FuzzyLime CMS versions 3.03a and below suffer from local file inclusion and file corruption vulnerabilities.
975d753b19444b0b622e5aba0a0eb372TekBase All-In-One version 3.1 suffers from multiple remote SQL injection vulnerabilities.
f3bcbc315cef5f48d89de52fab9b13c1phpFK version 7.03 suffers from a local file inclusion vulnerability in page_bottom.php.
a82759bd3e1374033cae98262bd97190XOOPS versions 2.3.3 and below suffer from a remote arbitrary file disclosure vulnerability.
d3383d0571dec0813287ad40736edd9bThis Metasploit module exploits a stack-based buffer overflow in Green Dam Youth Escort version 3.17 in the way it handles overly long URLs. By setting an overly long URL, an attacker can overrun a buffer and execute arbitrary code. This module uses the .NET DLL memory technique by Alexander Sotirov and Mark Dowd and should bypass DEP, NX and ASLR.
5a08d81c955f53de749118fe4a316053McAfee version 3.6.0.608 Policy Manager arbitrary data write vulnerability that leverages naPolicyManager.dll.
4c5df1fcd6485bd93819ee73fa5af730phpMyTourney suffers from a remote file inclusion vulnerability in adminfunctions.php. This is using the same variable as was discovered in September of 2007.
c9f20b1023cdbda2c0b35fff5f1faac0Carom3D version 5.06 unicode buffer overrun and denial of service exploit.
18f8e3a30bcb80cd9f8c33d58d6733f1Joomla Jumi component remote blind SQL injection exploit.
618b2e887f79a3e25691b03cfcfc0f6bPhportal version 1 suffers from a remote SQL injection vulnerability.
1fd55c6c3823142e8f98dbcad92fc29bThe Netgear DG632 router suffers from a remote denial of service vulnerability.
3ea7235afb1bf8d9e7732c3d144eb1adThe Netgear DG632 router suffers from a remote authentication bypass vulnerability.
4e97805ae8520e6ace344301fb1cde47phpCollegeExchange version 0.1.5c suffers from a remote SQL injection vulnerability in listing_view.php.
1435b5e0946bec97b48d7ceefb95d72bBlind remote SQL injection exploit for the Joomla iJoomla RSS component.
686ac400adcafb1c96e1339a3e5a3a1dApple QuickTime CRGN Atom stack overflow exploit that creates a malicious .mov file.
960a151888b6385f6673b834eda30cc2The vBulletin Radio and TV Player add-on suffers from cross site scripting, iframe injection, and redirect vulnerabilities.
9d30bf5c833defd5e2234ff1d2a085beTorrentTrader Classic version 1.09 suffers from information leakage, forced database backup, and multiple remote SQL injection vulnerabilities.
3efb1d3b6eb1efe55bc19a375db2cc85The WordPress Photoracer plugin version 1.0 suffers from a remote SQL injection vulnerability.
b1d8ee75997910943b39ac151ab323deSugarCRM versions 5.2.0e and below suffer from a remote code execution vulnerability.
f81ce65d75a4b29de7ebbf23b6cb8179AdaptWeb version 0.9.2 suffers from local file inclusion and remote SQL injection vulnerabilities.
ef34cc401c4229cd027748e7745a3394Elvin BTS version 1.2.0 suffers from remote SQL injection, cross site scripting, cross site request forgery, and local file inclusion vulnerabilities.
c13a26271db1a6d777a40ddf773a9989DB Top Sites version 1.0 suffers from a local file inclusion vulnerability in index.php.
7276359065dc4404ab5b73e46eb1e570DB Top Sites version 1.0 remote command execution exploit.
7c40b84001425d40461b8fff28bc115dImpleo Music Collection version 2.0 suffers from remote SQL injection and cross site scripting vulnerabilities.
3314aaacab092a943b541c5e85581790Evernew Free Joke Script version 1.2 remote change password exploit.
52dcbd188b32e1b21aec358f84cf8d87
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed