014 and Bridge CC 2014 PNG Parsing Memory Corruption Vulnerabilities Photoshop CC2014 and Bridge CC 2014 PDF Parsing Memory Corruption Vulnerabilities Photoshop CC2014 and Bridge CC 2014 - .PNG Parsing Memory Corruption Vulnerabilities NRSS Reader 0.3.9 - Local Stack-Based Overflow runAV mod_security - Arbitrary Command Execution Wireshark - AirPDcapDecryptWPABroadcastKey Heap-Based Out-of-Bounds Read	2016-05-14 05:03:47 +00:00
Offensive Security	3ef2faa870	DB: 2016-05-13	2016-05-13 11:12:47 +00:00
Offensive Security	dc5e5785d4	DB: 2016-05-13 ... 3 new exploits Linux Kernel 2.6.13 <= 2.6.17.4 - prctl() Local Root Exploit (logrotate) Linux Kernel 2.6.13 <= 2.6.17.4 - logrotate prctl() Local Root Exploit Linux Kernel 2.6 (Debian / Ubuntu / Gentoo) - UDEV Local Privilege Escalation Exploit Linux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) - UDEV Local Privilege Escalation Exploit Linux Kernel 2.x - sock_sendpage() Local Root Exploit (Android Edition) Linux Kernel 2.x - sock_sendpage() Local Root Exploit (Android) Linux Kernel Solaris < 5.10 138888-01 - Local Root Exploit Linux Kernel (Solaris 10 / < 5.10 138888-01) - Local Root Exploit DEC Alpha Linux <= 3.0 - Local Root Exploit Linux Kernel <= 2.6.28 / <= 3.0 (DEC Alpha Linux) - Local Root Exploit Linux Kernel <= 2.2.18 (RH 7.0 and RH 6.2 / 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root Vulnerability (1) Linux Kernel <= 2.2.18 (RH 7.0 and RH 6.2 / 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root Vulnerability (2) Linux Kernel <= 2.2.18 (RH 7.0/6.2 / 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root Vulnerability (1) Linux Kernel <= 2.2.18 (RH 7.0/6.2 & 2.2.14 / 2.2.18 / 2.2.18ow4) - ptrace/execve Race Condition Local Root Vulnerability (2) Archlinux x86-64 3.3.x - 3.7.x x86-64 - sock_diag_handlers[] Local Root Linux Kernel < 3.3.x - 3.7.x (Arch Linux x86-64) - sock_diag_handlers[] Local Root Ovidentia FX Remote File Include Vulnerability Ovidentia FX - Remote File Include Vulnerability Linux Kernel 2.6.x / <= 2.6.9 / <= 2.6.11 (RHEL4) - SYS_EPoll_Wait Local Integer Overflow Local Root Vulnerability (2) Linux Kernel 2.6.x (RHEL4 <= 2.6.9 / <= 2.6.11) - SYS_EPoll_Wait Local Integer Overflow Local Root Vulnerability (2) Linux Kernel (Redhat) (32bit/64bit) - 'MSR' Driver Local Privilege Escalation Linux Kernel <= 3.7.6 (Redhat) (32bit/64bit) - 'MSR' Driver Local Privilege Escalation ovidentia 5.6.x/5.8 approb.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 vacadmb.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 vacadma.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 vacadm.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 statart.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 - search.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 posts.php babInstallPath Parameter Remote File Inclusion ovidentia 5.6.x/5.8 options.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - approb.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - vacadmb.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - vacadma.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - vacadm.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - statart.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - search.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - posts.php babInstallPath Parameter Remote File Inclusion Ovidentia 5.6.x/5.8 - options.php babInstallPath Parameter Remote File Inclusion Linux Kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition (x64) Local Privilege Escalation Linux Kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition Local Privilege Escalation (x64) Linux Kernel <= 4.3.3 overlayfs - Local Privilege Escalation Linux Kernel <= 4.3.3 - overlayfs Local Privilege Escalation Linux Kernel 3.10.0-229.x (RHEL 7.1. CentOS) - snd-usb-audio Crash PoC Linux Kernel 3.10.0-229.x (RHEL 7.1. CentOS) - iowarrior driver Crash PoC Linux Kernel 3.10.0-229.x (RHEL 7.1 / CentOS) - snd-usb-audio Crash PoC Linux Kernel 3.10.0-229.x (RHEL 7.1 / CentOS) - iowarrior driver Crash PoC Microsoft Windows Media Center .MCL File Processing Remote Code Execution (MS16-059) TrendMicro - Multiple HTTP Problems with CoreServiceShell.exe Microsoft Windows 7-10 & Server 2008-2012 - Local Privilege Escalation (x32/x64) (MS16-032) (C#)	2016-05-13 05:01:58 +00:00
Offensive Security	614fb1caf8	DB: 2016-05-12 ... 22 new exploits PoPToP PPTP <= 1.1.4-b3 - Remote Root Exploit (poptop-sane.c) PoPToP PPTP <= 1.1.4-b3 - 'poptop-sane.c' Remote Root Exploit Atftpd 0.6 - Remote Root Exploit (atftpdx.c) Atftpd 0.6 - 'atftpdx.c' Remote Root Exploit Yahoo Messenger 5.5 - Remote Exploit (DSR-ducky.c) Yahoo Messenger 5.5 - 'DSR-ducky.c' Remote Exploit CCBILL CGI Remote Exploit for whereami.cgi (ccbillx.c) CCBILL CGI - 'ccbillx.c' whereami.cgi Remote Exploit Cisco IOS IPv4 Packet Denial of Service Exploit (cisco-bug-44020.c) Cisco IOS - 'cisco-bug-44020.c' IPv4 Packet Denial of Service Exploit wu-ftpd 2.6.2 - Remote Denial of Service Exploit (wuftpd-freezer.c) wu-ftpd 2.6.2 - 'wuftpd-freezer.c' Remote Denial of Service Exploit Microsoft Windows - (Jolt2.c) Denial of Service Exploit Microsoft Windows - 'Jolt2.c' Denial of Service Exploit TCP SYN Denial of Service Exploit (bang.c) TCP SYN - 'bang.c' Denial of Service Exploit Apache HTTPd - Arbitrary Long HTTP Headers DoS (C) Apache HTTPd - Arbitrary Long HTTP Headers DoS Linux Kernel <= 2.4.26- File Offset Pointer Handling Memory Disclosure Exploit Linux Kernel <= 2.4.26 - File Offset Pointer Handling Memory Disclosure Exploit Linux Kernel 2.6.x (Slackware 9.1/ Debian 3.0) - chown() Group Ownership Alteration Exploit Linux Kernel 2.6.x (Slackware 9.1 / Debian 3.0) - chown() Group Ownership Alteration Exploit Veritas Backup Exec Agent 8.x/9.x - Browser Overflow (C) Veritas Backup Exec Agent 8.x/9.x - Browser Overflow Apache OpenSSL - Remote Exploit (Multiple Targets) (OpenFuckV2.c) Apache OpenSSL - 'OpenFuckV2.c' Remote Exploit CA License Server (GETCONFIG) Remote Buffer Overflow Exploit (c) CA License Server (GETCONFIG) Remote Buffer Overflow Exploit Aeon 0.2a - Local Linux Exploit (C) Aeon 0.2a - Local Linux Exploit Linux Kernel 2.4 / 2.6 - bluez Local Root Privilege Escalation Exploit (3) Linux Kernel 2.4.x / 2.6.x - 'Bluez' Bluetooth Signed Buffer Index Local Root (3) nbSMTP <= 0.99 (util.c) Client-Side Command Execution Exploit nbSMTP <= 0.99 - 'util.c' Client-Side Command Execution Exploit SuSE Linux <= 9.3 / 10 - (chfn) Local Root Privilege Escalation Exploit Linux chfn (SuSE <= 9.3 / 10) - Local Privilege Escalation Exploit SugarSuite Open Source <= 4.0beta Remote Code Execution Exploit (c) SugarSuite Open Source <= 4.0beta - Remote Code Execution Exploit Microsoft Windows IIS - Malformed HTTP Request Denial of Service Exploit (c) Microsoft Windows IIS - Malformed HTTP Request Denial of Service Exploit (pl) Microsoft Windows IIS - Malformed HTTP Request Denial of Service Exploit Microsoft Windows IIS - Malformed HTTP Request Denial of Service Exploit (Perl) OpenVMPSd <= 1.3 - Remote Format String Exploit (Multiple Targets) OpenVMPSd <= 1.3 - Remote Format String Exploit Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability Ubuntu Breezy 5.10 - Installer Password Disclosure Vulnerability X.Org X11 (X11R6.9.0/X11R7.0) - Local Root Privilege Escalation Exploit X.Org X11 (X11R6.9.0/X11R7.0) - Local Privilege Escalation Exploit DataLife Engine <= 4.1 - Remote SQL Injection Exploit (php) DataLife Engine <= 4.1 - Remote SQL Injection Exploit (PHP) Opera 9 IRC Client Remote Denial of Service Exploit (c) Opera 9 IRC Client Remote Denial of Service Exploit (py) Opera 9 - IRC Client Remote Denial of Service Exploit Opera 9 IRC Client - Remote Denial of Service Exploit (Python) Microsoft Windows PNG File IHDR Block Denial of Service Exploit PoC (c) Microsoft Windows - PNG File IHDR Block Denial of Service Exploit PoC (1) Microsoft Windows PNG File IHDR Block Denial of Service Exploit PoC (c) (2) Microsoft Windows - PNG File IHDR Block Denial of Service Exploit PoC (2) Microsoft Internet Explorer (VML) Remote Buffer Overflow Exploit (SP2) (pl) Microsoft Internet Explorer (VML) - Remote Buffer Overflow Exploit (SP2) (Perl) Microsoft Internet Explorer WebViewFolderIcon setSlice() Exploit (pl) Microsoft Internet Explorer - WebViewFolderIcon setSlice() Exploit (Perl) Microsoft Internet Explorer WebViewFolderIcon setSlice() Exploit (c) Microsoft Internet Explorer - WebViewFolderIcon setSlice() Exploit cPanel <= 10.8.x - (cpwrap via mysqladmin) Local Root Exploit (php) cPanel <= 10.8.x - (cpwrap via mysqladmin) Local Root Exploit (PHP) Xfire <= 1.6.4 - Remote Denial of Service Exploit (pl) Xfire <= 1.6.4 - Remote Denial of Service Exploit (Perl) Microsoft Windows NetpManageIPCConnect Stack Overflow Exploit (py) Microsoft Windows NetpManageIPCConnect - Stack Overflow Exploit (Python) VUPlayer <= 2.44 - (.M3U UNC Name) Buffer Overflow Exploit (c) VUPlayer <= 2.44 - (.M3U UNC Name) Buffer Overflow Exploit QK SMTP <= 3.01 (RCPT TO) Remote Buffer Overflow Exploit (pl) QK SMTP <= 3.01 - (RCPT TO) Remote Buffer Overflow Exploit (Perl) Ubuntu/Debian Apache 1.3.33/1.3.34 - (CGI TTY) Local Root Exploit Apache 1.3.33/1.3.34 (Ubuntu / Debian) - (CGI TTY) Local Root Exploit WarFTP 1.65 (USER) Remote Buffer Overlow Exploit (multiple targets) WarFTP 1.65 (USER) Remote Buffer Overlow Exploit XOOPS Module WF-Snippets <= 1.02 (c) BLIND SQL Injection Exploit XOOPS Module WF-Snippets <= 1.02 (c) - BLIND SQL Injection Exploit IrfanView 3.99 - (.ani) Local Buffer Overflow Exploit (multiple targets) IrfanView 3.99 - (.ani) Local Buffer Overflow Exploit 3proxy 0.5.3g logurl() Remote Buffer Overflow Exploit (Win32) (pl) 3proxy 0.5.3g logurl() - Remote Buffer Overflow Exploit (Win32) (Perl) Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c) Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit fuzzylime CMS 3.01 (polladd.php poll) Remote Code Execution Exploit (php) fuzzylime CMS 3.01 (polladd.php poll) Remote Code Execution Exploit (pl) fuzzylime CMS 3.01 (polladd.php poll) Remote Code Execution Exploit (PHP) fuzzylime CMS 3.01 - (polladd.php poll) Remote Code Execution Exploit (Perl) IntelliTamper 2.07 - (map file) Local Arbitrary Code Execution Exploit (pl) IntelliTamper 2.07 - (map file) Local Arbitrary Code Execution Exploit (Perl) IntelliTamper 2.0.7 - (html parser) Remote Buffer Overflow Exploit (c) IntelliTamper 2.0.7 - (html parser) Remote Buffer Overflow Exploit BIND 9.x - Remote DNS Cache Poisoning Flaw Exploit (py) BIND 9.x - Remote DNS Cache Poisoning Flaw Exploit (Python) BIND 9.x - Remote DNS Cache Poisoning Flaw Exploit (c) BIND 9.x - Remote DNS Cache Poisoning Flaw Exploit CoolPlayer 2.19 - (Skin File) Local Buffer Overflow Exploit (py) CoolPlayer 2.19 - (Skin File) Local Buffer Overflow Exploit (Python) Browser3D 3.5 - (.sfs) Local Stack Overflow Exploit (c) Browser3D 3.5 - (.sfs) Local Stack Overflow Exploit Microsoft Internet Explorer 7 - Memory Corruption Exploit (MS09-002) (py) Microsoft Internet Explorer 7 - Memory Corruption Exploit (MS09-002) (Python) EFS Easy Chat Server Authentication Request Buffer Overflow Exploit (pl) EFS Easy Chat Server - Authentication Request Buffer Overflow Exploit (Perl) CastRipper 2.50.70 - (.m3u) Universal Stack Overflow Exploit (py) CastRipper 2.50.70 - (.m3u) Universal Stack Overflow Exploit (Python) Microsoft IIS 6.0 WebDAV Remote Authentication Bypass Exploit (php) Microsoft IIS 6.0 WebDAV Remote Authentication Bypass Exploit (PHP) Microsoft IIS 6.0 WebDAV Remote Authentication Bypass Exploit (pl) Microsoft IIS 6.0 WebDAV - Remote Authentication Bypass Exploit (Perl) kloxo 5.75 - (24 issues) Multiple Vulnerabilities kloxo 5.75 - Multiple Vulnerabilities Mozilla Firefox 3.5 (Font tags) Remote Heap Spray Exploit (pl) Mozilla Firefox 3.5 - (Font tags) Remote Heap Spray Exploit (Perl) Adobe Acrobat 9.1.2 NOS - Local Privilege Escalation Exploit (C) Adobe Acrobat 9.1.2 NOS - Local Privilege Escalation Exploit MailEnable 1.52 HTTP Mail Service Stack BoF Exploit PoC MailEnable 1.52 - HTTP Mail Service Stack BoF Exploit PoC (Ubuntu 9.10/10.04) PAM 1.1.0 - MOTD File Tampering (Privilege Escalation) Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation Local Root Exploit (1) Cacti 0.8.7e: Multiple Security Issues Cacti 0.8.7e - Multiple Vulnerabilities (Tod Miller's) Sudo/SudoEdit 1.6.x < 1.6.9p21 & 1.7.x < 1.7.2p4 - Local Root Exploit (Tod Miller's) Sudo/SudoEdit 1.6.x / 1.7.x (<= 1.6.9p21 / <= 1.7.2p4) - Local Root Exploit PAM 1.1.0 MOTD (Ubuntu 9.10/10.04) - Local Root Exploit Linux PAM 1.1.0 (Ubuntu 9.10/10.04) - MOTD File Tampering Privilege Escalation Local Root Exploit (2) Linux Kernel < 2.6.36-rc1 CAN BCM (Ubuntu 10.04 / 2.6.32-21) - Privilege Escalation Exploit Linux Kernel < 2.6.36-rc1 CAN BCM (Ubuntu 10.04 / 2.6.32) - Privilege Escalation Exploit Ubuntu Linux - 'mountall' - Local Privilege Escalation Vulnerability mountall <= 2.15.2 (Ubuntu 10.04/10.10) - Local Privilege Escalation Vulnerability Cilem Haber 1.4.4 (Tr) - Database Disclosure Exploit (.py) Cilem Haber 1.4.4 (Tr) - Database Disclosure Exploit (Python) PHP Hosting Directory 2.0 Database Disclosure Exploit (.py) PHP Hosting Directory 2.0 Database Disclosure Exploit (Python) systemtap - Local Root Privilege Escalation Vulnerability systemtap - Local Privilege Escalation Vulnerability Linux Kernel < 2.6.34 CAP_SYS_ADMIN x86 & x64 (Ubuntu 110.10) - Local Privilege Escalation Exploit (2) Linux Kernel < 2.6.34 CAP_SYS_ADMIN x86 & x64 (Ubuntu 11.10) - Local Privilege Escalation Exploit (2) Kunena < 1.5.13_ < 1.6.3 - SQL Injection Vulnerability Kunena < 1.5.13 / < 1.6.3 - SQL Injection Vulnerability HP OpenView NNM 7.53_ 7.51 OVAS.EXE Pre-Authentication Stack Buffer Overflow HP OpenView NNM 7.53/7.51 OVAS.EXE Pre-Authentication Stack Buffer Overflow Safari 5.0.6_ 5.1 - SVG DOM Processing PoC Safari 5.0.6/5.1 - SVG DOM Processing PoC Ubuntu <= 11.04 ftp client Local Buffer Overflow Crash PoC FTP Client (Ubuntu <= 11.04) - Local Buffer Overflow Crash PoC Acpid 1:2.0.10-1ubuntu2 - Privilege Boundary Crossing Vulnerability Acpid 1:2.0.10-1ubuntu2 (Ubuntu 11.10/11.04) - Privilege Boundary Crossing Local Root Exploit RedHat Linux <= 6.0_ Slackware Linux <= 4.0 Termcap tgetent() Buffer Overflow (1) RedHat Linux <= 6.0_ Slackware Linux <= 4.0 Termcap tgetent() Buffer Overflow (2) RedHat Linux <= 6.0 / Slackware Linux <= 4.0 - Termcap tgetent() Buffer Overflow (1) RedHat Linux <= 6.0 / Slackware Linux <= 4.0 - Termcap tgetent() Buffer Overflow (2) Linux Kernel 2.2.x/2.4 .0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail) Vulnerability (1) Linux Kernel 2.2.x/2.4 .0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail <= 8.10.1) Vulnerability (2) Linux Kernel 2.2.x/2.4.0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail) Vulnerability (1) Linux Kernel 2.2.x/2.4.0-test1_ SGI ProPack 1.2/1.3 - Capabilities Local Root (sendmail <= 8.10.1) Vulnerability (2) Debian 2.x_RedHat 6.2_IRIX 5/6_ Solaris 2.x Mail Reply-To Field Vulnerability Debian 2.x_ RedHat 6.2_ IRIX 5/6_ Solaris 2.x - Mail Reply-To Field Vulnerability Pure-FTPd 1.0.21 (CentOS 6.2 & Ubuntu 8.04) - Crash PoC (Null Pointer Dereference) Pure-FTPd 1.0.21 (CentOS 6.2 / Ubuntu 8.04) - Crash PoC (Null Pointer Dereference) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - loopback (land.c) DoS (1) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - loopback (land.c) DoS (2) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - loopback (land.c) DoS (3) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - loopback (land.c) DoS (4) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - loopback (land.c) DoS (5) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - 'land.c' loopback DoS (1) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - 'land.c' loopback DoS (2) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - 'land.c' loopback DoS (3) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - 'land.c' loopback DoS (4) FreeBSD 2.x_HP-UX 9/10/11_kernel 2.0.3_Windows NT 4.0/Server 2003_NetBSD 1 - 'land.c' loopback DoS (5) cPanel 5.0 - Openwebmail Local Privileges Escalation Vulnerability cPanel 5.0 - Openwebmail Local Privilege Escalation Vulnerability Linux-PAM 0.77 - Pam_Wheel Module getlogin() Username Spoofing Privileged Escalation Vulnerability Linux PAM 0.77 - Pam_Wheel Module getlogin() Username Spoofing Privilege Escalation Vulnerability Totem Movie Player (Ubuntu) 3.4.3 - Stack Corruption Totem Movie Player 3.4.3 (Ubuntu) - Stack Corruption Flightgear 2.0_ 2.4 - Remote Format String Exploit Flightgear 2.0/2.4 - Remote Format String Exploit Opera 7.x_ Firefox 1.0_ Internet Explorer 6.0 - Information Disclosure Weakness Opera 7.x/Firefox 1.0/Internet Explorer 6.0 - Information Disclosure Weakness Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index PoC Vulnerability (1) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index Local Root Vulnerability (2) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index Local Root Vulnerability (3) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index Local Root Vulnerability (4) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index PoC (1) Linux Kernel 2.4.x / 2.6.x - Bluetooth Signed Buffer Index Local Root (2) Linux Kernel <= 2.4.30 / <= 2.6.11.5 - Bluetooth bluez_sock_create Local Root Vulnerability Linux Kernel 2.6.37 <= 3.x.x (CentOS) - PERF_EVENTS Local Root Exploit Linux Kernel 2.6.32 <= 3.x.x (CentOS) - PERF_EVENTS Local Root Exploit Linux Kernel 3.8.x - open-time Capability file_ns_capable() Privilege Escalation Linux Kernel < 3.8.x - open-time Capability file_ns_capable() Privilege Escalation OSX <= 10.8.4 - Local Root Privilege Escalation (py) OSX <= 10.8.4 - Local Privilege Escalation (Python) Moodle 2.3.8_ 2.4.5 - Multiple Vulnerabilities Moodle 2.3.8/2.4.5 - Multiple Vulnerabilities IBM AIX 6.1 / 7.1 - Local Root Privilege Escalation IBM AIX 6.1 / 7.1 - Local Privilege Escalation glibc and eglibc 2.5_ 2.7_ 2.13 - Buffer Overflow Vulnerability glibc and eglibc 2.5/2.7/2.13 - Buffer Overflow Vulnerability StatusNet/Laconica 0.7.4_ 0.8.2_ 0.9.0beta3 - Arbitrary File Reading StatusNet/Laconica 0.7.4/0.8.2/0.9.0beta3 - Arbitrary File Reading Links_ ELinks 'smbclient' Remote Command Execution Vulnerability Links_ ELinks 'smbclient' - Remote Command Execution Vulnerability Flyspray 0.9.9 - Information Disclosure_ HTML Injection and Cross-Site Scripting Vulnerabilities Flyspray 0.9.9 - Information Disclosure/HTML Injection/Cross-Site Scripting Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.04/13.10) - Local Root (CONFIG_X86_X32=y) Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.04/13.10) - 'CONFIG_X86_X32=y' Local Root Exploit Symantec Endpoint Protection Manager 11.0_ 12.0_ 12.1 - Remote Command Execution Exploit Symantec Endpoint Protection Manager 11.0/12.0/12.1 - Remote Command Execution Exploit ownCloud 4.0.x_ 4.5.x (upload.php filename param) - Remote Code Execution ownCloud 4.0.x/4.5.x (upload.php filename param) - Remote Code Execution Procentia IntelliPen 1.1.12.1520 (Data.aspx_ value param) - Blind SQL Injection Vtiger CRM 5.4.0_ 6.0 RC_ 6.0.0 GA (browse.php file param) - Local File Inclusion Procentia IntelliPen 1.1.12.1520 - data.aspx Blind SQL Injection Vtiger CRM 5.4.0/6.0 RC/6.0.0 GA (browse.php file param) - Local File Inclusion Haihaisoft HUPlayer 1.0.4.8 - (.m3u_ .pls_ .asx) Buffer Overflow (SEH) Haihaisoft Universal Player 1.5.8 - (.m3u_ .pls_ .asx) Buffer Overflow (SEH) Haihaisoft HUPlayer 1.0.4.8 - (.m3u/.pls/.asx) Buffer Overflow (SEH) Haihaisoft Universal Player 1.5.8 - (.m3u/.pls/.asx) Buffer Overflow (SEH) JIRA Issues Collector Directory Traversal JIRA Issues Collector - Directory Traversal CMSimple 4.4_ 4.4.2 - Remote File Inclusion CMSimple 4.4/4.4.2 - Remote File Inclusion Core FTP Server 1.2_ build 535_ 32-bit - Crash PoC Core FTP Server 1.2 build 535 32-bit - Crash PoC Samba <= 3.4.5 - Symlink Directory Traversal Vulnerability (C) Samba <= 3.4.5 - Symlink Directory Traversal Vulnerability Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR_ DEP & EMET 4.1.x Bypass (MS12-037) Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 4.1.x Bypass (MS12-037) Linux Kernel < 3.2.0-23 (Ubuntu 12.04) - ptrace/sysret Local Privilege Escalation Linux Kernel < 3.2.0-23 (Ubuntu 12.04) - ptrace/sysret Local Privilege Escalation Symantec Endpoint Protection 11.x_ 12.x - Kernel Pool Overflow Symantec Endpoint Protection 11.x/12.x - Kernel Pool Overflow Linux Kernel 3.16.1 - Remount FUSE Exploit Linux Kernel < 3.16.1 - Remount FUSE Local Root Exploit Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR_ DEP & EMET 5.0 Bypass (MS12-037) Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 5.0 Bypass (MS12-037) Rejetto HTTP File Server (HFS) 2.3a_ 2.3b_ 2.3c - Remote Command Execution Rejetto HTTP File Server (HFS) 2.3a/2.3b/2.3c - Remote Command Execution Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR_ DEP & EMET 5.1 Bypass (MS12-037) Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 5.1 Bypass (MS12-037) Mac OS X - IOKit Keyboard Driver Root Privilege Escalation Mac OS X - IOKit Keyboard Driver Privilege Escalation Liferay Portal 7.0.0 M1_ 7.0.0 M2_ 7.0.0 M3 - Pre-Auth RCE Liferay Portal 7.0.0 M1/7.0.0 M2/7.0.0 M3 - Pre-Auth RCE vBulletin MicroCART 1.1.4 - Arbitrary File(s) Deletion_ SQL Injection & XSS vBulletin MicroCART 1.1.4 - Arbitrary File(s) Deletion/SQL Injection/XSS MalwareBytes Anti-Exploit 1.03.1.1220_ 1.04.1.1012 Out-of-bounds Read DoS MalwareBytes Anti-Exploit 1.03.1.1220/1.04.1.1012 Out-of-bounds Read DoS JBoss AS 3_ 4_ 5_ 6 - Remote Command Execution JBoss AS 3/4/5/6 - Remote Command Execution Mac OS X < 10.7.5_ 10.8.2_ 10.9.5 10.10.2 - rootpipe Local Privilege Escalation Mac OS X < 10.7.5/10.8.2/10.9.5/10.10.2 - rootpipe Local Privilege Escalation Alienvault OSSIM/USM 4.14_ 4.15_ and 5.0 - Multiple Vulnerabilities Alienvault OSSIM/USM 4.14/4.15/5.0 - Multiple Vulnerabilities Pandora FMS 5.0_ 5.1 - Authentication Bypass Pandora FMS 5.0/5.1 - Authentication Bypass Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Local Root (Shell) Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Local Root Shell Cisco AnyConnect Secure Mobility 2.x_ 3.x_ 4.x - Client DoS PoC Cisco AnyConnect Secure Mobility 2.x/3.x/4.x - Client DoS PoC Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Local Root (Shadow File) Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - overlayfs Privilege Escalation (Access /etc/shadow) Orchard CMS 1.7.3_ 1.8.2_ 1.9.0 - Stored XSS Vulnerability Orchard CMS 1.7.3/1.8.2/1.9.0 - Stored XSS Vulnerability Ubuntu 14.04 NetKit FTP Client - Crash/DoS PoC NetKit FTP Client (Ubuntu 14.04) - Crash/DoS PoC Interspire Email Marketer Cross Site Scripting_ HTML Injection_ and SQL Injection Vulnerabilities Interspire Email Marketer - (Cross Site Scripting/HTML Injection/SQL Injection) Multiple Vulnerabilities BigDump Cross Site Scripting_ SQL Injection_ and Arbitrary File Upload Vulnerabilities BigDump - (Cross Site Scripting/SQL Injection/Arbitrary File Upload) Multiple Vulnerabilities Elastix < 2.5 _ PHP Code Injection Exploit Elastix < 2.5 - PHP Code Injection Exploit Microsoft Office Excel 2007_ 2010_ 2013 - BIFFRecord Use-After-Free Microsoft Office Excel 2007/2010/2013 - BIFFRecord Use-After-Free OS X Regex Engine (TRE) - Integer Signedness and Overflow Issues OS X Regex Engine (TRE) - (Integer Signedness and Overflow) Multiple Vulnerabilities Linux Kernel 3.3.5 - 'CLONE_NEWUSER|CLONE_FS' Local Privilege Escalation Vulnerability Linux Kernel 3.0 < 3.3.5 - 'CLONE_NEWUSER|CLONE_FS' Local Privilege Escalation Vulnerability Linux Kernel <=4.3.3 (Ubuntu 14.04_ 15.10) - overlayfs Local Root Exploit Linux Kernel <= 4.3.3 (Ubuntu 14.04/15.10) - overlayfs Local Root Exploit Exim < 4.86.2 - Local Root Privilege Escalation Exim < 4.86.2 - Local Privilege Escalation RHEL 7.1 (and CentOS) Kernel 3.10.0-229.x - snd-usb-audio Crash PoC RHEL 7.1 (and CentOS) Kernel 3.10.0-229.x - iowarrior driver Crash PoC Linux Kernel 3.10.0-229.x (RHEL 7.1. CentOS) - snd-usb-audio Crash PoC Linux Kernel 3.10.0-229.x (RHEL 7.1. CentOS) - iowarrior driver Crash PoC Trend Micro Deep Discovery Inspector 3.8_ 3.7 - CSRF Vulnerabilities Trend Micro Deep Discovery Inspector 3.8/3.7 - CSRF Vulnerabilities FireEye - Privilege Escalation to root from Malware Input Processor (uid=mip) FireEye - Malware Input Processor (uid=mip) Privilege Escalation Exploit Novell Service Desk 7.1.0_ 7.0.3 and 6.5 - Multiple Vulnerabilities Novell Service Desk 7.1.0/7.0.3 and 6.5 - Multiple Vulnerabilities Internet Explorer 9_ 10_ 11 - CDOMStringDataList::InitFromString Out-of-Bounds Read (MS15-112) Internet Explorer 9/10/11 - CDOMStringDataList::InitFromString Out-of-Bounds Read (MS15-112) Linux (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (/etc/shadow) Linux Kernel (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (/etc/shadow) Linux (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps Linux Kernel (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps Android Broadcom Wi-Fi Driver - Memory Corruption CIScan 1.00 - Hostname/IP Field SEH Overwrite PoC FileZilla FTP Client 3.17.0.0 - Unquoted Path Privilege Escalation Intuit QuickBooks Desktop 2007 - 2016 - Arbitrary Code Execution	2016-05-12 05:03:21 +00:00