2007-06-15 XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit
2007-06-09 Yahoo! Messenger Webcam 8.1 (Ywcupl.dll) Download / Execute Exploit
2007-06-09 Yahoo! Messenger Webcam 8.1 (Ywcvwr.dll) Download / Execute Exploit
2007-06-09 Zenturi ProgramChecker ActiveX NavigateUrl() Insecure Method Exploit
2007-06-09 Zenturi ProgramChecker ActiveX Multiple Insecure Methods Exploit
2007-06-09 SafeNET High Assurance Remote 1.4.0 (IPSecDrv.sys) Remote DoS
2007-06-09 MiniWeb Http Server 0.8.x Remote Denial of Service Exploit
2007-06-08 Microsoft Windows Animated Cursor Stack Overflow Exploit
2007-06-08 Yahoo! Messenger Webcam 8.1 ActiveX Remote Buffer Overflow Exploit 2
2007-06-08 Yahoo! Messenger Webcam 8.1 ActiveX Remote Buffer Overflow Exploit
2007-06-08 NewsSync for phpBB 1.5.0rc6 Remote File Inclusion Exploit
2007-06-07 Madirish Webmail 2.0 (addressbook.php) Remote File Inclusion Vuln
2007-06-07 DRDoS - Distributed Reflection Denial of Service
2007-06-06 Wordpress 2.2 (xmlrpc.php) Remote SQL Injection Exploit
2007-06-04 HP Tru64 Remote Secure Shell User Enumeration Exploit (CVE-2007-2791)
2007-06-04 SNMPc <= 7.0.18 Remote Denial of Service Exploit (meta)
2007-06-04 IBM Tivoli Provisioning Manager PRE AUTH Remote Exploit
2007-06-04 screen 4.0.3 Local Authentication Bypass Vulnerability
2007-06-03 DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit
2007-06-03 XOOPS Module icontent 1.0 Remote File Inclusion Exploit
2007-06-03 Particle Gallery <= 1.0.1 Remote SQL Injection Exploit
2007-06-03 Vivotek Motion Jpeg Control (MjpegDecoder.dll 2.0.0.13) Remote Exploit
2007-06-03 Acoustica MP3 CD Burner 4.32 Local Buffer Overflow PoC
2007-06-03 Quick.Cart <= 2.2 RFI/LFI Remote Code Execution Exploit
2007-06-03 IE6 / Provideo Camimage (ISSCamControl.dll 1.0.1.5) Remote BoF Exploit
2007-06-03 Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit
2007-05-24 cpCommerce <= 1.1.0 (category.php id_category) SQL Injection Exploit
2007-05-24 Dokeos <= 1.6.5 (courseLog.php scormcontopen) SQL Injection Exploit
2007-05-24 LeadTools Raster Dialog File Object Activex Remote Buffer Overflow PoC
2007-05-24 UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Stack Overflow PoC
2007-05-24 Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC
2007-05-24 Microsoft Visual Basic 6.0 Project (Company Name) Stack overflow PoC
2007-05-24 MagicISO <= 5.4 (build239) .cue File Local Buffer Overflow Exploit
2007-05-24 Dokeos <= 1.8.0 (my_progress.php course) Remote SQL Injection Exploit
2007-05-23 Microsoft Office 2000 (OUACTRL.OCX v. 1.0.1.9) Remote DoS Exploit
2007-05-23 Scallywag (template.php path) Remote File Inclusion Vulnerabilities
2007-05-23 NavBoard 2.6.0 Remote Code Execution Exploit
2007-05-22 BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability
2007-05-22 LeadTools ISIS Control (ltisi14E.ocx v.14.5.0.44) Remote DoS Exploit
2007-05-22 KSign KSignSWAT <= 2.0.3.3 ActiveX Control Remote BoF Exploit
2007-05-22 Virtual CD 9.0.0.2 (vc9api.DLL) Remote Shell Commands Execution Exploit
2007-05-22 Pegasus ImagN ActiveX Control Remote Buffer Overflow Exploit
2007-05-22 Microsoft IIS 6.0 (/AUX/.aspx) Remote Denial of Service Exploit
2007-05-22 Ol Bookmarks Manager 0.7.4 Remote SQL Injection Vulnerability
2007-05-22 TutorialCMS <= 1.01 Authentication Bypass Vulnerability
2007-05-22 Ol Bookmarks Manager 0.7.4 (root) Remote File Inclusion Vulnerabilities
2007-05-22 LeadTools Raster Variant (LTRVR14e.dll) Remote File Overwrite Exploit
2007-05-22 Wordpress 2.1.3 admin-ajax.php SQL Injection Blind Fishing Exploit
2007-05-22 AlstraSoft Template Seller Pro <= 3.25 Remote Code Execution Exploit
2007-05-22 AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit
2007-04-18 Zomplog 3.8 (force_download.php file) Remote File Disclosure Vuln
2007-04-18 Rezervi 0.9 (root) Remote File Inclusion Vulnerabilities
2007-04-18 AimStats 3.2 (process.php update) Remote Code Execution Exploit
2007-04-18 Mozzers SubSystem final (subs.php) Remote Code Execution Vulnerability
2007-04-18 jGallery 1.3 (index.php) Remote File Inclusion Vulnerability
2007-04-18 Joomla Template Be2004-2 (index.php) Remote File Include Exploit
2007-04-18 ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit
2007-04-17 OllyDbg 1.10 Local Format String Exploit
2007-04-17 Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability
2007-04-17 MS Windows GDI Local Privilege Escalation Exploit (MS07-017) 2
2007-04-17 MiniGal b13 (image backdoor) Remote Code Execution Exploit
2007-04-17 Joomla Component JoomlaPack 1.0.4a2 RE (CAltInstaller.php) RFI
2007-04-17 AjPortal2Php (PagePrefix) Remote File Inclusion Vulnerabilities
2007-04-17 Anthologia 0.5.2 (index.php ads_file) Remote File Inclusion Vulnerability
2007-04-16 XOOPS Module tsdisplay4xoops 0.1 Remote File Inclusion Vulnerability
2007-04-16 StoreFront for Gallery (GALLERY_BASEDIR) RFI Vulnerabilities
2007-04-16 SunShop Shopping Cart 3.5/4.0 (abs_path) RFI Vulnerabilities
2007-04-16 openMairie 1.10 (scr/soustab.php) Local File Inclusion Vulnerability
2007-04-16 Web Slider 0.6 (path) Remote File Inclusion Vulnerabilities
2007-04-16 audioCMS arash 0.1.4 (arashlib_dir) Remote File Inclusion Vulnerabilities
2007-04-16 Gallery 1.2.5 (GALLERY_BASEDIR) Multiple RFI Vulnerabilities
2007-04-16 NMDeluxe 1.0.1 (footer.php template) Local File Inclusion Exploit
2007-04-16 CNStats 2.9 (who_r.php bj) Remote File Inclusion Vulnerability
2007-04-16 Papoo <= 3.02 (kontakt menuid) Remote SQL Injection Exploit
2007-04-16 MS Windows DNS RPC Remote Buffer Overflow Exploit (port 445)
2007-04-16 MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit
2007-04-15 XAMPP for Windows <= 1.6.0a mssql_connect() Remote BoF Exploit
2007-04-15 MS Windows DNS RPC Remote Buffer Overflow Exploit (win2k SP4)
2007-04-15 Mambo/Joomla Component Article 1.1 Remote File Inclusion Vulnerability
2007-04-15 LS simple guestbook (v1) Remote Code Execution Vulnerability
2007-04-15 Joomla Module AutoStand 1.0 Remote File Inclusion Vulnerability
2007-04-15 Pixaria Gallery 1.x (class.Smarty.php) Remote File Include Vulnerability
2007-04-14 bloofoxCMS 0.2.2 Cross Site Scripting
2007-04-14 Garennes 0.6.1 (repertoire_config) Remote File Inclusion Vulnerabilities
2007-04-14 Frogss CMS <= 0.7 Remote SQL Injection Exploit
2007-04-14 ProFTPD 1.3.0/1.3.0a (mod_ctrls) Local Overflow Exploit (exec-shield)
2007-04-14 QDBlog 0.4 (SQL Injection/LFI) Multiple Remote Vulnerabilities
2007-04-14 Vbulletin 3.6.5 Sql Injection ! [misc.php] Exploit
2007-04-13 IE (79+ Exes) NCTAudioFile2.AudioFile ActiveX Remote Overflow Exploit
2007-04-13 VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
2007-04-13 Ettercap-NG 0.7.3 Remote Denial of Service Exploit
2007-04-13 Chatness <= 2.5.3 (options.php/save.php) Remote Code Execution Exploit
2007-04-12 Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit
2007-04-12 Request It 1.0b (index.php id) Remote File Inclusion Vulnerability
2007-04-12 Expow 0.8 (autoindex.php cfg_file) Remote File Inclusion Vulnerability
2007-04-12 e107 0.7.8 (mailout.php) Access Escalation Exploit (admin needed)
2007-04-12 MyBulletinBoard (MyBB) <= 1.2.2 (CLIENT-IP) SQL Injection Exploit
2007-04-12 RicarGBooK 1.2.1 (header.php lang) Local File Inclusion Vulnerability
2007-04-12 WebKalk2 1.9.0 (absolute_path) Remote File Inclusion Vulnerability
2007-04-12 mxBB Module MX Shotcast 1.0 RC2 (getinfo1.php) RFI Exploit
2007-04-12 Sami HTTP Server 2.0.1 POST Request Denial of Service Exploit
2007-04-12 Joomla Component mosMedia <= 1.0.8 Remote File Inclusion Vulnerability
2007-04-12 Mambo Module Calendar (Agenda) 1.5.5 RFI Vulnerability
2007-04-12 Mambo Module Weather (absolute_path) RFI Vulnerability
2007-04-12 CodeBreak 1.1.2 (codebreak.php) Remote File Inclusion Exploit
2007-04-12 PunBB <= 1.2.14 Remote Code Execution Exploit
2007-04-12 Gran Paradiso 3.0a3 non-existent applet Denial of Service Exploit
2007-04-12 MiniWebsvr 0.0.7 Remote Directory Transversal Exploit
2007-04-12 TOSMO/Mambo 1.4.13a (absolute_path) Remote File Inclusion Vulns
2007-04-12 Mambo Component zOOm Media Gallery <= 2.5 Beta 2 RFI Vulnerabilities
2007-04-10 SimpCMS Light <= 04.10.2007 (site) Remote File Inclusion Vulnerability
2007-04-10 pL-PHP beta 0.9 Multiple Remote Vulnerabilities
2007-04-11 Joomla/Mambo Component Taskhopper 1.1 RFI Vulnerabilities
2007-04-10 InoutMailingListManager <= 3.1 Remote Command Execution Exploit
2007-04-10 Crea-Book <= 1.0 Admin Access Bypass / DB Disclosure / Code Execution
2007-04-10 Weatimages <= 1.7.1 ini[langpack] Remote File Inclusion Vulnerability
2007-04-10 phpGalleryScript 1.0 (init.gallery.php include_class) RFI Vulnerability
2007-04-10 Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability
2007-04-10 HIOX GUEST BOOK (HGB) 4.0 Remote Code Execution Vulnerability
2007-04-10 Pathos CMS 0.92-2 (warn.php file) Remote File Inclusion Vulnerability
2007-04-09 Multiple Microsoft Office Security Vulnerabilities
2007-04-09 PcP-Guestbook 3.0 (lang) Local File Inclusion Vulnerabilities
2007-04-09 MS Windows GDI Local Privilege Escalation Exploit (MS07-017)
2007-04-09 ScarNews 1.2.1 (sn_admin_dir) Local File Inclusion Exploit
2007-04-09 WitShare 0.9 (index.php menu) Local File Inclusion Vulnerability
2007-04-09 MyBlog: PHP and MySQL Blog/CMS software RFI Vulnerability
2007-04-08 PHP-Nuke Module eBoard 1.0.7 GLOBALS[name] LFI Exploit
2007-04-08 MS Windows Explorer Unspecified .ANI File Denial of Service Exploit
2007-04-08 ScarAdControl 1.1 Remote/Local File Inclusion Vulnerabilities
2007-04-08 Scorp Book 1.0 (smilies.php config) Remote File Inclusion Vulnerability
2007-04-07 Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)
2007-04-06 SmodCMS <= 2.10 (Slownik ssid) Remote SQL Injection Exploit
2007-04-06 SmodBIP <= 1.06 (aktualnosci zoom) Remote SQL Injection Exploit
2007-04-06 cattaDoc 2.21 (download2.php fn1) Remote File Disclosure Vulnerability
2007-04-06 Beryo 2.0 (downloadpic.php chemin) Remote File Disclosure Vulnerability
2007-04-06 FileCOPA FTP Server <= 1.01 (LIST) Remote Buffer Overflow Exploit (2)
2007-04-06 Wserve HTTP Server 4.6 (Long Directory Name) Denial of Service Exploit
2007-04-06 WebSPELL <= 4.01.02 (picture.php) File Disclosure Vulnerability
2007-04-06 XOOPS Module Jobs <= 2.4 (cid) Remote SQL Injection Exploit
2007-04-06 phpMyNewsletter <= 0.8 (beta5) Multiple Vuln Exploit
2007-04-06 XOOPS Module WF-Links <= 1.03 (cid) Remote SQL Injection Exploit
2007-04-04 XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
2007-04-04 Mutant 0.9.2 mutant_functions.php Remote File Inclusion Exploit
2007-04-04 TrueCrypt <= 4.3 Local Privilege Escalation Exploit (CVE-2007-1738)
2007-04-04 XOOPS Module WF-Snippets <= 1.02 (c) BLIND SQL Injection Exploit
2007-04-04 AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)
2007-04-04 HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit
2007-04-04 CyBoards PHP Lite 1.21 (script_path) Remote File Include Exploit
2007-04-04 AROUNDMe 0.7.7 Multiple Remote File Inclusion Vulnerabilities
2007-04-04 phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability
2007-04-04 MySpeach <= 3.0.7 Remote/Local File Inclusion Vulnerability
2007-04-03 Wordpress 2.1.2 (xmlrpc) Remote SQL Injection Exploit
2007-04-03 Xoops Module PopnupBlog <= 2.52 (postid) BLIND SQL Injection Exploit
2007-04-03 HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit
2007-04-03 MyBulletinBoard (MyBB) <= 1.2.3 Remote Code Execution Exploit
2007-04-03 MS Windows Animated Cursor (.ANI) Overflow Exploit (Hardware DEP)
2007-04-03 MS Windows Animated Cursor (.ANI) Universal Exploit Generator
2007-04-03 Frontbase <= 4.2.7 POST-AUTH Remote Buffer Overflow Exploit v2.2
2007-04-02 Ipswitch WS_FTP 5.05 Server Manager Local Site Buffer Overflow Exploit
2007-04-02 IrfanView 3.99 (.ANI File) Local Buffer Overflow Exploit
2007-04-02 MS Windows Animated Cursor (.ANI) Local Buffer Overflow Exploit
2007-04-02 Xoops Module Zmagazine 1.0 (print.php) Remote SQL Injection Exploit
2007-04-02 Xoops Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
2007-04-02 Xoops Module WF-Section <= 1.01 (articleid) SQL Injection Exploit
2007-04-02 Oracle 10g DBMS_AQ.ENQUEUE SQL Injection Exploit
2007-04-02 Xoops Module Virii Info <= 1.10 (index.php) Remote File Include Exploit
2007-04-02 Really Simple PHP and Ajax (RSPA) 2007-03-23 RFI Vulnerability
2007-04-02 PHP-Fusion Module Arcade 1.0 (cid) Remote SQL Injection Vulnerability
2007-04-02 MS Windows Animated Cursor (.ANI) Remote Exploit (eeye patch bypass)
2007-04-02 MS Windows XP Animated Cursor (.ANI) Remote Overflow Exploit 2
2007-04-02 MS Windows XP/Vista Animated Cursor (.ANI) Remote Overflow Exploit
2007-04-02 Xoops Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit
2007-04-02 Xoops Module myAlbum-P <= 2.0 (cid) Remote SQL Injection Exploit
2007-04-02 Flexphpnews 0.0.5 (news.php newsid) Remote SQL Injection Vulnerability
2007-04-02 Xoops Module debaser <= 0.92 (genre.php) BLIND SQL Injection Exploit
2007-04-02 Xoops Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit
2007-04-02 CWB PRO 1.5 (INCLUDE_PATH) Remote File Inclusion Vulnerabilities
2007-04-02 IPSwitch IMail Server <= 8.20 IMAPD Remote Buffer Overflow Exploit
2007-03-31 Xoops Module Tutoriais (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Core (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Library (viewcat.php) Remote SQL Injection Exploit
2007-03-31 Xoops Module Lykos Reviews 1.00 (index.php) SQL Injection Exploit
2007-03-31 IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit
2007-03-31 Windows .ANI LoadAniIcon Stack Overflow (dev code)
2007-03-31 dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx)
2007-03-31 JSBoard 2.0.10 (login.php table) Local File Inclusion Vulnerability
2007-03-31 phpBB MOD Forum picture and META tags 1.7 RFI Vulnerability
2007-03-31 Xoops Module Repository (viewcat.php) Remote SQL Injection Exploit
2007-03-30 JC URLshrink 1.3.1 Remote Code Execution Vulnerability
2007-03-30 ActSoft DVD-Tools (dvdtools.ocx) Remote Buffer Overflow Exploit
2007-03-30 Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux)
2007-03-30 Advanced Login <= 0.7 (root) Remote File Inclusion Vulnerability
2007-03-30 Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities
2007-03-30 Mozilla Firefox 2.0.0.3 / Gran Paradiso 3.0a3 DoS Hang / Crash Exploit
2007-03-30 Picture-Engine <= 1.2.0 (wall.php cat) Remote SQL Injection Exploit
2007-03-30 CA BrightStor Backup 11.5.2.0 (Mediasvr.exe) Remote Code Exploit
2007-03-30 Xoops Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit
2007-03-30 IBM Lotus Domino Server 6.5 (username) Remote Denial of Service Exploit
2007-03-30 sBLOG 0.7.3 Beta (inc/lang.php) Local File Inclusion Exploit
2007-03-30 Softerra Time-Assistant <= 6.2 (inc_dir) Remote File Inclusion Vuln
2007-03-29 CodeBB 1.0 beta 2 (phpbb_root_path) Remote File Inclusion Vulnerability
2007-03-29 MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability
2007-03-29 Xoops Module Friendfinder <= 3.3 (view.php id) SQL Injection Exploit
2007-03-29 iPhotoAlbum 1.1 (header.php) Remote File Include Vulnerability
2007-03-29 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit v2
2007-03-29 Xoops module Articles <= 1.03 (index.php cat_id) SQL Injection Exploit
2007-03-28 Corel Wordperfect X3 13.0.0.565 (.PRS) Local Buffer Overflow Exploit
2007-03-28 Web Content System 2.7.1 Remote File Inclusion Exploit
2007-03-28 PHP-Nuke Module Eve-Nuke 0.1 (mysql.php) RFI Vulnerability
2007-03-28 Playstation 3 "Remote Play" Remote DoS Exploit
2007-03-27 Joomla Component D4JeZine <= 2.8 Remote BLIND SQL Injection Exploit
2007-03-27 NaviCOPA Web Server 2.01 Remote Buffer Overflow Exploit (meta)
2007-03-27 Xoops module Articles <= 1.02 (print.php id) SQL Injection Exploit
2007-03-27 Linux Kernel <= 2.6.20 with DCCP Support Memory Disclosure Exploit
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC
2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2
2007-03-27 Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit v2
2007-03-27 C-Arbre <= 0.6PR7 (root_path) Remote File Inclusion Vulnerability
2007-03-27 PHP-Nuke Module Addressbook 1.2 Local File Inclusion Exploit
2007-03-27 IceBB 1.0-rc5 Remote Code Execution Exploit
2007-03-27 IceBB 1.0-rc5 Remote Create Admin Exploit
2007-03-27 Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit (Win2K SP4)
2007-03-26 FreeBSD mcweject 0.9 (eject) Local Root Buffer Overflow Exploit
2007-03-26 MS Internet Explorer Recordset Double Free Memory Exploit (MS07-009)
2007-03-26 PHP 5.2.1 with PECL phpDOC Local Buffer Overflow Exploit
2007-03-26 Frontbase <= 4.2.7 Remote Buffer Overflow Exploit (windows)
2007-03-26 PBlang 4.66z Remote Code Execution Exploit
2007-03-26 PHP <= 4.4.4 / 5.2.1 / 5.1.6 readfile() Safe Mode Bypass Vulnerability
2007-03-26 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit
2007-03-26 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit
2007-03-25 WarFTP 1.65 (USER) Remote Buffer Overlow Exploit (multiple targets)
2007-03-25 PBlang <= 4.66z Remote Create Admin Exploit
2007-03-25 Free Image Hosting <= 2.0 (AD_BODY_TEMP) Remote File Inclusion Vulns
2007-03-25 Mambo Module Flatmenu <= 1.07 Remote File Include Exploit
2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit
2007-03-24 Joomla Component RWCards <= 2.4.3 Remote SQL Injection Exploit
2007-03-24 Joomla Component Car Manager <= 1.1 Remote SQL Injection Exploit
2007-03-24 ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability
2007-03-24 Net-Side.net CMS (index.php cms) Remote File Inclusion Vulnerability
2007-03-24 Mercury Mail 4.0.1 (LOGIN) Remote IMAP Stack Buffer Overflow Exploit
2007-03-24 Joomla Component Joomlaboard 1.1.1 (sbp) RFI Vulnerability
2007-03-24 PHP 5.2.1 unserialize() Local Information Leak Exploit
2007-03-24 eWebquiz <= V.8 (eWebQuiz.asp) Remote SQL Injection Exploit
2007-03-24 Joomla/Mambo Component SWmenuFree 4.0 RFI Vulnerability
2007-03-24 Active Newsletter <= 4.3 (ViewNewspapers.asp) SQL Injection Exploit
2007-03-23 Ethernet Device Drivers Frame Padding Info Leakage Exploit (Etherleak)
2007-03-23 dproxy <= 0.5 Remote Buffer Overflow Exploit (meta 2.7)
2007-03-23 Mambo Module uhp 0.3 (uhp_config.php) Remote File Inclusion Exploit
2007-03-23 Philex <= 0.2.3 RFI / File Disclosure Remote Vulnerabilities
2007-03-23 Active Auction Pro 7.1 (default.asp catid) SQL Injection Vulnerability
2007-03-23 ActiveBuyandSell 6.2 (buyersend.asp catid) SQL Injection Vulnerability
2007-03-23 Active Trade v 2 (default.asp catid) Remote SQL Injection Vulnerability
2007-03-23 RoseOnlineCMS 3 beta2 (op) Local File Inclusion Exploit
2007-03-22 0irc-client v1345 build20060823 Denial of Service Exploit
2007-03-22 spWebCalendar 4.5 (calendar.asp eventid) SQL Injection Vulnerability
2007-03-22 LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities
2007-03-22 Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
2007-03-22 PortailPhp 2.0 (idnews) Remote SQL Injection Exploit
2007-03-22 ClassWeb 2.0.3 (BASE) Remote File Inclusion Vulnerabilities
2007-03-22 FutureSoft TFTP Server 2000 Remote SEH Overwrite Exploit
2007-03-21 Mercur Messaging 2005 <= SP4 IMAP Remote Exploit (egghunter mod)
2007-03-21 Mambo Component nfnaddressbook 0.4 Remote File Inclusion Vulnerability
2007-03-21 php-revista <= 1.1.2 Multiple Remote SQL Injection Vulnerabilities
2007-03-21 Mercur Messaging 2005 IMAP (SUBSCRIBE) Remote Exploit (win2k SP4)
2007-03-21 Active Photo Gallery (default.asp catid) SQL Injection Vulnerability
2007-03-21 Grandstream Budge Tone-200 IP Phone (Digest domain) DoS Exploit
2007-03-21 Active Link Engine (default.asp catid) Remote SQL Injection Vulnerability
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit
2007-03-20 phpRaid < 3.0.7 (rss.php phpraid_dir) Remote File Inclusion Exploit
2007-03-20 Mercur IMAPD 5.00.14 Remote Denial of Service Exploit (win32)
2007-03-20 Cisco Phone 7940/7960 (SIP INVITE) Remote Denial of Service Exploit
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit
2007-03-20 PHP-Nuke Module htmltonuke 2.0alpha (htmltonuke.php) RFI Vuln
2007-03-20 FTPDMIN 0.96 (LIST) Remote Denial of Service Exploit
2007-03-20 GeBlog 0.1 GLOBALS[tplname] Local File Inclusion Exploit (win)
2007-03-19 pragmaMX Module Landkarten 2.1 Local File Inclusion Exploit (win)
2007-03-19 NetVios Portal (page.asp) Remote SQL Injection Vulnerability
2007-03-19 phpBB Minerva Mod <= 2.0.21 build 238a SQL Injection Vulnerability
2007-03-19 PHP-Nuke Module splattforum 4.0 RC1 Local File Inclusion Exploit
2007-03-19 PHP 5.2.0 header() Space Trimming Buffer Underflow Exploit (MacOSX)
2007-03-19 MetaForum <= 0.513 Beta Remote File Upload Exploit
2007-03-19 ScriptMagix Lyrics <= 2.0 (index.php recid) SQL Injection Exploit
2007-03-18 Avant Browser <= 11.0 build 26 Remote Stack Overflow Crash Exploit
2007-03-18 Katalog Plyt Audio (pl) <= 1.0 Remote SQL Injection Exploit
2007-03-18 iFrame for Phpnuke (iframe.php) Remote File Inclusion Vulnerability
2007-03-18 ScriptMagix Photo Rating <= 2.0 Remote SQL Injection Exploit
2007-03-18 ScriptMagix Recipes <= 2.0 (index.php catid) SQL Injection Exploit
2007-03-18 ScriptMagix Jokes <= 2.0 (index.php catid) Remote SQL Injection Exploit
2007-03-18 Moodle <= 1.5.2 (moodledata) Remote Session Disclosure Vulnerability
2007-03-18 ScriptMagix FAQ Builder <= 2.0 (index.php) Remote SQL Injection Exploit
2007-03-17 Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit
2007-03-17 MPM Chat 2.5 (view.php logi) Local File Include Vulnerability
2007-03-17 Php-Stats <= 0.1.9.1b (php-stats-options.php) admin 2 exec() eExploit
2007-03-16 PHP DB Designer <= 1.02 Remote File Include Vulnerabilities
2007-03-16 Particle Blogger <= 1.2.0 (post.php postid) Remote SQL Injection Exploit
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit
2007-03-16 Creative Files 1.2 (kommentare.php) Remote SQL Injection Vulnerability
2007-03-16 Php-Stats <= 0.1.9.1b (ip) Remote SQL Injection Exploit
2007-03-16 Php-Stats <= 0.1.9.1b (PC-REMOTE-ADDR) SQL Injection Exploit
2007-03-16 CA BrightStor ARCserve (msgeng.exe) Remote Stack Overflow Exploit
2007-03-15 McGallery 0.5b (download.php) Arbitrary File Download Vulnerability
2007-03-15 Absolute Image Gallery 2.0 (gallery.php categoryid) SQL Injection Vuln
2007-03-15 WebCalendar 0.9.45 (includedir) Remote File Inclusion Vulnerability
2007-03-15 OpenBSD ICMPv6 Fragment Remote Execution Exploit PoC
2007-03-15 WBBlog (XSS/SQL) Multiple Remote Vulnerabilities
2007-03-15 Creative Guestbook 1.0 Multiple Remote Vulnerabilities
2007-03-15 PHP <= 4.4.6 ibase_connect() Local Buffer Overflow Exploit
2007-03-15 CcMail 1.0.1 (update.php functions_dir) Remote File Inclusion Exploit
2007-03-15 Groupit 2.00b5 (c_basepath) Remote File Inclusion Vulnerability
2007-03-15 Company WebSite Builder PRO 1.9.8 (INCLUDE_PATH) RFI Vulnerability
2007-03-15 WebLog (index.php file) Remote File Disclosure Vulnerability
2007-03-15 Woltab Burning Board 2.x (usergroups.php) Remote SQL Injection Exploit
2007-03-15 WarFTP 1.65 (USER) Remote Buffer Overflow SEH Overflow Exploit
2007-03-15 Orion-Blog 2.0 (AdminBlogNewsEdit.asp) Remote Auth Bypass Vuln
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit
2007-03-14 Dayfox Blog 4 (postpost.php) Remote Code Execution Vulnerability
2007-03-14 WSN Guest 1.21 (comments.php id) Remote SQL Injection Exploit
2007-03-14 ZomPlog <= 3.7.6 Local File Inclusion Vulnerabilty (win32)
2007-03-14 WarFTP 1.65 (USER) Remote Buffer Overflow Exploit (win2k SP4)
2007-03-13 WebCreator <= 0.2.6-rc3 (moddir) Remote File Inclusion Vulnerability
2007-03-13 CARE2X 1.1 (root_path) Remote File Inclusion Vulnerability
2007-03-13 Activist Mobilization Platform (AMP) 3.2 Remote File Include Vuln
2007-03-13 X-ice News System 1.0 (devami.asp id) SQL Injection Vulnerability
2007-03-13 JGBBS 3.0beta1 (search.asp author) SQL Injection Exploit
2007-03-13 GestArt beta 1 (aide.php aide) Remote File Inclusion Vulnerability
2007-03-13 MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
2007-03-12 BP Blog 7.0 (default.asp layout) Remote SQL Injection Vulnerability
2007-03-12 OES (Open Educational System) 0.1beta Remote File Inclusion Vuln
2007-03-12 News Bin Pro 4.32 Article Grabbing Remote Unicode BoF Exploit
2007-03-12 NewsReactor 20070220 Article Grabbing Remote BoF Exploit (2)
2007-03-12 NewsReactor 20070220 Article Grabbing Remote BoF Exploit (1)
2007-03-12 TFTP Server 1.3 Remote Buffer Overflow Denial of Service Exploit
2007-03-12 PHP 5.2.0 ext/filter Space Trimming Buffer Underflow Exploit (MacOSX)
2007-03-11 cPanel <= 10.9.x (fantastico) Local File Inclusion Vulnerabilities
2007-03-11 AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln
2007-03-11 SonicMailer Pro <= 3.2.3 (index.php) Remote SQL Injection Exploit
2007-03-11 Top Auction 1.0 (viewcat.php) Remote SQL Injection Exploit
2007-03-11 JobSitePro 1.0 (search.php) Remote SQL Injection Exploit
2007-03-11 PostNuke Module phgstats 0.5 (phgdir) Remote File Include Exploit
2007-03-10 MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption
2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit
2007-03-10 Oracle 10g (PROCESS_DUP_HANDLE) Local Privilege Elevation (win32)
2007-03-10 NukeSentinel <= 2.5.06 (mysql >= 4.0.24) Remote SQL Injection Exploit
2007-03-11 HC Newssystem 1.0-1.4 (index.php ID) Remote SQL Injection Vulnerability
2007-03-10 WORK system e-commerce <= 3.0.5 Remote File Inclusion Vulnerability
2007-03-09 Grayscale Blog 0.8.0 (Security Bypass/SQL/XSS) Multiple Remote Vulns
2007-03-09 MS Internet Explorer (FTP Server Response) DoS Exploit (MS07-002)
2007-03-09 PMB Services <= 3.0.13 Multiple Remote File Inclusion Vulnerability
2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC
2007-03-09 Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit
2007-03-09 PHP 4.4.6 snmpget() object id Local Buffer Overflow Exploit PoC
2007-03-08 Magic CMS 4.2.747 (mysave.php file) Remote File Include Vulnerability
2007-03-08 GaziYapBoz Game Portal (kategori.asp) Remote SQL Injection Vuln
2007-03-08 WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vuln
2007-03-08 netForo! 0.1 (down.php file_to_download) Remote File Disclosure Vuln
2007-03-08 Snort 2.6.1.1/2.6.1.2/2.7.0 (fragementation) Remote DoS Exploit
2007-03-08 Rediff Toolbar ActiveX Control Remote Denial of Service Exploit
2007-03-08 TFTPDWIN Server 0.4.2 (UDP) Denial of Service Exploit
2007-03-08 PHP 4.4.6 crack_opendict() Local Buffer Overflow Exploit PoC
2007-03-08 Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption
2007-03-07 PHP COM extensions (inconsistent Win32) safe_mode Bypass Exploit
2007-03-07 Flat Chat 2.0 (include online.txt) Remote Code Execution Vulnerability
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit
2006-09-09 Vivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability
2006-09-09 openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit
2006-09-09 Vivvo Article Manager <= 3.2 (id) Remote SQL Injection Vulnerability
2006-09-09 Socketwiz Bookmarks <= 2.0 (root_dir) Remote File Include Exploit
2006-09-09 MyABraCaDaWeb <= 1.0.3 (base) Remote File Include Vulnerabilities
2006-09-08 Multithreaded TFTP <= 1.1 (Long Get Request) Denial of Service Exploit
2006-09-08 CCleague Pro <= 1.0.1RC1 (Cookie) Remote Code Execution Exploit
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (sco/x86)
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (solaris/x86)
2006-09-08 X11R6 <= 6.4 XKEYBOARD Local Buffer Overflow Exploit (solaris/sparc)
2006-09-08 Somery <= 0.4.6 (skin_dir) Remote File Include Vulnerability
2006-09-08 RaidenHTTPD 1.1.49 (SoftParserFileXml) Remote Code Execution Exploit
2006-09-07 PhotoKorn Gallery <= 1.52 (dir_path) Remote File Include Vulnerabilities
2006-09-07 WM-News <= 0.5 Multiple Remote File Include Vulnerabilities
2006-09-07 News Evolution 3.0.3 _NE[AbsPath] Remote File Include Vulnerabilities
2006-09-07 ACGV News 0.9.1 (PathNews) Remote File Include Vulnerability
2006-09-07 PhpNews 1.0 (Include) Remote File Include Vulnerabilities
2006-09-07 DokuWiki <= 2006-03-09b (dwpage.php) System Disclosure Exploit
2006-09-07 DokuWiki <= 2006-03-09b (dwpage.php) Remote Code Execution Exploit
2006-09-07 IBM Director < 5.10 (Redirect.bat) Directory Transversal Vulnerability
2006-09-07 Fire Soft Board <= RC 3 (racine) Remote File Include Vulnerability
2006-09-07 Web Server Creator v0.1 (l) Remote Include Vulnerability
2006-09-07 SL_Site <= 1.0 (spaw_root) Remote File Include Vulnerability
2006-09-07 PayProCart <= 1146078425 Multiple Remote File Include Vulnerabilities
2006-09-06 Akarru <= 0.4.3.34 (bm_content) Remote File Include Vulnerability
2006-09-06 Beautifier 0.1 (Core.php) Remote File Include Vulnerability
2006-09-06 phpFullAnnu <= 5.1 (repmod) Remote File Include Vulnerability
2006-09-06 BinGo News <= 3.01 (bnrep) Remote File Include Vulnerability
2006-09-06 phpBB Shadow Premod <= 2.7.1 Remote File Include Vulnerability
2006-09-05 PhpCommander <= 3.0 Remote Code Execution Exploit (mq=off)
2006-09-05 Sponge News <= 2.2 (sndir) Remote File Include Vulnerability
2006-09-05 C-News <= 1.0.1 (path) Remote File Inclusion Vulnerability
2006-09-05 ACGV News <= 0.9.1 (PathNews) Remote File Inclusion Vulnerability
2006-09-05 Zix Forum <= 1.12 (RepId) Remote SQL Injection Vulnerability
2006-09-05 AnnonceV News Script <= 1.1 (page) Remote File Include Vulnerability
2006-09-05 GrapAgenda 0.1 (page) Remote File Include Vulnerability
2006-09-05 dsock <= 1.3 (buf) Remote Buffer Overflow PoC
2006-09-05 J. River Media Center 11.0.309 Remote Denial of Service PoC
2006-09-05 MySpeach <= 3.0.2 (my_ms[root]) Remote File Include Vulnerability
2006-09-04 SoftBB 0.1 (cmd) Remote Command Execution Exploit
2006-09-04 PHP Proxima <= v.6 completepack Remote Code Execution Exploit
2006-09-04 pHNews <= alpha 1 (templates_dir) Remote Code Execution Exploit
2006-09-04 Tr Forum 2.0 SQL Injection / Bypass Security Restriction Exploit
2006-09-04 SimpleBlog <= 2.3 (id) Remote SQL Injection Vulnerability
2006-09-04 In-link <= 2.3.4 (ADODB_DIR) Remote File Include Vulnerabilities
2006-09-04 Muratsoft Haber Portal 3.6 (tr) Remote SQL Injection Vulnerability
2006-09-04 FlashChat <= 4.5.7 (aedating4CMS.php) Remote File Include Vulnerability
2006-09-04 yappa-ng <= 2.3.1 (admin_modules) Remote File Include Vulnerability
2006-09-03 PmWiki <= 2.1.19 (Zend_Hash_Del_Key_Or_Index) Remote Exploit
2006-09-02 Dyncms <= Release 6 (x_admindir) Remote File Include Vulnerability
2006-09-02 Annuaire 1Two 2.2 Remote SQL Injection Exploit
2006-09-02 TikiWiki <= 1.9 Sirius (jhot.php) Remote Command Execution Exploit
2006-09-01 MyBace Light (login_check.php) Remote File Vulnerability
2006-09-01 icblogger v2 (YID) Remote SQL Injection Vulnerability
2006-09-01 PowerZip <= 7.06.3895 Long Filename Handling Buffer Overflow Exploit
2006-09-01 TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit
2006-09-01 TIBCO Rendezvous <= 7.4.11 (add router) Remote BOF Exploit
2006-08-31 YACS CMS <= 6.6.1 context[path_to_root] Remote File Include Vuln
2006-08-31 Pheap CMS <= 1.1 (lpref) Remote File Include Exploit
2006-08-30 Lanifex DMO <= 2.3b (_incMgr) Remote File Include Exploit
2006-08-30 phpAtm <= 1.21 (include_location) Remote File Include Vulnerabilities
2006-08-30 ZipCentral 4.01 ZIP File Handling Local Buffer Overflow Exploit
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 2
2006-08-29 IBM eGatherer <= 3.20.0284.0 (ActiveX) Remote Code Execution Exploit
2006-08-29 phpECard <= 2.1.4 (functions.php) Remote File Include Vulnerability
2006-08-29 Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit
2006-08-29 ExBB Italiano <= 0.2 exbb[home_path] Remote File Include Vulnerability
2006-08-29 MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities
2006-08-29 PortailPHP mod_phpalbum <= 2.1.5 (chemin) Remote Include Vuln
2006-08-29 phpGroupWare <= 0.9.16.010 GLOBALS[] Remote Code Execution Exploit
2006-08-29 Web3news <= 0.95 (PHPSECURITYADMIN_PATH) Remote Include Vuln
2006-08-28 e107 <= 0.75 (GLOBALS Overwrite) Remote Code Execution Exploit
2006-08-28 Cybuzu Garoon 2.1.0 Multiple Remote SQL Injection Vulnerabilities
2006-08-28 Cybozu Products (id) Arbitrary File Retrieval Vulnerability
2006-08-27 MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040) (2)
2006-08-27 VMware 5.5.1 (ActiveX) Local Buffer Overflow Exploit
2006-08-27 Ay System CMS <= 2.6 (main.php) Remote File Include Vulnerability
2006-08-27 CMS Frogss <= 0.4 (podpis) Remote SQL Injection Exploit
2006-08-27 iziContents <= RC6 GLOBALS[] Remote Code Execution Exploit
2006-08-27 AlberT-EasySite <= 1.0a5 (PSA_PATH) Remote File Include Exploit
2006-08-26 proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability
2006-08-26 MDaemon POP3 Server < 9.06 (USER) Remote Heap Overflow Exploit
2006-08-25 CliServ Web Community <= 0.65 (cl_headers) Include Vulnerability
2006-08-25 Integramod Portal <= 2.0 rc2 (phpbb_root_path) Remote Include Vulnerabilities
2006-08-25 eFiction < 2.0.7 Remote Admin Authentication Bypass Vulnerability
2006-08-24 phpCOIN 1.2.3 (session_set.php) Remote Include Vulnerability
2006-08-24 Phaos <= 0.9.2 basename() Remote Command Execution Exploit
2006-08-24 Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit
2006-08-24 VistaBB <= 2.x (functions_mod_user.php) Remote Include Exploit
2006-08-23 Integramod Portal <= 2.x (functions_portal.php) Remote Include Exploit
2006-08-23 pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability
2006-08-23 phpBB All Topics Mod <= 1.5.0 (start) Remote SQL Injection Exploit
2006-08-23 MercuryBoard <= 1.1.4 (User-Agent) Remote SQL Injection Exploit
2006-08-22 2wire Modems/Routers CRLF Denial of Service Exploit
2006-08-22 MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC
2006-08-22 Mozilla Firefox <= 1.5.0.6 (FTP Request) Remote Denial of Service Exploit
2006-08-22 Simple Machines Forum <= 1.1 rc2 Lock Topics Remote Exploit (windows)
2006-08-22 Solaris 8 / 9 (/usr/ucb/ps) Local Information Leak Exploit
2006-08-22 Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit
2006-08-22 HPE 1.0 (HPEinc) Remote File Include Vulnerabilities
2006-08-22 Empire CMS <= 3.7 (checklevel.php) Remote File Include Vulnerability
2006-08-21 MS Internet Explorer Multiple COM Object Color Property DoS
2006-08-21 Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC
2006-08-21 PHProjekt <= 6.1 (path_pre) Multiple Remote File Include Vulnerabilities
2006-08-21 Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit (PoC)
2006-08-21 WFTPD 3.23 (SIZE) Remote Buffer Overflow Exploit
2006-08-20 SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Exploit
2006-08-20 Simple Machines Forum <= 1.1 rc2 (lngfile) Remote Exploit (windows)
2006-08-20 LBlog <= 1.05 (comments.asp) Remote SQL Injection Vulnerabilit
2006-08-20 Shadows Rising RPG <= 0.0.5b Remote File Include Vulnerabilities
2006-08-20 SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Vulnerability
2006-08-20 SportsPHool <= 1.0 (mainnav) Remote File Include Vulnerability
2006-08-20 NES Game and NES System <= c108122 File Include Vulnerabilities
2006-08-19 mambo com_babackup Component <= 1.1 File Include Vulnerability
2006-08-19 ZZ:FlashChat <= 3.1 (adminlog) Remote File Incude Vulnerability
2006-08-19 MS Windows CanonicalizePathName() Remote Exploit (MS06-040)
2006-08-19 Mambo com_lurm_constructor Component <= 0.6b Include Vulnerability
2006-08-19 Fantastic News <= 2.1.3 (script_path) Remote File Include Vulnerability
2006-08-19 Tutti a <= 1.6 (TNLIB_DIR) R2006-08-20emote File Include Vulnerability
2006-08-19 Joomla <=1.0.10 (poll component) Arbitrary Add Votes Exploit
2006-08-19 interact <= 2.2 (CONFIG[BASE_PATH]) Remote File Include Vulnerability
2006-08-19 Mambo cropimage Component <= 1.0 Remote File Include Vulnerability
2006-08-18 Sonium Enterprise Adressbook <= 0.2 (folder) Include Vulnerability
2006-08-18 Joomla Kochsuite Component <= 0.9.4 Remote File Include Vulnerability
2006-08-18 Joomla Link Directory Component <= 1.0.3 Remote Include Vulnerability
2006-08-18 Mambo MamboWiki Component <= 0.9.6 Remote Include Vulnerability
2006-08-18 phpCodeGenie <= 3.0.2 (BEAUT_PATH) Remote File Include Vulnerability
2006-08-18 PHlyMail Lite <= 3.4.4 (mod.listmail.php) Remote Include Vulnerability
2006-08-18 MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c) (2)
2006-08-18 Joomla Artlinks Component <= 1.0b4 Remote Include Vulnerability
2006-08-18 Macromedia Flash 9 (IE Plugin) Remote Denial of Service Crash Exploit
2006-08-17 Mambo a6mambocredits Component 1.0.0 File Include Vulnerability
2006-08-17 Mambo phpShop Component <= 1.2 RC2b File Include Vulnerability
2006-08-17 Joomla Mosets Tree <= 1.0 Remote File Include Vulnerability
2006-08-17 MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c)
2006-08-17 Joomla com_jim Component <= 1.0.1 Remote File Include Vulnerability
2006-08-17 Mambo mambelfish Component <= 1.1 Remote File Include VulnerabilityRa
2006-08-17 POWERGAP <= 2003 (s0x.php) Remote File Include Vulnerability
2006-08-17 WTcom <= 0.2.4-alpha (torrents.php) Remote SQL Injection Vulnerability
2006-08-17 RIRSR <= 0.2 (_sysSessionPath) Remote File Include Vulnerability
2006-08-17 CubeCart <= 3.0.11 (oid) Remote Blind SQL Injection Exploit
2006-08-17 Woltlab Burning Board <= 2.3.5 (links.php) SQL Injection Exploit (2
2006-08-16 Mambo CopperminePhotoGalery Component Remote Include Vulnerability
2006-08-16 VMware 5.5.1 COM Object Arbitrary Partition Table Delete Exploit
2006-08-17 MS Windows PNG File IHDR Block Denial of Service Exploit PoC
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit
2006-08-16 OPT Max <= 1.2.0 (CRM_inc) Remote File Include Vulnerability
2006-08-16 dotProject <= 2.0.4 (baseDir) Remote File Include Vulnerability
2006-08-15 PHProjekt <= 5.1 Multiple Remote File Include Vulnerabilities
2006-08-15 WEBInsta CMS <= 0.3.1 (users.php) Remote File Include Vulnerability
2006-08-15 Discloser <= 0.0.4 (fileloc) Remote File Include Vulnerabilities
2006-08-15 WEBInsta MM <= 1.3e (absolute_path) Remote File Include Exploit
2006-08-14 Spidey Blog Script <== 1.5 (tr) Remote SQL Injection Vulnerability
2006-08-14 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (3)
2006-08-14 Mambo Peoplebook Component 1.0 Remote File Include Vulnerability
2006-08-14 ProjectButler <= 0.8.4 (rootdir) Remote File Include Vulnerabilities
2006-08-14 Mambo mmp Component <= 1.2 Remote File Include Vulnerability
2006-08-14 phPay <= 2.02 (nu_mail.inc.php) Remote mail() Injection Exploit
2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (py)
2006-08-13 Opera 9 IRC Client Remote Denial of Service Exploit (c)
2006-08-13 XMB <= 1.9.6 Final basename() Remote Command Execution Exploit
2006-08-13 Joomla Webring Component <= 1.0 Remote Include Vulnerability
2006-08-13 Nokia Symbian 60 3rd Edition Browser Denial of Service Crash
2006-08-12 WEBinsta CMS <= 0.3.1 (templates_dir) Remote File Include Exploit
2006-08-11 Wheatblog <= 1.1 (session.php) Remote File Include Vulnerability
2006-08-10 MVCnPHP <= 3.0 glConf[path_libraries] Remote Include Vulnerabilities
2006-08-10 Mambo Remository Component <= 3.25 Remote Include Vulnerability
2006-08-10 WEBInsta MM 1.3e (cabsolute_path) Remote File Include Vulnerability
2006-08-10 VWar <= 1.50 R14 (online.php) Remote SQL Injection Vulnerability
2006-08-10 Chaussette <= 080706 (_BASE) Remote File Include Vulnerabilities
2006-08-10 phpPrintAnalyzer <= 1.2 Remote File Include Vulnerability
2006-08-10 SaveWebPortal <= 3.4 (page) Remote File Inclusion Vulnerability
2006-08-10 Thatware <= 0.4.6 (root_path) Remote File Include Vulnerability
2006-08-10 Spaminator <= 1.7 (page) Remote File Include Vulnerability
2006-08-10 Internet Explorer (MDAC) Remote Code Execution Exploit (MS06-014) (2)
2006-08-10 phpwcms <= 1.1-RC4 (spaw) Remote File Include Vulnerability
2006-08-10 MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040)
2006-08-09 SAPID CMS <= 1.2.3_rc3 (rootpath) Remote Code Execution Exploit
2006-08-09 OpenMPT <= 1.17.02.43 Multiple Remote Buffer Overflow Exploit PoC
2006-08-09 PHPMyRing <= 4.2.0 (view_com.php) Remote SQL Injection Exploit
2006-08-09 TinyWebGallery <= 1.5 (image) Remote Include Vulnerabilities
2006-08-09 Tagger Luxury Edition (BBCodeFile) Remote File Include Vulnerability
2006-08-09 PocketPC MMS Composer (WAPPush) Denial of Service Exploit
2006-08-09 See-Commerce <= 1.0.625 (owimg.php3) Remote Include Vulnerability
2006-08-09 PgMarket <= 2.2.3 (CFG[libdir]) Remote File Inclusion Vulnerability
2006-08-09 Boite de News <= 4.0.1 (index.php) Remote File Inclusion Vulnerability
2006-08-08 PHP <= 4.4.3 / 5.1.4 (objIndex) Local Buffer Overflow Exploit PoC
2006-08-08 Cwfm <= 0.9.1 (Language) Remote File Inclusion Vulnerability
2006-08-08 CLUB-Nuke [XP] 2.0 LCID 2048 (Turkish Version) SQL Injection
2006-08-08 Hitweb <= 4.2 (REP_INC) Remote File Include Vulnerability
2006-08-07 phNNTP <= 1.3 (article-raw.php) Remote File Include Vulnerability
2006-08-07 XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)
2006-08-07 docpile:we <= 0.2.2 (INIT_PATH) Remote File Inclusion Vulnerabilities
2006-08-07 Barracuda Spam Firewall <= 3.3.03.053 Remote Code Execution (extra)
2006-08-07 liblesstif <= 2-0.93.94-4mdk (DEBUG_FILE) Local Root Exploit
2006-08-07 TWiki <= 4.0.4 (configure) Remote Command Execution Exploit
2006-08-07 ZoneX 1.0.3 Publishers Gold Edition Remote File Inclusion Vulnerability
2006-08-07 Visual Events Calendar 1.1 (cfg_dir) Remote Include Vulnerability
2006-08-07 eIQnetworks License Manager Remote Buffer Overflow Exploit (multi)
2006-08-07 PHPCodeCabinet <= 0.5 (Core.php) Remote File Include Vulnerability
2006-08-07 SAPID Shop <= 1.2 (root_path) Remote File Include Vulnerability
2006-08-07 SAPID Gallery <= 1.0 (root_path) Remote File Include Vulnerabilities
2006-08-07 SAPID Blog <= beta 2 (root_path) Remote File Include Vulnerabilities
2006-08-07 SAPID CMS <= 1.2.3.05 (root_path) Remote File Include Vulnerabilities
2006-08-07 Modernbill <= 1.6 (config.php) Remote File Include Vulnerability
2006-08-07 Joomla JD-Wiki Component <= 1.0.2 Remote Include Vulnerability
2006-08-07 XChat <= 2.6.7 (Windows Version) Remote Denial of Service Exploit
2006-08-07 SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability
2006-08-07 ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability
2006-08-07 Torbstoff News 4 (pfad) Remote File Inclusion Vulnerability
2006-08-07 PHP Live Helper <= 2.0 (abs_path) Remote File Inclusion Vulnerability
2006-08-07 PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion Vulnerability
2006-08-07 myBloggie <= 2.1.4 (trackback.php) Multiple SQL Injections Exploit
2006-08-03 SendCard <= 3.4.0 Unauthorized Administrative Access Exploit
2006-08-02 TSEP <= 0.942 (colorswitch.php) Remote Inclusion Vulnerability
2006-08-02 Kayako eSupport <= 2.3.1 (subd) Remote File Inclusion Vulnerability
2006-08-02 TinyPHP Forum <= 3.6 (makeadmin) Remote Admin Maker Exploit
2006-08-02 SaveWeb Portal <= 3.4 (SITE_Path) Remote File Inclusion Vulnerabilities
2006-08-02 Mac OS X <= 10.3.8 (CF_CHARSET_PATH) Local BOF Exploit (2)
2006-08-02 TWiki <= 4.0.4 (Configure Script) Remote Code Execution Exploit (meta)
2006-08-02 WoW Roster <= 1.70 (/lib/phpbb.php) Remote File Include Vulnerability
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (ppc)
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (x86)
2006-08-01 XMB <= 1.9.6 (u2uid) Remote SQL Injection Exploit (mq=off)
2006-08-01 k_fileManager <= 1.2 (dwl_include_path) Remote Inclusion Vulnerability
2006-08-01 k_shoutBox <= 4.4 Remote File Inclusion Vulnerability
2006-08-02 Voodoo chat <= 1.0RC1b (file_path) Remote File Inclusion Vulnerability
2006-08-01 newsReporter <= 1.1 (index.php) Remote Inclusion Vulnerability
2006-08-01 PHPAuction 2.1 (phpAds_path) Remote File Inclusion Vulnerability
2006-08-01 WoW Roster <= 1.5.1 (subdir) Remote File Include Vulnerability
2006-08-01 TSEP <= 0.942 (copyright.php) Remote Inclusion Vulnerability
2006-08-01 NewsLetter <= 3.5 (NL_PATH) Remote File Inclusion Vulnerability
2006-07-31 MyNewsGroups <= 0.6b (myng_root) Remote Inclusion Vulnerability
2006-07-31 Open Cubic Player <= 2.6.0pre6 / 0.1.10_rc5 Multiple BOF Exploit
2006-07-30 MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability
2006-07-30 Joomla LMO Component <= 1.0b2 Remote Include Vulnerability
2006-07-30 Microsoft PowerPoint 2003 SP2 Local Code Execution Exploit (french)
2006-07-30 Mambo com_bayesiannaivefilter Component <= 1.1 Inclusion Vulnerability
2006-07-30 Mambo User Home Pages Component <= 0.5 Remote Include Vulnerability
2006-07-30 ATutor <= 1.5.3.1 (links) Remote Blind SQL Injection Exploit
2006-07-29 vbPortal 3.0.2 <= 3.6.0 b1 (cookie) Remote Code Excution Exploit
2006-07-29 Mambo mambatStaff Component <= 3.1b Remote Inclusion Vulnerability
2006-07-29 Mambo Colophon Component <= 1.2 Remote Inclusion Vulnerability
2006-07-28 Mambo MGM Component <= 0.95r2 Remote Inclusion Vulnerability
2006-07-28 Mambo Security Images Component <= 3.0.5 Inclusion Vulnerabilities
2006-07-28 Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC
2006-07-27 Portail PHP <= 1.7 (chemin) Remote Inclusion Vulnerability
2006-07-27 eIQnetworks License Manager Remote Buffer Overflow Exploit (multi)
2006-07-27 eIQnetworks ESA (Syslog Server) Remote Buffer Overflow Exploit
2006-07-27 a6mambohelpdesk Mambo Component <= 18RC1 Include Vulnerability
2006-07-27 WMNews <= 0.2a (base_datapath) Remote Inclusion Vulnerability
2006-07-26 AIM Triton 1.0.4 (SipXtapi) Remote Buffer Overflow Exploit (PoC)
2006-07-26 eIQnetworks License Manager Remote Buffer Overflow Exploit (494)
2006-07-25 libmikmod <= 3.2.2 (GT2 loader) Local Heap Overflow PoC
2006-07-25 Etomite CMS <= 0.6.1 (rfiles.php) Remote Command Execution Exploit
2006-07-25 Etomite CMS <= 0.6.1 (username) SQL Injection Exploit (mq = off)
2006-07-25 SIPfoundry sipXtapi (CSeq) Remote Buffer Overflow Exploit
2006-07-24 PrinceClan Chess Mambo Com <= 0.8 Remote Inclusion Vulnerability
2006-07-24 X7 Chat <= 2.0.4 (old_prefix) Remote Blind SQL Injection Exploit
2006-07-24 Solaris <= 10 sysinfo() Local Kernel Memory Disclosure Exploit
2006-07-24 multibanners Mambo Component <= 1.0.1 Remote Inclusion Vulnerability
2006-07-23 Cheese Tracker <= 0.9.9 Local Buffer Overflow Exploit PoC
2006-07-23 Mam-Moodle Mambo Component alpha Remote Inclusion Vulnerability
2006-07-23 ArticlesOne <= 07232006 (page) Remote Include Vulnerability
2006-07-23 MoSpray Mambo Component <= 18RC1 Remote Include Vulnerability
2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability
2006-07-23 PHP Live! <= 3.2.1 (help.php) Remote Inclusion Vulnerability
2006-07-22 D-Link Router UPNP Stack Overflow Denial of Service Exploit (PoC)
2006-07-22 PHP Forge <= 3 beta 2 (cfg_racine) Remote File Inclusion Vulnerability
2006-07-21 MS Windows Mailslot Ring0 Memory Corruption Exploit (MS06-035)
2006-07-21 Microsoft IIS ASP Stack Overflow Exploit (MS06-034)
2006-07-21 MS Windows DHCP Client Broadcast Attack Exploit (MS06-036)
2006-07-22 Sendmail <= 8.13.5 Remote Signal Handling Exploit PoC
2006-07-22 MS Internet Explorer (MDAC) Remote Code Execution Exploit (MS06-014)
2006-07-22 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2)
2006-07-21 LoudBlog <= 0.5 (id) SQL Injection / Admin Credentials Disclosure
2006-07-20 SiteDepth CMS <= 3.0.1 (SD_DIR) Remote File Include Vulnerability
2006-07-20 Cisco/Protego CS-MARS < 4.2.1 (JBoss) Remote Code Execution Exploit
2006-07-20 FileCOPA FTP Server <= 1.01 (LIST) Remote Buffer Overflow Exploit
2006-07-20 iManage CMS <= 4.0.12 (absolute_path) Remote File Inclusion
2006-07-20 MS Internet Explorer 6 (Content-Type) Stack Overflow Crash
2006-07-21 Samba Internal Data Structures DOS Vulnerability Exploit
2006-07-19 Dumb <= 0.9.3 (it_read_envelope) Remote Heap Overflow PoC
2006-07-19 toendaCMS <= 1.0.0 (FCKeditor) Remote File Upload Exploit
2006-07-19 Invision Power Board 2.1 <= 2.1.6 Remote SQL Injection Exploit (2)
2006-07-18 Linux Kernel 2.6.13 <= 2.6.17.4 prctl() Local Root Exploit (logrotate)
2006-07-17 CBSMS Mambo Module <= 1.0 ([mosConfig_absolute_path]) Remote File Inclusion Exploit
2006-07-15 Linux Kernel <= 2.6.17.4 (/proc) Local Root Exploit
2006-07-15 SQuery <= 4.5(libpath) Remote File Inclusion Exploit-in perl
2006-07-15 MyBulletinBoard (MyBB) <= 1.1.5 (CLIENT-IP) SQL Injection Exploit
2006-07-15 Webmin / Usermin Arbitrary File Disclosure Vulnerability Perl
2006-07-14 Invision Power Board 2.1 <= 2.1.6 Remote SQL Injection Exploit
2006-07-14 CzarNews <= 1.14 (tpath) Remote File Inclusion Vulnerability
2006-07-14 phpBB 3 (memberlist.php) Remote SQL Injection Exploit
2006-07-14 Phorum 5 (pm.php) Arbitrary Local Inclusion Exploit
2006-07-13 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit 2
2006-07-12 Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit
2006-07-10 SQuery <= 4.5 (gore.php) Remote File Inclusion Vulnerability
2006-07-10 EJ3 TOPo 2.2 (descripcion) Remote Command Execution Exploit
2006-07-10 Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability
2006-07-10 SipXtapi SIP Remote Buffer Overflow Exploit PoC
2006-07-10 Ottoman CMS <= 1.1.3 (default_path) Remote File Inclusion Exploit
2006-07-09 Webmin / Usermin Arbitrary File Disclosure Vulnerability
2006-07-09 Sabdrimer PRO <= 2.2.4 (pluginpath) Remote File Include Vulnerability
2006-07-09 SimpleBoard Mambo Component <= 1.1.0 Remote Include Vulnerability
2006-07-09 com_forum Mambo Component <= 1.2.4RC3 Remote Include Vulnerability
2006-07-09 PAPOO <= 3_RC3 SQL Injection/Admin Credentials Disclosure Exploit
2006-07-09 MS Internet Explorer 6 Table.Frameset NULL Dereference Vulnerability
2006-07-09 MS Internet Explorer 6 (Internet.HHCtrl) Heap Overflow Vulnerability
2006-07-09 Pivot <= 1.30 RC2 Privileges Escalation/Remote Code Execution Exploit
2006-07-06 Microsoft Excel 2000/2003 Hlink Local Buffer Overflow Exploit (french)
2006-07-06 WinRAR <= 3.60 beta 6 (SFX Path) Stack Overflow Exploit PoC
2006-07-06 ImgSvr <= 0.6.5 (long http post) Denial of Service Exploit
2006-07-02 Microsoft Excel Universal Hlink Local Buffer Overflow Exploit
2006-07-02 Quake 3 Engine Client CS_ITEMS Remote Overflow Exploit (Win32)
2006-07-02 Quake 3 Engine Client CG_ServerCommand() Remote Overflow Exploit
2006-07-02 BXCP <= 0.3.0.4 (where) Remote SQL Injection Exploit
2006-07-01 SmartSiteCMS 1.0 (root) Multiple Remote File Inclusion Vulnerabilities
2006-07-01 Mac OS X <= 10.4.6 (launchd) Local Format String Exploit (ppc)
2006-07-01 Opera Web Browser 9.00 (iframe) Remote Denial of Service Exploit
2006-07-01 Randshop <= 1.1.1 (header.inc.php) Remote File Include Vulnerability
2006-07-01 Plume CMS 1.1.3 (dbinstall.php) Remote File Include Vulnerability
2006-07-01 Stud.IP <= 1.3.0-2 Multiple Remote File Include Vulnerabilities
2006-07-01 deV!Lz Clanportal [DZCP] <= 1.34 (id) Remote SQL Injection Exploit
2006-07-01 SiteBuilder-FX ( top.php ) Remote File Include Vulnerabilities
2006-06-30 MS Windows TCP/IP Protocol Driver Remote Buffer Overflow Exploit
2006-06-29 MS Internet Explorer 7 (applet) Remote Denial of Service Exploit
2006-06-29 MS Windows RRAS RASMAN Registry Stack Overflow Exploit (MS06-025)
2006-06-29 GeekLog <= 1.4.0sr3 f(u)ckeditor Remote Code Execution Exploit
2006-06-29 GeekLog <= 1.4.0 (_CONF[path]) Remote File Include Vulnerabilities
2006-06-29 Mac OS X <= 10.4.6 (launchd) Local Format String Exploit (x86)
2006-06-29 Xoops myAds Module (lid) Remote SQL Injection Vulnerability
2006-06-28 BLOG:CMS <= 4.0.0k Remote SQL Injection Exploit
2006-06-28 RsGallery2 <= 1.11.2 (rsgallery.html.php) File Include Vulnerability
2006-06-27 Microsoft Excel 2003 Hlink Stack/SEH Buffer Overflow Exploit
2006-06-27 Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit
2006-06-27 Pearl For Mambo <= 1.6 Multiple Remote File Include Vulnerabilities
2006-06-26 CBSMS Mambo Module <= 1.0 Remote File Include Vulnerability
2006-06-25 DreamAccount <= 3.1 (auth.api.php) Remote File Include Exploit
2006-06-25 DeluxeBB <= 1.07 (cp.php) Create Admin Exploit
2006-06-25 THoRCMS <= 1.3.1 (phpbb_root_path) Remote File Include Vulnerability
2006-06-25 MagNet BeeHive CMS (header) Remote File Include Vulnerability
2006-06-25 Windows Live Messenger 8.0 ( Contact List *.ctt ) Heap Overflow
2006-06-25 MyBulletinBoard (MyBB) <= 1.1.3 (usercp.php) Create Admin Exploit
2006-06-25 XM Easy Personal FTP Server 5.0.1 (Port) Remote Overflow PoC
2006-06-24 phpMySms 2.0 (ROOT_PATH) Remote File Include Vulnerability
2006-06-24 BitchX <= 1.1-final do_hook() Remote Denial of Service Exploit
2006-06-23 Jaws <= 0.6.2 (Search gadget) Remote SQL Injection Exploit
2006-06-22 w-Agora <= 4.2.0 (inc_dir) Remote File Include Exploit
2006-06-22 Microsoft Excel Unspecified Remote Code Execution Exploit
2006-06-22 Harpia CMS <= 1.0.5 Remote File Include Vulnerabilities
2006-06-22 Ralf Image Gallery <= 0.7.4 Multiple Remote Vulnerabilities
2006-06-22 Mambo <= 4.6rc1 (Weblinks) Remote Blind SQL Injection Exploit (2)
2006-06-22 MS Windows RRAS Remote Stack Overflow Exploit (MS06-025)
2006-06-21 DataLife Engine <= 4.1 Remote SQL Injection Exploit (php)
2006-06-21 DataLife Engine <= 4.1 Remote SQL Injection Exploit (perl)
2006-06-21 Opera 9 (long href) Remote Denial of Service Exploit
2006-06-20 SmartSiteCMS 1.0 (root) Remote File Inclusion Vulnerability
2006-06-20 Winamp <= 5.21 (Midi File Header Handling) Buffer Overflow PoC
2006-06-20 dotProject <= 2.0.3 (baseDir) Remote File Inclusion Vulnerability
2006-06-20 BandSite CMS <= 1.1.1 (root_path) Remote File Include Vulnerabilities
2006-06-20 Ultimate PHP Board <= 1.96 GOLD Multiple Vulnerabilities Exploit
2006-06-19 ASP Stats Generator <= 2.1.1 SQL Injection Vulnerabilities
2006-06-19 WeBBoA Host Script 1.1 Remote SQL Injection Vulnerability
2006-06-19 Micro CMS <= 0.3.5 (microcms_path) Remote File Include Vulnerability
2006-06-19 IdeaBox <= 1.1 (gorumDir) Remote File Include Vulnerability
2006-06-18 Microsoft Excel Unicode Local Overflow Exploit PoC
2006-06-18 PHP Live Helper <= 1.x (abs_path) Remote File Include Vulnerability
2006-06-18 INDEXU <= 5.0.1 (admin_template_path) Remote Include Vulnerabilities
2006-06-18 Sun iPlanet Messaging Server 5.2 HotFix 1.16 Root Password Disclosure
2006-06-17 Ad Manager Pro 2.6 (ipath) Remote File Include Vulnerability
2006-06-17 Joomla <= 1.0.9 (Weblinks) Remote Blind SQL Injection Exploit
2006-06-17 FlashBB <= 1.1.5 (phpbb_root_path) Remote File Include Exploit
2006-06-17 Mambo <= 4.6rc1 (Weblinks) Blind SQL Injection Exploit
2006-06-16 CMS Faethon <= 1.3.2 (mainpath) Remote File Inclusion Vulnerability
2006-06-16 bitweaver <= 1.3 (tmpImagePath) Attachment mod_mime Exploit
2006-06-16 Pico Zip 4.01 (Long Filename) Buffer Overflow Exploit
2006-06-15 DeluxeBB <= 1.06 (templatefolder) Remote File Include Vulnerabilities
2006-06-15 CesarFTP 0.99g (MKD) Remote Buffer Overflow Exploit (meta)
2006-06-14 Content-Builder (CMS) <= 0.7.2 Multiple Include Vulnerabilities
2006-06-14 PhpBlueDragon CMS <= 2.9.1 (template.php) File Include Vulnerability
2006-06-14 The Bible Portal Project <= 2.12 (destination) File Include Vulnerability
2006-06-14 MS Windows XP/2K (Mrxsmb.sys) Privilege Escalation PoC (MS06-030)
2006-06-14 MS Windows (NtClose DeadLock) Vulnerability PoC (MS06-030)
2006-06-14 MyBulletinBoard (MyBB) < 1.1.3 Remote Code Execution Exploit
2006-06-14 Minerva <= 2.0.8a Build 237 (phpbb_root_path) File Include Vulnerability
2006-06-14 aWebNews 1.0 (visview.php) Remote File Include Vulnerability
2006-06-14 OpenOffice.org XSS
2006-06-12 CesarFTP 0.99g (MKD) Remote Buffer Overflow Exploit
2006-06-12 DCP-Portal 6.1.x (root) Remote File Include Vulnerability
2006-06-12 blur6ex <= 0.3.462 (ID) Admin Disclosure / Blind SQL Injection Exploit
2006-06-11 Content-Builder (CMS) 0.7.5 Multiple Include Vulnerabilities
2006-06-11 AWF CMS 1.11 (spaw_root) Remote File Include Vulnerability
2006-06-11 RCblog <= 1.03 (post) Remote Command Execution Exploit
2006-06-11 MaxiSepet <= 1.0 (link) SQL Injection Vulnerability
2006-06-11 free QBoard <= 1.1 (qb_path) Remote File Include Vulnerability
2006-06-11 WebprojectDB <= 0.1.3 (INCDIR) Remote File Include Vulnerability
2006-06-10 phpOnDirectory <= 1.0 Remote File Include Vulnerabilities
2006-06-10 aePartner <= 0.8.3 (dir[data]) Remote Include Vulnerability
2006-06-10 empris <= r20020923 (phormationdir) Remote Include Vulnerability
2006-06-09 0verkill 0.16 (ASCII-ART Game) Remote Integer Overflow Crash Exploit
2006-06-09 MailEnable Enterprise <= 2.0 (ASP Version) Multiple Vulnerabilities
2006-06-08 Guestex Guestbook 1.00 (email) Remote Code Execution Exploit
2006-06-08 Enterprise Payroll Systems <= 1.1 (footer) Remote Include Vulnerability
2006-06-08 cms-bandits 2.5 (spaw_root) Remote File Include Vulnerabilities
2006-06-08 D-Link Access-Point <= 2.10na (DWL-2100ap) Config Disclosure Vuln
2006-06-08 Back-End CMS <= 0.7.2.1 (jpcache.php) Remote Include Vulnerability
2006-06-07 Xtreme News <= 1.0 (post.php) Remote File Include Vulnerability
2006-06-07 OpenEMR <= 2.8.1 (fileroot) Remote File Include Vulnerability
2006-06-07 QBik Wingate 6.1.1.1077 (POST) Remote Buffer Overflow Exploit
2006-06-06 Clan Manager Pro (CMPRO) <= 1.1
2006-06-06 myNewsletter <= 1.1.2 (adminLogin.asp) Login Bypass Exploit
2006-06-06 Wikiwig <= 4.1 (wk_lang.php) Remote File Include Vulnerability
2006-06-05 Dmx Forum <= 2.1a (edit.php) Remote Password Disclosure Exploit
2006-06-05 DreamAccount <= 3.1 (da_path) Remote File Include Vulnerabilities
2006-06-05 Linux Kernel < 2.6.16.18 (Netfilter NAT SNMP Module) Remote DoS Exploit
2006-06-05 dotWidget CMS <= 1.0.6 (file_path) Remote File Include Vulnerabilities
2006-06-05 Particle Wiki <= 1.0.2 (version) Remote SQL Injection Vulnerability
2006-06-05 Claroline <= 1.7.6 (includePath) Remote Code Execution Exploit
2006-06-04 SCart 2.0 (page) Remote Code Execution Exploit
2006-06-04 FunkBoard CF0.71 (profile.php) Remote User Pass Change Exploit
2006-06-03 LifeType <= 1.0.4 SQL Injection / Admin Credentials Disclosure Exploit
2006-06-03 ProPublish 2.0 (catid) Remote SQL Injection Vulnerability
2006-06-03 CS-Cart <= 1.3.3 (classes_dir) Remote File Include Vulnerability
2006-06-03 WebspotBlogging <= 3.0.1 (path) Remote File Include Vulnerability
2006-06-03 BlueShoes Framework <= 4.6 Remote File Include Vulnerabilities
2006-06-03 DotClear <= 1.2.4 (prepend.php) Arbitrary Remote Inclusion Exploit
2006-06-03 LDU802 SQL Injection
2006-06-03 xueBook 1.0 Version SQL Injection
2006-06-03 Pixelpost <= 1-5rc1-2 Remote Privilege Escalation Exploit
2006-06-03 Mozilla Firefox <= 1.5.0.4 (marquee) Denial of Service Exploit
2006-06-03 PHP-Nuke <= 7.9 Final (phpbb_root_path) Remote File Inclusions
2006-06-03 Informium 0.12.0 (common-menu.php) Remote File Include Vulnerabilities
2006-06-03 ashNews 0.83 (pathtoashnews) Remote File Include Vulnerabilities
2006-06-03 Igloo <= 0.1.9 (Wiki.php) Remote File Include Vulnerability
2006-06-03 iShopCart vGetPost() Remote Buffer Overflow Exploit (cgi)
2006-06-02 Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities
2006-06-01 Bytehoard 2.1 (server.php) Remote File Include Vulnerability
2006-06-01 aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit
2006-06-01 VisionGate Portal System XSS Injection Vulnerability
2006-06-01 Tekno.Portal (bolum.php) SQL Injection Vulnerability
2006-06-01 AssoCIateD CMS 1.1.3 (root_path) Remote File Include Vulnerability
2006-06-01 TinyPHP Forum <= 3.6 (profile.php) Remote Code Execution Exploit
2006-05-31 MS Windows XP/w2k3 (Explorer.exe) New Unpatched Crash PoC
2006-05-31 metajour 2.1 (system_path) Remote File Include Vulnerabilities
2006-05-31 ottoman <= 1.1.2 (default_path) Remote File Include Vulnerabilities
2006-05-31 pppBlog <= 0.3.8 (randompic.php) System Disclosure Exploit
2006-05-31 SelectaPix System SQL Injection Vulnerabilities
2006-05-31 Chipmunk Guestbook SQL Injection Vulnerabilities
2006-05-30 NewsPHP Portal SQL Injection Vulnerabilities
2006-05-30 gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC
2006-05-30 gnopaste <= 0.5.3 (common.php) Remote File Include Vulnerability
2006-05-30 vBulletin 3.0.10 Version SQL Injection
2006-05-30 Nukedit CMS <= 4.9.6 Unauthorized Admin Add Exploit
2006-05-29 Speedy ASP Forum (profileupdate.asp) User Pass Change Exploit
2006-05-29 Fastpublish CMS 1.6.9 config[fsBase] Remote Include Vulnerabilities
2006-05-29 Cupido System (qpage) Local File Inclusion
2006-05-28 CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability
2006-05-28 Blend Portal <= 1.2.0 (phpBB Mod) Remote File Inclusion Vulnerability
2006-05-28 ASPSitem <= 2.0 Remote (SQL Injection / DB Disclosure) Vulnerabilities
2006-05-29 Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability
2006-05-28 UBB Threads 5.x / 6.x Multiple Remote File Inclusion Vulnerabilities
2006-05-28 Eggblog <= 3.x Remote (SQL Injection / Privilege Escalation) Exploit
2006-05-29 F@cile Interactive Web <= 0.8x Remote (Include / XSS) Vulnerabilities
2006-05-29 Enigma Haber <= 4.3 Multiple Remote SQL Injection Vulnerabilities
2006-05-29 tinyBB <= 0.3 Remote (Include / SQL Injection) Vulnerabilities
2006-05-28 MS Internet Explorer (HTML Tag) Memory Corruption (MS06-013)
2006-05-27 MiniNuke 2.x (create an admin) Remote SQL Injection Exploit
2006-05-27 PrideForum 1.0 (forum.asp) Remote SQL Injection Vulnerability
2006-05-27 Hot Open Tickets <= 11012004 (CLASS_PATH) Remote Include Vuln
2006-05-27 Jokes script sql injection vulnerability
2006-05-27 Multiple Xss exploits in ar-blog v 5.2
2006-05-27 sql injection in PHPcafe.net Tutorial Manager v1.0 Beta 2
2006-05-26 Easy-Content Forums 1.0 Multiple SQL/XSS Vulnerabilities
2006-05-26 qjForum (member.asp) SQL Injection Vulnerability
2006-05-26 Plume CMS <= 1.0.3 (manager_path) Remote File Include Vulnerability
2006-05-26 tiffsplit (libtiff <= 3.8.2) Local Stack Buffer Overflow PoC
2006-05-25 V-Webmail <= 1.6.4 (pear_dir) Remote File Include Vulnerability
2006-05-25 WordPress <= 2.0.2 (cache) Remote Shell Injection Exploit
2006-05-25 APC ActionApps CMS 2.8.1 Remote File Include Vulnerabilities
2006-05-26 DoceboLMS <= 2.0.5 (help.php) Remote File Include Vulnerability
2006-05-25 Socketmail <= 2.2.6 (site_path) Remote File Include Vulnerability
2006-05-25 Back-End CMS <= 0.7.2.2 (BE_config.php) Remote Include Vulnerability
2006-05-25 open-medium.CMS <= 0.25 (404.php) Remote File Include Vulnerability
2006-05-25 BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities
2006-05-24 Novell eDirectory 8.8 Long URI iMonitor Buffer Overflow Exploit (meta)
2006-05-24 Drupal <= 4.7 (attachment mod_mime) Remote Exploit
2006-05-25 Internet Explorer 7 DoS
2006-05-25 Opera >8.x DOS
2006-05-23 netPanzer 0.8 rev 952 (frameNum) Server Terminiation Exploit
2006-05-23 PunkBuster < 1.229 (WebTool Service) Remote Buffer Overflow DoS
2006-05-23 phpCommunityCalendar <= 4.0.3 Multiple (XSS/SQL) Vulnerabilites
2006-05-23 Docebo <= 3.0.3 Multiple Remote File Include Vulnerabilities
2006-05-23 Nucleus CMS <= 3.22 (DIR_LIBS) Arbitrary Remote Inclusion Exploit
2006-05-22 portmap 5 beta (Set/Dump) Local Denial of Service Exploit
2006-05-22 UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability
2006-05-21 Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit
2006-05-21 Fusion News v.1.0 (fil_config) Remote File Inclusion Exploit
2006-05-21 Xoops <= 2.0.13.2 xoopsOption[nocommon] Remote Exploit
2006-05-20 Woltlab Burning Board <= 2.3.4 (links.php) SQL Injection Exploit
2006-05-20 CaLogic Calendars 1.2.2 (CLPath) Remote File Include Vulnerabilities
2006-05-19 phpMyDirectory <= 10.4.4 (ROOT_PATH) Remote Inclusion Vulnerability
2006-05-19 Zix Forum <= 1.12 (layid) SQL Injection Vulnerability
2006-05-19 IntelliTamper 2.07 (*.map file) Local Arbitrary Code Execution Exploit
2006-05-19 phpListPro <= 2.0.1 (User-Agent) Remote Code Execution Exploit
2006-05-19 phpBazar <= 2.1.0 Remote (Include/Auth Bypass) Vulnerabilities
2006-05-19 Mozilla Firefox <= 1.5.0.3 stay() Remote Denial of Service Exploit
2006-05-18 Mozilla Firefox <= 1.5.0.3 (Add Page Bookmark) Denial of Service Exploit
2006-05-18 libextractor <= 0.5.13 Multiple Heap Overflow PoC Exploits
2006-05-18 IntelliTamper web analysis ( *.Map File Handling Local Exploit ) //
2006-05-17 ScozNews <= 1.2.1 (mainpath) Remote File Inclusion Vulnerability
2006-05-17 RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Vulnerability Scanners
2006-05-17 Quezza BB <= 1.0 (quezza_root_path) File Inclusion Vulnerability
2006-05-16 DeluxeBB <= 1.06 (Attachment mod_mime) Remote Exploit
2006-05-16 PHP-Fusion <= 6.00.306 (srch_where) SQL Injection Exploit
2006-05-16 VNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Patch with EXE
2006-05-15 ezUserManager <= 1.6 Remote File Inclusion Vulnerability
2006-05-15 VNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Exploit (meta
2006-05-15 DeluxeBB <= 1.06 (name) Remote SQL Injection Exploit (mq=off)
2006-05-15 GNUnet <= 0.7.0d (Empty UDP Packet) Remote Denial of Service Exploit
2006-05-15 Squirrelcart <= 2.2.0 (cart_content.php) Remote Inclusion Vulnerability
2006-05-15 TR Newsportal <= 0.36tr1 (poll.php) Remote File Inclusion Vulnerability
2006-05-15 PuTTy.exe <= 0.53 (validation) Remote Buffer Overflow Exploit (meta)
2006-05-14 Sugar Suite Open Source <= 4.2 (OptimisticLock) Remote Exploit
2006-05-15 freeSSHd 1.0.9 Key Exchange Algorithm String Buffer Overflow Exploit
2006-05-14 Raydium <= SVN 309 Multiple Remote Vulnerabilities Exploit
2006-05-14 Genecys <= 0.2 (BoF/NULL pointer) Denial of Service Exploit
2006-05-14 Empire <= 4.3.2 (strncat) Denial of Service Exploit
2006-05-14 Outgun <= 1.0.3 bot 2 Multiple Remote Vulnerabilities Exploit
2006-05-13 phpBB <= 2.0.20 (Admin/Restore DB/default_lang) Remote Exploit
2006-05-12 Php Blue Dragon CMS <= 2.9 Remote File Include Vulnerability
2006-05-12 Foing <= 0.7.0 (phpBB) Remote File Inclusion Vulnerability
2006-05-11 Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit
2006-05-10 Medal of Honor (getinfo) Remote Buffer Overflow Exploit
2006-05-10 MS Internet Explorer <= 6.0.2900 SP2 (CSS Attribute) Denial of Service
2006-05-09 pafileDB <= 2.0.1 (phpBB) Remote File Inclusion Vulnerability
2006-05-09 phpRaid <= 3.0.b3 (phpBB/SMF) Remote File Inclusion Vulnerabilities
2006-05-09 Intel Wireless Service (s24evmon.exe) Shared Memory Exploit
2006-05-08 phpListPro <= 2.01 Multiple Remote File Include Vulnerabilities
2006-05-08 ActualAnalyzer Pro <= 6.88 (rf) Remote File Include Exploit
2006-05-08 ActualAnalyzer Server <= 8.23 (rf) Remote File Include Vulnerability
2006-05-08 Claroline e-Learning 1.75 (ldap.inc.php) Remote File Inclusion Exploit
2006-05-08 Dokeos LMS <= 1.6.4 (authldap.php) Remote File Include Exploit
2006-05-07 EQdkp <= 1.3.0 (dbal.php) Remote File Inclusion Vulnerability
2006-05-07 ACal <= 2.2.6 (day.php) Remote File Inclusion Vulnerability
2006-05-07 ISPConfig <= 2.2.2 (session.inc.php) Remote File Inclusion Exploit
2006-05-07 Jetbox CMS <= 2.1 (relative_script_path) Remote File Inclusion Exploit
2006-05-07 PHP-Fusion <= 6.00.306 Multiple Vulnerabilities Exploit
2006-05-06 VP-ASP 6.00 (shopcurrency.asp) Remote SQL Injection Vulnerability
2006-05-06 TinyFTPD <= 1.4 (USER) Remote Buffer Overflow DoS
2006-05-06 acFTP FTP Server <= 1.4 (USER) Remote Denial of Service Exploit
2006-05-06 HiveMail <= 1.3 (addressbook.add.php) Remote Code Execution Exploit
2006-05-06 AWStats <= 6.5 (migrate) Remote Shell Command Injection Exploit
2006-05-05 FileCopa <= 1.01 (USER) Pre-Authentication Remote Overflow DoS
2006-05-05 TotalCalendar <= 2.30 (inc) Remote File Include Vulnerability
2006-05-05 StatIt v4 (statitpath) Remote File Inclusion Exploit
2006-05-05 Limbo CMS <= 1.0.4.2 (catid) Remote SQL Injection Exploit
2006-05-05 PHP-Nuke <= All Version Add admin page authorization bypass Exploit / By WiLdBoY
2006-05-05 Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploi
2006-05-04 acFTP FTP Server <= 3.0 (USER) Remote Buffer Overflow PoC
2006-05-04 XM Easy Personal FTP Server <= 4.3 (USER) Remote Buffer Overflow PoC
2006-05-04 Auction <= 1.3m (phpbb_root_path) Remote File Include Exploit
2006-05-04 zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS
2006-05-03 Albinator <= 2.0.6 (Config_rootdir) Remote File Inclusion Exploit
2006-05-03 Golden FTP Server Pro 2.70 (APPE) Remote Buffer Overflow PoC
2006-05-02 MySQL (<= 4.1.18, 5.0.20) Local/Remote Information Leakage Exploit
2006-05-02 MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit
2006-05-02 Fast Click (<= 1.1.3 , <= 2.3.8) (show.php) Remote File Inclusion Exploit
2006-05-02 X7 Chat <= 2.0 (help_file) Remote Commands Execution Exploit
2006-05-01 Invision Power Board <= 2.1.5 (from_contact) SQL Injection Exploit
2006-04-30 Aardvark Topsites PHP <= 4.2.2 (lostpw.php) Remote Include Exploit
2006-04-30 phpMyAgenda <= 3.0 Final (rootagenda) Remote Include Vulnerability
2006-04-30 Aardvark Topsites PHP <= 4.2.2 (path) Remote File Inclusion Vuln
2006-04-29 Limbo CMS <= 1.0.4.2 (sql.php) Remote File Inclusion Vulnerability
2006-04-29 Knowledge Base Mod <= 2.0.2 (phpBB) Remote Inclusion Vulnerability
2006-04-29 Invision Power Board <= 2.1.5 search.php Remote Code Execution Exploit
2006-04-29 OpenPHPNuke <= 2.3.3 Remote File Inclusion Vulnerability
2006-04-28 Advanced GuestBook <= 2.4.0 (phpBB) Remote File Inclusion Exploit
2006-04-28 TopList <= 1.3.8 (phpBB Hack) Remote Inclusion Exploit
2006-04-28 Advanced GuestBook <= 2.4.0 (phpBB) File Inclusion Vulnerability
2006-04-27 TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability
2006-04-26 BL4 SMTP Server < 0.1.5 Remote Buffer Overflow PoC
2006-04-26 Invision Power Board <= 2.1.5 (lastdate) Remote Code Execution Exploit
2006-04-26 Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit
2006-04-26 OCE 3121/3122 Printer (parser.exe) Denial of Service Exploit
2006-04-25 Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit
2006-04-24 Mozilla Firefox <= 1.5.0.2 (js320.dll/xpcom_core.dll) Denial of Service PoC
2006-04-24 Apple Mac OS X Safari <= 2.0.3 (417.9.2) (ROWSPAN) DoS PoC
2006-04-24 BK Forum <= 4.0 (member.asp) Remote SQL Injection Vulnerability
2006-04-24 FlexBB <= 0.5.5 (function/showprofile.php) SQL Injection Exploit
2006-04-23 Apple Mac OS X Safari <= 2.0.3 (417.9.2) Multiple Vulnerabilities PoC
2006-04-23 Built2Go PHP Movie Review <= 2B Remote File Inclusion Vulnerability
2006-04-23 Clansys <= 1.1 (index.php page) PHP Code Insertion Vulnerability
2006-04-23 OpenTTD <= 0.4.7 (multiple vulnerabilities) Denial of Service Exploit
2006-04-23 Skulltag <= 0.96f (Version String) Remote Format String PoC
2006-04-23 My Gaming Ladder Combo System <= 7.0 Remote Code Execution Exploit
2006-04-22 dForum <= 1.5 (DFORUM_PATH) Multiple Remote File Inclusions
2006-04-22 Simplog <= 0.93 (tid) Remote SQL Injection Exploit
2006-04-22 CoreNews <= 2.0.1 (userid) Remote SQL Injection Exploit
2006-04-22 Symantec Scan Engine 5.0.x.x Change Admin Password Remote Exploit
2006-04-20 PHPSurveyor <= 0.995 (surveyid) Remote Command Execution Exploit
2006-04-19 ASPSitem <= 1.83 (Haberler.asp) Remote SQL Injection Exploit
2006-04-19 RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerability
2006-04-19 Mambo <= 4.5.3 , Joomla <=1.0.7 (feed) Denial of Service Exploit
2006-04-19 PCPIN Chat <= 5.0.4 (login/language) Remote Code Execution Exploit
2006-04-18 PHP Net Tools <= 2.7.1 Remote Code Execution Exploit
2006-04-18 Internet PhotoShow (page) Remote File Inclusion Exploit
2006-04-18 Neon Responder 5.4 (Clock Synchronization) Denial of Service Exploit
2006-04-18 MyEvent <= 1.2 (myevent_path) Remote File Inclusion Vulnerability
2006-04-17 FlexBB <= 0.5.5 (/inc/start.php _COOKIE) Remote SQL ByPass Exploit
2006-04-16 Blackorpheus ClanMemberSkript 1.0 Remote SQL Injection Exploit
2006-04-16 Fuju News 1.0 Authentication Bypass / Remote SQL Injection Exploit
2006-04-15 Sybase EAServer 5.2 (WebConsole) Remote Stack Overflow Exploit
2006-04-15 Symantec Sygate Management Server (login) SQL Injection Exploit
2006-04-15 Novell Messenger Server 2.0 (Accept-Language) Remote Overflow Exploit
2006-04-15 PHP Album <= 0.3.2.3 Remote Command Execution Exploit
2006-04-15 SysInfo 1.21 (sysinfo.cgi) Remote Command Execution Exploit
2006-04-14 osCommerce <= 2.2 (extras) Source Code Disclosure Vulnerability
2006-04-14 phpWebSite <= 0.10.2 (hub_dir) Remote Commands Execution Exploit
2006-04-13 PAJAX <= 0.5.1 Remote Code Execution Exploit
2006-04-13 panic-reloaded TCP Denial of Service Tool
2006-04-13 quizz <= 1.01 (quizz.pl) Remote Command Execution Exploit
2006-04-13 Censtore <= 7.3.x (censtore.cgi) Remote Command Execution Exploit
2006-04-13 vBulletin ImpEx <= 1.74 Remote Command Execution Exploit
2006-04-13 Mozilla Firefox <= 1.5.0.1 Null Pointer Dereference Crash
2006-04-13 PHP121 Instant Messenger <= 1.4 Remote Code Execution Exploit
2006-04-12 Sphider <= 1.3 (configset.php) Arbitrary Remote Inclusion Exploit
2006-04-11 Ultr@VNC <= 1.0.1 client Log::ReallyPrint Buffer Overflow Exploit
2006-04-11 Simplog <= 0.9.2 (s) Remote Commands Execution Exploit
2006-04-11 ClansyS 1.1 (showid) Remote SQL Injection Exploit
2006-04-10 phpBB <= 2.0.19 (user_sig_bbcode_uid) Remote Code Execution Exploit
2006-04-10 Horde <= 3.0.9, 3.1.0 (Help Viewer) Remote Code Execution (metasploit)
2006-04-10 PHPList <= 2.10.2 GLOBALS[] Remote Code Execution Exploit
2006-04-10 Virtual War 1.5.0 Remote File Inclusion Vulnerability
2006-04-10 Sire 2.0 (lire.php) Remote File Inclusion/Arbitary File Upload Vulnerability
2006-04-10 XBrite Members <= 1.1 (id) Remote SQL Injection Exploit
2006-04-09 Linux Kernel 2.6.x sys_timer_create() Local Denial of Service Exploit
2006-04-10 Autonomous LAN Party <= 0.98.1.0 Remote File Inclusion Vulnerability
2006-04-09 dnGuestbook <= 2.0 Remote SQL Injection Vulnerabilities
2006-04-09 ADODB < 4.70 (PhpOpenChat 3.0.x ) Server.php SQL Injection Exploit
2006-04-09 ADODB < 4.70 (tmssql.php) Denial of Service Vulnerability
2006-04-07 Horde Help Viewer <= 3.1 Remote Command Execution Exploit
2006-04-06 phpMyChat 0.15.0dev (SYS enter) Remote Code Execution Exploit
2006-04-05 phpMyChat <= 0.14.5 (SYS enter) Remote Code Execution Exploit
2006-04-04 Crafty Syntax Image Gallery <= 3.1g Remote Code Execution Exploit
2006-04-05 INDEXU <= 5.0.1 (base_path) Remote File Inclusion Exploit
2006-04-04 Ultr@VNC <= 1.0.1 client Log::ReallyPrint Buffer Overflow PoC
2006-04-05 Ultr@VNC <= 1.0.1 VNCLog::ReallyPrint Remote Buffer Overflow PoC
2006-04-05 Libxine <= 1.14 MPEG Stream Buffer Overflow Vulnerability PoC
2006-04-04 AngelineCMS 0.8.1 (installpath) Remote File Inclusion Exploit
2006-04-02 mpg123 0.59r Malformed mp3 (SIGSEGV) Proof of Concept
2006-04-02 Total Commander 6.x (unacev2.dll) Buffer Overflow PoC Exploit
2006-04-02 VWar 1.5.0 R12 Remote File Inclusion Exploit
2006-04-02 ReloadCMS <= 1.2.5 Cross Site Scripting / Remote Code Execution Exploit
2006-04-02 PHPNuke-Clan 3.0.1 (vwar_root2) Remote File Inclusion Exploit
2006-04-02 SQuery <= 4.5 (libpath) Remote File Inclusion Exploit
2006-04-01 MS Internet Explorer (createTextRang) Download Shellcoded Exploit (2)
2006-03-30 Claroline <= 1.7.4 (scormExport.inc.php) Remote Code Execution Exploit
2006-03-30 PeerCast <= 0.1216 Remote Buffer Overflow Exploit (win32) (meta)
2006-03-30 Tru64 UNIX 5.0 (Rev. 910) edauth NLSPATH Buffer Overflow Exploit
2006-03-30 Tru64 UNIX 5.0 (Rev. 910) rdist NLSPATH Buffer Overflow Exploit
2006-03-28 EzASPSite <= 2.0 RC3 (Scheme) Remote SQL Injection Exploit
2006-03-28 RealPlayer <= 10.5 (6.0.12.1040-1348) SWF Buffer Overflow PoC
2006-03-30 Plogger <= Beta 2.1 Administrative Credentials Disclosure Exploit
2006-03-28 MS Internet Explorer (createTextRang) Remote Exploit (metasploit)
2006-03-28 GreyMatter WebLog <= 1.21d Remote Command Execution Exploit (2)
2006-03-28 GreyMatter WebLog <= 1.21d Remote Command Execution Exploit (1)
2006-03-28 PHPCollab 2.x / NetOffice 2.x (sendpassword.php) SQL Injection Exploit
2006-03-27 MS Office Products Array Index Bounds Error (unpatched) PoC
2006-03-27 csDoom <= 0.7 [Multiple Vulnerabilities] Denial of Service Exploit
2006-03-27 Vavoom <= 1.19.1 [Multiple Vulnerabilities] Denial of Service Exploit
2006-03-26 CuteNews <= 1.4.1 (function.php) Local File Include Exploit
2006-03-25 TFT Gallery <= 0.10 [Password Disclosure] Remote Exploit
2006-03-25 phpBookingCalendar <= 1.0c [details_view.php] Remote SQL Injection
2006-03-25 PHP Ticket <= 0.71 (search.php) Remote SQL Injection Exploit
2006-03-25 WebAlbum <= 2.02pl COOKIE[skin2] Remote Code Execution Exploit
2006-03-24 MS Internet Explorer (createTextRang) Download Shellcoded Exploit
2006-03-23 MS Internet Explorer (checkbox) Remote Code Execution Exploit (0day)
2006-03-22 XHP CMS <= 0.5 (upload) Remote Command Execution Exploit
2006-03-22 MS Internet Explorer 6.0 (mshtml.dll checkbox) Crash
2006-03-22 MS Windows XP/2003 (IGMP v3) Denial of Service Exploit (MS06-007) (2)
2006-03-22 BomberClone < 0.11.6.2 (Error Messages) Remote Buffer Overflow Exploit
2006-03-22 ASP.NET w3wp (COM Components) Remote Crash Exploit
2006-03-21 FreeWPS <= 2.11 (images.php) Remote Code Execution Exploit
2006-03-21 MS Windows XP/2003 (IGMP v3) Denial of Service Exploit (MS06-007)
2006-03-21 MS Internet Explorer 6.0 (script action handlers) (mshtml.dll) DoS
2006-03-20 ASPPortal <= 3.1.1 (downloadid) Remote SQL Injection Exploit
2006-03-20 xorg-server (X11R6.9.0/X11R7.0) Local Root Privilege Escalation Exploit
2006-03-20 gCards <= 1.45 Multiple Vulnerabilities All-In-One Exploit
2006-03-19 BetaParticle Blog <= 6.0 Remote SQL Injection Vulnerability
2006-03-19 SoftBB 0.1 (mail) Remote Blind SQL Injection Exploit
2006-03-19 Mercur Mailserver 5.0 SP3 (IMAP) Denial of Service Exploit
2006-03-19 Mercur Mailserver 5.0 SP3 (IMAP) Remote Buffer Overflow Exploit
2006-03-19 Python <= 2.4.2 realpath() Local Stack Overflow Exploit
2006-03-18 ShoutLIVE <= 1.1.0 (savesettings.php) Remote Code Execution Exploit
2006-03-18 BetaParticle Blog <= 6.0 (fldGalleryID) Remote SQL Injection Exploit
2006-03-18 Nodez <= 4.6.1.1 Mercury Multiple Remote Vulnerabilities
2006-03-15 KnowledgebasePublisher 1.2 (include) Remote Code Execution Exploit
2006-03-15 php iCalendar <= 2.21 (publish.ical.php) Remote Code Execution Exploit
2006-03-15 php iCalendar <= 2.21 (Cookie) Remote Code Execution Exploit
2006-03-14 MS Windows Telephony Service Command Execution Exploit (MS05-040)
2006-03-13 crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit
2006-03-13 Apple Mac OS X 10.4.5 Mail.app (Real Name) Buffer Overflow Exploit
2006-03-13 Simple PHP Blog <= 0.4.7.1 Remote Command Execution Exploit
2006-03-12 Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability
2006-03-11 Jupiter CMS <= 1.1.5 Multiple XSS Attack Vectors
2006-03-12 PeerCast "nextCGIarg" Function Request Handling Remote Buffer Overflow Exploit #2
2006-03-11 GuestBook Script <= 1.7 (include_files) Remote Code Execution Exploit
2006-03-11 PeerCast "nextCGIarg" Function Request Handling Remote Buffer Overflow Exploit
2006-03-10 Guppy <= 4.5.11 (Delete Databases) Remote Denial of Service Exploit
2006-03-10 Dropbear / OpenSSH Server (MAX_UNAUTH_CLIENTS) Denial of Service
2006-03-09 iros Banner Experience 1.0 (Create Admin Bypass) Remote Exploit
2006-03-09 Light Weight Calendar 1.x (date) Remote Code Execution Vulnerability
2006-03-09 d2kBlog 1.0.3 (memName) Remote SQL Injection Exploit
2006-03-08 RedBLoG <= 0.5 (cat_id) Remote SQL Injection Exploit
2006-03-08 Gallery <=2.0.3 stepOrder[] Remote Commands Execution Exploi
2006-03-07 RevilloC MailServer 1.x "USER" Command Handling Remote Buffer Overflow Exploit
2006-03-05 Microsoft Visual Studio "dbp" File Handling Buffer Overflow Proof of Concept Exploit
2006-03-05 LibTIFF Library "BitsPerSample" Tag Handling Client-Side Buffer Overflow Exploit
2006-03-07 Alien Arena 2006 Gold Edition <= 5.00 Multiple Vulnerabilities Exploit
2006-03-07 Limbo CMS <= 1.0.4.2 (ItemID) Remote Code Execution Exploit (meta)
2006-03-07 CilemNews System <= 1.1 (yazdir.asp haber_id) SQL Injection Exploit
2006-03-07 OWL Intranet Engine 0.82 (xrms_file_root) Code Execution Exploit
2006-03-07 SQL injection in Invision Power Board v2.1.5
2006-03-07 Freeciv <= 2.0.7 (Jumbo Malloc) Denial of Service Crash
2006-03-07 LieroX <= 0.62b Remote Server/Client Denial of Service Exploit
2006-03-07 Sauerbraten <= 2006_02_28 Multiple BoF/Crash Vulnerabilities Exploit
2006-03-07 Cube <= 2005_08_29 Multiple BoF/Crash Vulnerabilities Exploit
2006-03-06 D2-Shoutbox 4.2 IPB Mod (load) Remote SQL Injection Exploit
2006-03-05 XM Easy Personal FTP Server 1.0 (Port) Remote Overflow PoC
2006-03-02 Fantastic News <= 2.1.2 (script_path) Remote Code Execution Exploit
2006-03-02 MyBulletinBoard (MyBB) <= 1.04 (misc.php COMMA) SQL Injection (2)
2006-03-02 Aztek Forum 4.00 (XSS/SQL) Multiple Vulnerabilities (PoC)
2006-03-02 phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution (2)
2006-03-02 Apple Mac OS X (/usr/bin/passwd) Custom Passwd Local Root Exploit
2006-03-02 Woltlab Burning Board 2.x Datenbank MOD (fileid) Remote SQL Injection
2006-03-02 vuBB <= 0.2 (Cookie) Final Remote SQL Injection Exploit (gpc=off)
2006-03-02 phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution
2006-03-01 Kerio Personal Firewall Remote Authentication Packet Buffer Overflow Exploit
2006-03-01 Limbo CMS code execution
2006-02-28 FreeBSD 6.0 (nfsd) Remote Kernel Panic Denial of Service Exploit
2006-02-28 Microsoft Internet Explorer "IsComponentInstalled()" Remote Stack Overflow Exploit
2006-02-28 Kerio Personal Firewall Authentication Packet Handling Remote Buffer Overflow Exploit
2006-02-28 CrossFire <= 1.8.0 (oldsocketmode) Remote Buffer Overflow PoC
2006-02-26 4Images <= 1.7.1 (Local Inclusion) Remote Code Execution Exploit
2006-02-26 SCO UnixWare "ptrace" Call Binaries Debugging Local Privilege Escalation Exploit
2006-02-26 Cross-Site Scripting with User-Agent Vulnerability
2006-02-26 Planetsource cross site scripting vulnerability
2006-02-25 PwsPHP <= 1.2.4 (index.php) Remote SQL Injection Exploit
2006-02-25 ArGoSoft FTP Server <= 1.4.3.5 Remote Buffer Overflow PoC
2006-02-25 Pentacle In-Out Board <= 6.03 (login.asp) Remote Auth Bypass
2006-02-25 Pentacle In-Out Board <= 6.03 (newsdetailsview) Remote SQL Injection
2006-02-25 iGENUS WebMail <= 2.0.2 (config_inc.php) Remote Code Execution Exploit
2006-02-24 Lansuite 2.10 Remote SQL Injection
2006-02-24 phpWebSite <= 0.10.? (topics.php) Remote SQL Injection Exploit
2006-02-23 PHP-Nuke 7.5 - 7.8 (Search) Remote SQL Injection Exploit
2006-02-20 Geeklog 1.* (error.log) Remote Commands Execution Exploit (gpc = Off)
2006-02-23 NOCC Webmail <= 1.0 (Local Inclusion) Remote Code Execution Exploit
2006-02-22 Noah's Classifieds <= 1.3 (lowerTemplate) Remote Code Execution
2006-02-22 Apple Mac OS X / Safari "__MACOSX" ZIP Archive Remote Code Execution Exploit
2006-02-22 Microsoft Windows Media Player Plugin Remote Code Execution Exploit (MS06-006) #3
2006-02-20 PunBB <= 2.0.10 (Register Multiple Users) Denial of Service Exploit
2006-02-20 MySQL <= 4.1.14 User-Defined Function Local Privilege Escalation Exploit
2006-02-21 ilchClan <= 1.05g (pid) Remote SQL Injection Exploit
2006-02-20 phpBB <= 2.0.18 Remote Bruteforce/Dictionary Attack Tool (updated)
2006-02-16 PHPKIT <= 1.6.1R2 (filecheck) Remote Commands Execution Exploit
2006-02-17 Coppermine Photo Gallery <= 1.4.3 Remote Commands Execution Exploit
2006-02-17 Gravity Board X <= 1.1 (csscontent) Remote Code Execution Exploit
2006-02-17 Zorum Forum 3.5 (rollid) Remote SQL Injection Exploit
2006-02-17 AWStats < 6.4 (referer) Remote Command Execution Exploit
2006-02-19 BXCP <= 0.2.9.9 (tid) Remote SQL Injection Exploit
2006-02-19 Admbook <= 1.2.2 (X-Forwarded-For) Remote Command Execution Exploit
2006-02-17 MS Windows Color Management Module Overflow Exploit (MS05-036) (2)
2006-02-17 Microsoft Windows Media Player 10 Plugin Remote Code Execution Exploit (MS06-006)
2006-02-17 Microsoft Windows Media Player 9 Plugin Remote Code Execution Exploit (MS06-006)
2006-02-16 Microsoft Windows Media Player BMP Handling Buffer Overflow Exploit (MS06-005) #2
2006-02-15 Microsoft Windows Media Player BMP Handling Buffer Overflow Exploit (MS06-005)
2006-02-14 Microsoft HTML Help Workshop ".hhp" File Handling Buffer Overflow Exploit #4
2006-02-14 D-Link Wireless Access Point UDP Packets Remote Denial of Service Exploit
2006-02-14 Microsoft HTML Help Workshop ".hhp" File Handling Buffer Overflow Exploit #3
2006-02-12 Microsoft Windows Services Insecure ACLs Local Privilege Escalation Exploit #2
2006-02-12 Microsoft HTML Help Workshop ".hhp" File Handling Buffer Overflow Exploit #2
2006-02-08 SPIP <= 1.8.2-g "spip_log" and "include_local" Remote Command Execution Exploit
2006-02-08 Mozilla Firefox "location.QueryInterface()" Remote Command Execution Exploit (Mac)
2006-02-08 Eudora Qualcomm WorldMail IMAPD Service Remote Command Execution Exploit
2006-02-07 Mozilla Firefox "location.QueryInterface()" Remote Command Execution Exploit (Linux)
2006-02-06 Microsoft HTML Help Workshop ".hhp" File Handling Buffer Overflow Exploit
2006-02-03 eXchange POP3 "RCPT TO" Command Handling Remote Code Execution Exploit
2006-02-02 Microsoft Windows SSDP and UPnP Services Local Privilege Escalation Exploit
2006-01-31 wzdftpd <= 0.5.4 "SITE" Command Handling Remote Command Execution Exploit
2006-01-31 BlueCoat WinProxy "Host:" Header Handling Remote Command Execution Exploit
2006-01-31 Nullsoft Winamp Player PLS Handling Remote Buffer Overflow Exploit (Universal)
2006-01-29 Nullsoft Winamp Player <= 5.12 PLS Handling Remote Buffer Overflow Exploit (0day)
2006-01-28 SHOUTcast <= 1.9.4 HTTP GET Filename Request Remote Format String Exploit
2006-01-26 Oracle Database Server 9i/10g XML Database Component Buffer Overflow Exploit
2006-01-25 Cisco Aironet Wireless Access Points ARP Reply Remote Denial of Service Exploit
2006-01-24 Eterm LibAST Configuration Engine "-X" Option Local Buffer Overflow Exploit
2006-01-16 VERITAS NetBackup Volume Manager Daemon Remote Buffer Overflow Exploit
2006-01-15 Microsoft Windows Metafile (WMF) "SetAbortProc" Remote File Download Exploit
2006-01-12 eStara SoftPhone 3.0.x SIP Packets Handling Remote Buffer Overflow Exploit
2006-01-07 BlueCoat WinProxy "Host:" Header Handling Remote Command Execution Exploit
2006-01-05 PHP 4.x "mysql_connect" Function Named Pipe Handling Buffer Overflow Exploit (0day)
2006-01-05 Microsoft Windows 2000 Kernel APC Local Privilege Escalation Exploit (MS05-055)
2006-01-01 Mozilla Firefox "InstallVersion.compareTo()" Remote Command Execution Exploit
2005-12-31 Microsoft Windows Metafile (WMF) "SetAbortProc" Remote Code Execution Exploit
2005-12-28 Microsoft Windows / Internet Explorer WMF Remote Code Execution Exploit (0day)
2005-12-24 phpBB <= 2.0.17 "signature_bbcode_uid" Remote Command Execution Exploit
2005-12-23 PHP-Fusion 6.x "rating" Parameter Handling Remote SQL Injection Exploit
2005-12-20 Eudora Qualcomm WorldMail "LIST" Command Remote Buffer Overflow Exploit
2005-12-19 Mailenable Enterprise "EXAMINE" Command Remote Buffer Overflow Exploit
2005-12-19 Microsoft IIS Malformed HTTP Request Handling Remote Denial of Service Exploit
2005-12-12 Mozilla Firefox "InstallVersion.compareTo" Remote Code Execution Exploit
2005-12-09 Lyris ListManager "/read/attachment" Script Remote SQL Injection Exploit
2003-04-08 SETI@home Clients Buffer Overflow Exploit
2005-08-11 Veritas Backup Exec Agent for Windows Remote File Access Exploit
2005-12-08 HP OpenView Network Node Manager Remote Command Execution Exploit
2005-12-08 Oracle 9i Database XDB HTTP Authentication Remote Stack Overflow Exploit
2005-12-01 Microsoft Windows MSDTC Service Remote Code Execution Exploit (MS05-051)
2005-11-30 Microsoft Windows Metafile (WMF) "mtNoObjects" Remote Exploit (MS05-053)
2005-11-30 QNX Realtime Operating System (RTOS) "phgrafx" Local Buffer Overflow Exploit
2005-11-29 Microsoft Windows Metafile (WMF) Images Handling Remote Exploit (MS05-053)
2005-11-27 Microsoft Windows Distributed Transaction Coordinator Remote Exploit (MS05-051)
2005-11-23 Cisco PIX Spoofed TCP SYN Packets Handling Remote Denial of Service Exploit
2005-11-22 Mambo "mosConfig_absolute_path" Remote Command Execution Exploit
2005-11-21 Microsoft Internet Explorer "Window()" Remote Code Execution Exploit (0day)
2005-11-20 Google Mini Search Appliance ProxyStyleSheet Remote Code Execution Exploit
2005-11-20 MailEnable IMAPd W3C Logging Functionality Remote Buffer Overflow Exploit
2005-11-20 freeFTPd <= 1.0.8 "USER" Command Handling Remote Buffer Overflow Exploit
2005-11-18 Macromedia Flash Player "Flash.ocx" Memory Corruption Remote PoC Exploit
2005-11-17 freeFTPd <= 1.0.8 "USER" Command Handling Remote Buffer Overflow Exploit
2005-11-17 Microsoft Windows RPC Memory Allocation Remote Denial of Service Exploit
2005-11-16 PHP-Nuke Search Module "query" Parameter Remote SQL Injection Exploit
2005-11-12 WF-Downloads Module for XOOPS SQL injection and Code Execution Exploit
2005-11-11 Snort <= 2.4.2 Back Orifice Pre-processor Remote Buffer Overflow Exploit
2005-11-08 SuSE Linux pwdutils "chfn" Utility Local Privilege Escalation (Root) Exploit
2005-11-08 F-Secure Anti-Virus and Internet Gatekeeper for Linux Local Root Exploit
2005-11-01 Snort Back Orifice Pre-processor Remote Buffer Overflow Exploit (Win32)
2005-10-25 Snort Back Orifice Pre-processor Remote Buffer Overflow Exploit
2005-10-24 Microsoft Windows Plug and Play "Umpnpmgr.dll" DoS Exploit (MS05-047)
2005-10-21 Microsoft Windows Plug and Play "Umpnpmgr.dll" Remote Exploit (MS05-047)
2005-10-20 Ethereal SLIMP3 Protocol Dissector Remote Buffer Overflow PoC Exploit
2005-10-20 VERITAS NetBackup bpjava-msvc Remote Format String Exploit (Linux)
2005-10-20 VERITAS NetBackup bpjava-msvc Remote Format String Exploit (Win32)
2005-10-20 VERITAS NetBackup bpjava-msvc Remote Format String Exploit (Mac OS X)
2005-10-20 XMail "-t" Command Line Option Handling Local Buffer Overflow Exploit
2005-10-19 Computer Associates Unicenter Message Queuing Buffer Overflow Exploit
2005-10-19 RSA SecurID Web Agent "IISWebAgentIF.dll" Remote Heap Overflow Exploit
2005-10-19 MailEnable Pro 1.x "STATUS" Command Remote Buffer Overflow Exploit
2005-10-19 HP-UX LPD Service Remote "Root" Command Execution Exploit
2005-10-19 Computer Associates Unicenter Message Queuing Buffer Overflow Exploit
2005-10-17 Lynx Browser NNTP Handling Remote Buffer Overflow Proof of Concept Exploit
2005-10-13 Microsoft Windows FTP Client File Location Tampering Exploit (MS05-044)
2005-10-13 Microsoft Windows Network Connection Manager Local DoS Exploit (MS05-045)
2005-10-13 Microsoft Collaboration Data Objects Buffer Overflow PoC Exploit (MS05-048)
2005-10-10 xine-lib CDDB Client Metadata Handling Remote Format String Exploit
2005-10-10 phpMyAdmin "grab_globals.lib.php" Remote Directory Traversal Exploit
2005-10-10 Computer Associates iGateway "debug" Remote Buffer Overflow Exploit
2005-10-06 Microsoft Windows Wireless Zero Configuration Profile Disclosure Exploit
2005-10-02 ProZilla "ftpsearch" Results Handling Client-Side Buffer Overflow Exploit
2005-09-26 GNU Mailutils imap4d "search" Command Remote Format String Exploit
2005-09-26 Realplayer and Helix Player RP/RT Handling Format String Exploit
2005-09-22 Mozilla Suite - Firefox - Netscape IDN Host Buffer Overflow Exploit
2005-09-12 Snort <= 2.4.0 TCP Options Handling Remote Denial of Service Exploit
2005-09-11 Raxnet Cacti "graph_image.php" Remote Command Execution Exploit
2005-09-11 GNU Mailutils imap4d "search" Command Remote Format String Exploit
2005-09-06 Microsoft Windows "keybd_event" Local Privilege Escalation Exploit
2005-09-06 Microsoft Windows CSRSS Local Privilege Escalation Exploit (MS05-018)
2005-08-31 DameWare Mini Remote Control Server Remote Buffer Overflow Exploit
2005-08-30 Adobe Version Cue VCNative Predictable Log Filename Local Root Exploit
2005-08-30 Adobe Version Cue VCNative "-lib" Command-Line Option Local Root Exploit
2005-08-30 Gopher <= 3.0.9 "VIEWS" Remote (Client Side) Buffer Overflow Exploit
2005-08-22 Electronic Mail for UNIX (Elm) Expires Header Buffer Overflow Exploit
2005-08-19 Sun Solaris "printd" Daemon Remote Arbitrary File Deletion Exploit
2005-08-17 Microsoft Internet Explorer "Msdds.dll" Remote Code Execution Exploit
2005-08-12 Microsoft Windows Plug and Play Universal Remote Exploit #3 (MS05-039)
2005-08-12 Novell ZENworks 6.5 Desktop/Server Management Stack Overflow Exploit
2005-08-12 MDaemon IMAP CRAM-MD5 Authentication Remote Buffer Overflow Exploit
2005-08-12 Novell ZENworks 6.5 Desktop/Server Management Stack Overflow Exploit
2005-08-11 Microsoft Internet Explorer COM Objects File Download Exploit (MS05-038)
2005-08-11 Microsoft Windows 2000 Plug and Play Remote Overflow Exploit #2 (MS05-039)
2005-08-11 Microsoft Windows 2000 Plug and Play Universal Remote Exploit #1 (MS05-039)
2005-08-09 Microsoft Windows Remote Desktop Protocol DoS Exploit (MS05-041)
2005-08-09 Microsoft Internet Explorer COM Objects Instantiation Exploit (MS05-038)
2005-08-06 Ethereal 10.x AFP Protocol Dissector Remote Format String Exploit
2005-08-05 MySQL Eventum <= 1.5.5 "login.php" Remote SQL Injection Exploit
2005-08-05 CA BrightStor ARCserve Backup Agent for SQL Buffer Overflow Exploit
2005-08-05 Veritas Backup Exec For Windows Remote Registry Access Exploit
2005-08-05 No-Brainer SMTP Client "log_msg()" Remote Format String Exploit
2005-08-03 CA BrightStor ARCserve Backup Vulnerabilities Scanner and Exploiter
2005-08-03 CA BrightStor ARCserve Backup Agent for SQL Buffer Overflow Exploit
2005-07-25 SlimFTPd <= 3.16 LIST Command Remote Buffer Overflow Exploit
2005-07-21 Microsoft Color Management Module Buffer Overflow Exploit (MS05-036)
2005-07-20 Greasemonkey Firefox Extension Arbitrary File Disclosure Exploit
2005-07-17 GNU Mailutils "imap4d" Remote Pre-auth Format String Exploit
2005-07-17 FutureSoft TFTP Server 2000 Remote Buffer Overflow Exploit
2005-07-17 PHP XML-RPC Module <= 1.3.0 Remote Code Execution Exploit
2005-07-12 Mozilla Firefox <= 1.0.4 "IMG" Elements Code Execution Exploit
2005-07-12 Mozilla Firefox <= 1.0.4 "data:" URLs Remote Script injection Exploit
2005-07-12 Mozilla Firefox <= 1.0.4 "Set As Wallpaper" Code Execution Exploit
2005-07-05 Mozilla Firefox <= 1.0.1 GIF Image Handling Heap Overflow Exploit
2005-07-04 Sudo <= 1.6.8p8 Pathname Validation Local Code Execution Exploit
2005-07-04 Xoops <= 2.0.11 XMLRPC Module Remote SQL Injection Exploit
2005-07-04 phpBB <= 2.0.15 Remote Database Credentials Disclosure Exploit
2005-07-02 Microsoft Internet Explorer "JView" Code Execution Exploit (MS05-037)
2005-07-01 phpBB 2.0.15 "viewtopic.php" Remote PHP Code Execution Exploit
2005-07-01 WordPress 1.5.1.2 XMLRPC Module Remote SQL Injection Exploit
2005-07-01 Pear XML-RPC Library 1.3.0 Remote PHP Code Execution Exploit
2005-06-28 Microsoft Message Queuing Remote Buffer Overflow Exploit (MS05-017)
2005-06-25 Veritas Backup Exec Agent "CONNECT_CLIENT_AUTH" Request Exploit
2005-06-24 Microsoft Outlook Express NNTP Buffer Overflow Exploit (MS05-030)
2005-06-23 Microsoft Server Message Block (SMB) Remote Exploit (MS05-011)
2005-06-21 Forum Russian Board SQL Injection and Command Execution Exploit
2005-06-21 MercuryBoard <= 1.1.4 "User-Agent" Remote SQL Injection Exploit
2005-06-21 Mambo "user_rating" Parameter Remote SQL Injection Exploit
2005-06-21 WordPress <= 1.5.1.1 "cat_id" Remote SQL Injection Exploit
2005-06-21 PeerCast <= 0.1211 HTTP Request Remote Format String Exploit
2005-06-10 GNU Mailutils "imap4d" Remote Pre-auth Format String Exploit
2005-06-09 Tcpdump "bgp_update_print()" Remote Denial of Service Exploit
2005-06-07 Ipswitch IMAP Server "LOGIN" Remote Stack Overflow Exploit
2005-06-07 Kaspersky AntiVirus 5.x "klif.sys" Local Privilege Escalation Exploit
2005-05-31 Microsoft Windows COM Structured Storage Local Exploit (MS05-012)
2005-05-31 Ethereal 0.10.x "SIP" Dissector Remote Buffer Overflow Exploit
2005-05-31 Zeroboard 4.x "preg_replace" Remote Command Execution Exploit
2005-05-21 Mozilla Firefox 1.0.3 view-source:javascript url Code Execution Exploit
2005-05-21 Mozilla Firefox "view-source:" Protocol Cross Domain Scripting Exploit
2005-05-21 Mozilla Suite and Firefox Script objects Command Execution Exploit
2005-05-21 Multiple Vendor TCP Timestamps Remote Denial of Service Exploit
2005-05-17 Gaim 1.2.x URL Handling Remote Buffer Overflow PoC Exploit
2005-05-17 Linux Kernel 2.6.x "ioctl_by_bdev()" Local Denial of Service PoC Exploit
2005-05-17 Microsoft Windows XP/2003 IPv6 Remote Denial of Service Exploit
2005-05-17 procps vmstat "p" Argument Local Stack Overflow PoC Exploit
2005-05-11 Linux Kernel "binfmt_elf" Core Dump Buffer Overflow Vulnerability
2005-05-11 MySQL MaxDB Webtool "GET" Command Remote Buffer Overflow Exploit
2005-05-11 Microsoft Message Queuing Remote Buffer Overflow Exploit (MS05-017)
2005-05-07 4D WebStar Tomcat Plugin Remote Buffer Overflow Exploit
2005-05-07 Ethereal <= 0.10.10 SMB Dissector Remote Denial of Service Exploit
2005-05-07 Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit
2005-05-07 Ethereal <= 0.10.10 SIP Dissector Remote Denial of Service Exploit
2005-05-05 dSMTP SMTP Mail Server 3.1b Remote Format String Root Exploit
2005-05-04 I-Mall Commerce "i-mall.cgi" Remote Command Execution Exploit
2005-05-02 ESRI ArcGIS 9.x ArcStorm Local Format String (Root) Exploit
2005-05-02 Microsoft WINS Remote Operating System and Service Pack Scanner
2005-05-02 GlobalScape Secure FTP Server 3.x Remote Buffer Overflow Exploit
2005-04-30 BulletProof FTP Server 2.x Local Privilege Escalation Exploit
2005-04-29 Golden FTP Server Pro Remote "USER" Command Overflow Exploit
2005-04-29 Golden FTP Server Pro Remote "USER" Command Overflow Exploit
2005-04-29 Snmppd "SNMP" Proxy Daemon Remote Format String Exploit
2005-04-27 Microsoft Internet Explorer Content Advisor Memory Corruption Exploit (MS05-020)
2005-04-27 MySQL MaxDB Webtool HTTP GET Remote Stack Overflow Exploit
2005-04-26 NetTerm NetFtpd Remote User Authentication Buffer Overflow Exploit
2005-04-26 TCPDUMP v3.8.x "RT_ROUTING_INFO" Remote Denial of Service Exploit
2005-04-26 TCPDUMP & Ethereal "rsvp_print()" Remote Denial of Service Exploit
2005-04-26 TCPDUMP v3.8.x/3.9.x "isis_print()" Remote Denial of Service Exploit
2005-04-26 TCPDUMP v3.8.x "ldp_print()" Remote Denial of Service Exploit
2005-04-24 ASPNuke "comments.asp" and "detail.asp" Remote SQL Injection Exploit
2005-04-24 MailEnable "Authorization:" Header Remote Buffer Overflow Exploit
2005-04-24 Yager Game v5.24 Data Block Remote Buffer Overflow Exploit
2005-04-20 Multiple Vendor TCP/IP Implementation ICMP Remote DoS Exploit
2005-04-20 PMsoftware Mini HTTP Server Remote Stack Overflow Exploit
2005-04-19 UBB Threads "printthread.php" Remote SQL Injection Exploit
2005-04-19 Microsoft Exchange Server Remote Code Execution Exploit (MS05-021)
2005-04-19 PostgreSQL 8.x "PL/PgSQL" Remote Denial of Service Exploit
2005-04-19 PMSoftware Simple Web Server Remote Buffer Overflow Exploit
2005-04-16 Mozilla Suite 1.7.6 and Firefox 1.0.2 "favicons" LINK Code Execution Exploit
2005-04-16 Mozilla Firefox 1.0.2 and prior Sidebar Code Execution Exploit
2005-04-16 Microsoft Windows IP Validation Remote Denial of Service Exploit (MS05-019)
2005-04-16 WheresJames Webcam Publisher Remote Buffer Overflow Exploit
2005-04-14 Microsoft Windows "MSHTA" Remote Code Execution Exploit (MS05-016)
2005-04-14 Sumus v0.2.2 httpd Component Remote Buffer Overflow Exploit
2005-04-13 Salim Gasmi GLD Postfix Greylisting Daemon Format String Exploit
2005-04-13 Oracle Database Server "MDSYS.MD2.SDO_CODE_SIZE" buffer overflow Exploit
2005-04-13 Oracle Database PL/SQL Statement Multiple SQL Injection Exploits
2005-04-13 Multiple Debuggers Security Bypass and Code Execution Exploit
2005-04-12 Microsoft Internet Explorer DHTML Object handling Remote Exploit (MS05-020)
2005-04-11 Microsoft Jet Database Engine DB File Buffer Overflow Exploit
2005-04-11 Microsoft Jet Database Engine DB File Buffer Overflow Exploit
2005-04-09 Linux kernel 2.4/2.6 Bluetooth Socket Creation Local Root Exploit
2005-04-08 PunBB <= v1.2.4 "change_email" Remote SQL Injection Exploit
2005-04-05 MailEnable Enterprise/Professional Remote Buffer Overflow Exploit
2005-04-04 Linux Kernel "AIO" Local Denial of Service Exploit (PPC64 and IA64 Arch.)
2005-04-04 Microsoft WINS Remote Heap Buffer Overflow Exploit (MS04-045)
2005-04-02 BakBone NetVault "configure.cfg" Local Buffer Overflow Exploit
2005-04-02 BakBone NetVault 7.x Remote Heap Overflow Exploit ( port 20031 )
2005-03-30 Mt-ftpd Server v0.0.3 Remote Buffer Overflow Remote Root Exploit
2005-03-30 Linux Kernel v2.6.10 Local Denial of Service Proof of Concept Exploit
2005-03-30 Cyrus imapd v2.2.8 Remote Commands Buffer Overflow Exploit
2005-03-22 Linux Kernel <= 2.6.11 "sys_epoll_wait" Local integer overflow Exploit
2005-03-22 Linux Kernel 2.4.x / 2.6.10 uselib() Local Root Exploit
2005-03-22 Apple Core Foundation Library "CF_CHARSET_PATH" Local Root Exploit
2005-03-22 PunBB v1.2.2 "functions.php" Remote Authentication Bypass Exploit
2005-03-22 Smail "preparse_address_1()" Heap Overflow Remote Root Exploit
2005-03-16 GoodTech Telnet Server 5.x Remote Buffer Overflow Exploit
2005-03-16 iPool v1.6.81 Local Password Disclosure Proof of Concept Exploit
2005-03-14 Ethereal CDMA2000 A11 Dissector Remote Root Exploit
2005-03-14 Freeciv Server 2.0.0 beta 8 Remote Denial of Service Exploit
2005-03-14 Frank McIngvale LuxMan Local Buffer Overflow Exploit
2005-03-14 PaX VMA Mirroring Unmapping Vulnerability Local Root Exploit
2005-03-14 phpBB 2.0.12 "admin_styles" Remote Code Injection Exploit
2005-03-14 iSnooker v1.6.8 Local Password Disclosure Proof of Concept Exploit
2005-03-13 SafeNet Sentinel License Manager Stack Overflow Exploit
2005-03-13 Ethereal IAPP Remote Buffer Overflow Proof of Concept Exploit
2005-03-10 Mysql 4.x "CREATE FUNCTION" Arbitrary library injection Exploit
2005-03-10 Mysql 4.x "CREATE FUNCTION" libc Arbitrary Code Execution Exploit
2005-03-09 Microsoft Internet Explorer CSS File Remote Buffer Overflow Exploit
2005-03-08 Ethereal v0.10.9 RADIUS Auth. Remote Buffer Overflow Exploit
2005-03-08 paNews v2.0b4 Remote SQL Injection Proof of Concept Exploit
2005-03-07 Computer Associates License Software Remote Overflow Exploit
2005-03-07 Forum-Aztek v4.0 "myadmin.php" Remote Database Dump Exploit
2005-03-07 RealPlayer "SMIL" File Handling Remote Buffer Overflow Exploit
2005-03-07 Microsoft Windows XP/2003 Remote Denial of Service Exploit
2005-03-03 Computer Associates License Client "GETCONFIG" Remote Buffer Overflow Exploit
2005-03-03 Computer Associates License Server "GETCONFIG" Remote Buffer Overflow Exploit
2005-03-02 AWStats 6.x Multiple Remote Command Execution (Shell) Exploit
2005-03-02 Trillian Basic 3.0 PNG Images Processing Buffer overflow Exploit
2005-02-28 BadBlue Easy File Sharing Remote Buffer Overflow Exploit
2005-02-28 phpBB 2.0.x Session Handling Administrator Authentication Bypass Exploit
2005-02-24 AWStats 6.x "pluginmode" Multiple Remote Command Execution Exploit
2005-02-24 WebConnect Directory Traversal and Denial of Service Exploit
2005-03-03 TrackerCam PHP Argument Remote Buffer Overflow Exploit
2005-02-28 BadBlue Easy File Sharing Remote Buffer Overflow Exploit
2005-02-24 Avaya IP Office Phone Manager Local Passwords Disclosure Exploit
2005-02-23 Chat Anywhere Local Passwords Disclosure Proof of Concept Exploit
2005-02-23 eXeem Local Passwords Disclosure Proof of Concept Exploit
2005-02-23 PeerFTP v5 Local Passwords Disclosure Proof of Concept Exploit
2005-02-23 SendLink v1.5 Local Passwords Disclosure Proof of Concept Exploit
2005-02-23 WWW File Share Pro Local Passwords Disclosure Proof of Concept Exploit
2005-02-20 Arkeia Backup Client Remote Access (Read Arbitrary Files) Exploit
2005-02-20 Cfengine RSA Authentication Remote Heap Corruption Exploit
2005-02-20 Thomson TCW690 POST Password Validation Remote Exploit
2005-02-20 Nullsoft SHOUTcast v1.9.4 remote format string Exploit (Win32)
2005-02-20 SHOUTcast DNAS/Linux v1.9.4 format string Remote Exploit
2005-02-19 Arkeia 5.3.x Type 77 Request Remote Stack Overflow Exploit (Mac OS X)
2005-02-19 Arkeia 5.3.x Type 77 Request Remote Stack Overflow Exploit (Win32)
2005-02-19 Arkeia 5.3.x Type 77 Request Remote Stack Overflow Exploit
2005-02-18 3Com 3CDaemon Ftp Server Remote Buffer Overflow Exploit
2005-02-18 Medal of Honor Spearhead Dedicated Server Remote Exploit
2005-02-15 Linux Kernel <= 2.6.11-rc3 Local Proof of Concept Exploit
2005-02-15 vBulletin 3.x "forumdisplay.php" Remote Code Execution Exploit
2005-02-13 Computer Associates BrightStor ARCserve Backup Remote Buffer Overflow Exploit
2005-02-13 Computer Associates BrightStor ARCserve Discovery SERVICEPC Overflow Exploit
2005-02-13 Exim 4.x "spa_base64_to_bits()" Remote Buffer Overflow Exploit
2005-02-11 Computer Associates BrightStor Discovery Service SERVICEPC Overflow Exploit
2005-02-09 MSN Messenger PNG Image Buffer Overflow MS05-009 Exploit
2005-02-08 AppleFileServer (AFS) "FPLoginExt" Remote Denial of Service Exploit
2005-02-07 3CServer v1.1 FTP Server Remote Proof of Concept Exploit
2005-02-07 Setuid perl "PerlIO_Debug()" Arbitrary File Creation Exploit
2005-02-07 Setuid perl "PerlIO_Debug()" Local buffer overflow Exploit
2005-02-07 Mac OS X "Finder/DS_Store" Arbitrary File Overwriting Exploit
2005-02-03 Newspost "socket_getline()" Remote Buffer Overflow Exploit
2005-02-03 ngIRCd "Log_Resolver()" Remote Format String Exploit
2005-01-25 AWStats 6.2 "configdir" Remote Command Execution Exploit
2005-01-25 AWStats 6.2 "configdir" Remote Command Execution Exploit
2005-01-24 Search and Replace Compressed File search Local Buffer Overflow Exploit
2005-01-23 Mac OS X 10.3 iSync "mRouter" Local Privilege Escalation Exploit
2005-01-23 Microsoft Internet Explorer .ANI Files Handling Remote Exploit (MS05-002)
2005-01-18 NodeManager Professional 2.00 Remote Buffer Overflow Exploit
2005-01-17 Apple iTunes Playlist Remote Buffer Overflow Exploit
2005-01-17 Apple iTunes Playlist Buffer Overflow Proof of Concept Exploit
2005-01-17 Linux kernel 2.4.8 & 2.6.10 SMP race condition Local Root Exploit
2005-01-13 Linux kernel i386 SMP race condition Proof of Concept Exploit
2005-01-12 Microsoft Internet Explorer .ANI Stack Overflow Remote Exploit (MS05-002)
2005-01-11 Veritas Backup Exec Name Service Remote Universal Exploit
2005-01-11 Veritas Backup Exec Name Service Remote Overflow Exploit
2005-01-11 Microsoft W3Who ISAPI (w3who.dll) Remote Buffer overflow Exploit
2005-01-11 Microsoft Windows Improper Token Validation Local Exploit (MS04-044)
2005-01-11 Microsoft WINS Remote Code Execution Exploit (MS04-045)
2005-01-07 Linux Kernel 2.4.8 / 2.6.10 Local Root exploit - uselib() Exploit
2004-12-31 Microsoft Windows NetDDE Remote Buffer Overflow Exploit (MS04-031)
2004-12-31 Microsoft Windows NetDDE Remote Buffer Overflow Exploit (MS04-031)
2004-12-31 Microsoft WINS Remote Code Execution Exploit (MS04-045)
2004-12-28 Microsoft Internet Explorer Remote Command Execution Exploit (MS05-001)
2004-12-25 Microsoft Internet Explorer HTML Help Control Local Zone Bypass Exploit (MS05-001)
2004-12-25 PhpInclude.Worm - PHP Scripts Automated Arbitrary File Inclusion
2004-12-25 Santy.b - phpBB <= 2.0.10 File Upload (Using AOL/Yahoo Search)
2004-12-25 Santy .c - PHP Scripts Automated File Inclusion / PHP Require() and Include() Flaws
2004-12-23 Crystal FTP Pro v2.8 Remote Buffer Overflow PoC Exploit
2004-12-23 Linux Kernel 2.6.x sys_chown() Group Ownership Alteration Exploit
2004-12-23 Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit
2004-12-23 Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit
2004-12-23 SHOUTcast DNAS/Linux v1.9.4 format string Remote Exploit
2004-12-22 Snort <= 2.2.10 Remote Denial of Service Exploit
2004-12-22 Santy Worm - phpBB <= 2.0.10 Web Worm Source Code ( santy.a )
2004-12-22 Webmin Remote BruteForce and Command Execution Exploit
2004-12-20 AIX 5.3/5.2/5.1 "paginit" local stack overflow Exploit
2004-12-20 Ultrix 4.5/MIPS dxterm Local Buffer Overflow Exploit
2004-12-17 phpBB 2.x & PHP 4.3.9 unserialize() Remote Sql Password Dump Exploit
2004-12-16 Linux kernel 2.4.8 & 2.6.9 Multiple local Denial of Service Exploits
2004-12-16 Ability FTPd v2.34 Remote Commands Buffer Overflow Exploit
2004-12-16 Wget Directory Traversal Proof of Concept Exploit
2004-12-16 WinRAR <= 3.41 Compressed File Deletion Buffer Overflow Exploit
2004-12-15 Linux kernel 2.4 & 2.6 IGMP local Denial of Service Exploit
2004-12-15 RICOH Aficio 450/455 PCL 5e Printer ICMP Remote DoS Exploit
2004-12-15 Linux kernel 2.4 & 2.6 scm_send local Denial of Service Exploit
2004-12-12 Citadel/UX <= 6.27 format string Remote Root Exploit
2004-11-30 Mercury Mail 4.01 (Pegasus) IMAP Buffer Overflow Exploit
2004-11-30 WS_FTP Server v5.03 Remote buffer overflow Exploit
2004-11-29 Mercury Mail 4.01 (Pegasus) IMAP Buffer Overflow Exploit
2004-11-27 php <= 4.3.7 and <= 5.0.0RC3 memory_limit Remote Exploit
2004-11-26 MailEnable IMAP service Remote buffer overflow Exploit
2004-11-24 Winamp <= 5.06 "IN_CDDA.dll" Remote Buffer Overflow Exploit
2004-11-23 ProZilla <= 1.3.6 Format string and buffer overflow Exploit
2004-11-22 CoffeeCup FTP Clients Remote Buffer Overflow Exploit
2004-11-22 Invision Power Board v2.0.0 - 2.0.2 Sql Injection Exploit
2004-11-22 phpBB highlight parameter Processing Remote Execution Exploit
2004-11-22 WeOnlyDo! COM Ftp DELUXE ActiveX Control Overflow Exploit
2004-11-19 TWiki 20030201 search.pm Remote Command Execution Exploit
2004-11-19 Microsoft Windows Compressed (zipped) Folders Exploit (MS04-034)
2004-11-18 Apache <= 2.0.52 HTTP GET Remote Denial of Service Exploit
2004-11-18 SLmail 5.x POP3 Remote Pass Buffer Overflow Exploit
2004-11-16 UBB.Threads 6.2.*-6.3.* one char bruteforce Exploit
2004-11-14 Eudora 6.2 Remote Attachment Spoofing Proof of Concept
2004-11-14 Multiple Antivirus Products Virus Detection Bypass PoC Exploit
2004-11-13 IPSwitch-IMail 8.13 Delete Command stack overflow Exploit
2004-11-11 CCProxy HTTP Request Processing Buffer Overflow Exploit
2004-11-11 Linux Kernel ELF Binary Loader Local Proof of Concept
2004-11-11 Kerio Personal Firewall Multiple IP Options Denial of Service PoC
2004-11-02 Microsoft Internet Explorer IFRAME Tag Overflow Remote Exploit
2004-10-30 Linux Kernel <= 2.6.7 Firewall Logging Rules Remote DoS Exploit
2004-10-30 Linux Kernel <= 2.6.7 Firewall Logging Rules Remote DoS Exploit
2004-10-28 WvTftp option name heap overflow remote root exploit
2004-10-26 GD Graphics Library Heap Overflow Proof of Concept Exploit
2004-10-26 libxml2 Remote buffer overflow Proof of Concept Exploit
2004-10-21 Apache <= 1.3.31 mod_include local buffer overflow Exploit
2004-10-21 Ability Server <= 2.34 Remote STOR Buffer Overflow Exploit
2004-10-20 Microsoft Windows Metafile (.emf) Heap Overflow Exploit (MS04-032)
2004-10-20 Microsoft IIS WebDAV XML Denial of Service Exploit (MS04-030)
2004-10-16 Microsoft Windows NNTP Service XPAT command heap overflow Exploit (MS04-036)
2004-10-05 IPSWITCH WhatsUp Gold 8.03 Remote Buffer Overflow exploit
2004-09-27 Microsoft Windows JPEG GDI+ All in One Remote Exploit (MS04-028)
2004-09-27 Microsoft Windows JPEG Downloader Toolkit Source Code (MS04-028)
2004-09-25 Microsoft Windows JPEG GDI+ Heap Overflow Remote Exploit (MS04-028)
2004-09-23 Microsoft Windows JPEG GDI+ Overflow Administrator Exploit (MS04-028)
2004-09-22 Microsoft Windows JPEG Processing Buffer Overrun PoC Exploit (MS04-028)
2004-09-22 Microsoft Windows JPEG GDI+ Overflow Shellcoded Exploit (MS04-028)
2004-09-09 Citadel/UX <= 6.23 Remote USER directive Exploit (Private Version)
2004-09-08 Trillian 0.74i Remote (MSN module) Buffer Overflow exploit
2004-09-02 AOL Instant Messenger AIM "Away" Message Remote Exploit
2004-09-02 Courier-IMAP <= 3.0.2-r1 auth_debug() Remote Format String Exploit
2004-08-31 TiTan FTP Server Long Command Heap Overflow PoC Exploit
2004-08-31 WFTPD Pro Server 3.21 MLST Remote Denial of Service Exploit
2004-08-25 Winamp <=5.04 Skin File (.wsz) Remote Code Execution Exploit
2004-08-24 Axis Network Camera/Video Server Multiple Remote Exploit
2004-08-24 MusicDaemon <= 0.0.3 v2 Remote DoS and /etc/shadow Stealer
2004-08-24 Squirrelmail chpasswd local Root Bruteforce Exploit
2004-08-22 Qt 3.x bmp image parsing local buffer overflow Exploit
2004-08-20 Serv-U 5.x "MDTM" Command Remote Stack Buffer Overflow Exploit
2004-08-20 FrSIRT : SSH Brute Force Exploit SSH Remote BruteForce Dictionary exploit
2004-08-20 XV v3.x bmp parsing local buffer overflow Exploit
2004-08-20 Microsoft Windows RPC2 Universal Exploit (MS03-039) & Remote DoS (RPC3)
2004-08-18 GV postscript viewer Local buffer overflow exploit (2)
2004-08-18 IpSwitch IMail Server <= 8.1 local password decryption utility
2004-08-14 AOL Instant Messenger AIM "Away" Message Local Exploit
2004-08-13 Mac OS X <=10.3.3 AppleFileServer overflow Remote Root Exploit
2004-08-12 GV PostScript Viewer Remote Buffer overflow Exploit
2004-08-11 CVS <= 1.11.15 error_prog_name double free vuln Remote Exploit
2004-08-11 LibPNG Graphics Library Remote Buffer Overflow Exploit
2004-08-10 Xine 0.99.x vcd input identifier management Remote Exploit
2004-08-08 Pavuk Digest Authentication Buffer Overflow Remote Exploit
2004-08-08 Serv-U 3.x - 4.x - 5.x local privileges escalation SYSTEM Exploit
2004-08-04 Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit
2004-08-03 OpenFTPD <= 0.30.1 message sys. Remote format string Exploit
2004-08-03 OpenFTPD <= 0.30.1 message system Remote Shell Exploit
2004-08-02 SoX v12.x ".WAV" File Processing Buffer Overflow Exploit
2004-07-31 Citadel/UX Remote Denial of Service Proof of Concept
2004-07-31 Microsoft Windows XP Task Scheduler (.job) Universal Exploit (MS04-022)
2004-07-22 Apache httpd Arbitrary Long HTTP Headers DoS Exploit
2004-07-22 Samba <=3.0.4 SWAT Authorization Buffer Overflow Exploit
2004-07-19 Microsoft Windows 2000 Utility Manager all in one Exploit (MS04-019)
2004-07-18 Microsoft Windows 2K/XP Task Scheduler .job Exploit (MS04-022)
2004-07-17 Microsoft Windows 2000 Universal language Utility Manager Exploit (MS04-019)
2004-07-16 Microsoft Windows NT/2000 POSIX Subsystem Local Exploit (MS04-020)
2004-07-14 Microsoft Windows 2000 Utility Manager Privilege Elevation Exploit (MS04-019)
2004-07-13 Microsoft Internet Explorer Remote Wscript.Shell Exploit
2004-07-10 MySQL 4.1/5.0 zero-length password auth. bypass Exploit
2004-07-07 Microsoft Internet Explorer Remote Application.Shell Exploit
2004-06-29 phpMyAdmin 2.5.7 Remote code injection Exploit
2004-06-28 MPlayer <= 1.0pre4 GUI filename handling overflow Exploit
2004-06-24 Rlpr <=2.04 msg() Remote format string Exploit
2004-06-14 Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit
2004-06-13 Squid <= 2.5.*-STABLE NTLM authenticate Remote Overflow Exploit
2004-06-11 Borland Interbase 7.x and below Remote exploit
2004-06-11 Subversion 1.0.2 svn_time_from_cstring() Remote Exploit
2004-06-03 mkdir /bin/mkdir buffer overflow UNIX 7th Edition Exploit
2004-05-21 CVS Remote Entry Line Heap Overflow Root Exploit (Linux/FreeBSD)
2004-05-21 CVS Remote Entry Line Heap Overflow Root Exploit (Solaris Ver.)
2004-05-14 Symantec Multiple Firewall DNS Response Denial of Service Exploit
2004-05-10 eMule 0.42e Remote Denial Of Service Exploit
2004-05-10 Monit 4.1 HTTP Request Remote Buffer Overrun Exploit
2004-05-10 Sasser Worm ftpd Remote Buffer Overflow Exploit (port 5554)
2004-05-04 X-Chat 1.8.0/2.0.8 socks5 Remote buffer overflow Exploit
2004-04-29 Microsoft Windows Lsasrv.dll Remote Universal Exploit XP/2K (MS04-011)
2004-04-27 HP Web JetAdmin 6.5 Remote Root Exploit (Linux & Windows)
2004-04-25 Microsoft Windows Lsasrv.dll RPC buffer overflow Remote Exploit (MS04-011)
2004-04-24 Microsoft IIS 5.x SSL PCT Remote Windows 2k/XP Exploit (MS04-011)
2004-04-23 TCP Connection Reset Remote Exploit (By Paul A. Watson)
2004-04-22 Microsoft Windows 2K/XP Remote TCP Connection Reset Exploit
2004-04-21 Kinesphere eXchange pop3 Remote Buffer Overflow Exploit
2004-04-21 Linux kernel 2.x setsockopt MCAST_MSFILTER Proof Of Concept
2004-04-21 Microsoft IIS 5.0 SSL Remote buffer overflow Exploit (MS04-011)
2004-04-20 SquirrelMail chpasswd buffer overflow local Root Exploit
2004-04-16 Microsoft Windows Lsass.exe Local Privilege Escalation Exploit (MS04-011)
2004-04-16 WinZip32 MIME Parsing Overflow Proof of Concept Exploit
2004-04-15 Microsoft Windows Utility Manager Local Privilege Escalation Exploit (MS04-011)
2004-04-14 Microsoft IIS SSL Remote Denial of Service Exploit (MS04-011)
2004-04-12 eMule <= 0.42d IRC Buffer Overflow Remote Exploit
2004-04-12 Monit <= 4.2 buffer overflow Remote Root Exploit
2004-04-09 Monit <= 4.1 Remote buffer overflow Root Exploit
2004-04-07 FirstClass Desktop 7.1 (latest) buffer overflow Exploit
2004-04-07 Panda ActiveScan Control Remote Heap Overflow Exploit
2004-04-05 Tcpdump ISAKMP Identification payload Integer underflow Exploit
2004-04-04 Ethereal EIGRP Dissector TLV_IP_INT Long IP Remote DoS Exploit
2004-03-28 Ethereal 0.10.0-0.10.2 IGAP Overflow Remote Root Exploit
2004-03-28 ISS RealSecure / Blackice "iss_pam1.dll" Remote Buffer Overflow Exploit
2004-03-28 Multiple Cisco Products Vulnerabilities Exploit (Cisco Global Exploiter)
2004-03-26 eSignal 7.6 STREAMQUOTE Remote Buffer Overflow Exploit
2004-03-23 Foxmail 5.0 PunyLib.dll Remote stack overflow Exploit
2004-03-23 WS_FTP Server <= 4.0.2 ALLO Remote buffer overflow Exploit
2004-03-19 Eudora 6.0.3 for Windows Remote Attachment Spoofing Exploit
2004-03-10 GNU Anubis 3.6.2 remote Buffer Overflow Root Exploit
2004-03-04 Red Faction <= 1.20 Server Reply Buffer Overflow Remote Exploit
2004-03-01 Linux Kernel 2.x mremap missing do_munmap local Root Exploit
2004-02-29 WFTPD Server <= 3.21 buffer overflow Remote Exploit
2004-02-27 Serv-U FTPD 3.x/4.x/5.x "MDTM" Command Remote Exploit
2004-02-27 Ipswitch IMail LDAP Daemon Remote Buffer Overflow Exploit
2004-02-26 GateKeeper Pro 4.7 web proxy Remote buffer overflow Exploit
2004-02-26 PSOProxy v0.91 Remote buffer Overflow Exploit (Windows 2000/XP)
2004-02-18 Linux Kernel "mremap()"#2 Local Proof-of-concept
2004-02-14 Microsoft Windows ASN.1 Remote Denial of Service Exploit (MS04-007)
2004-02-13 rsync <= 2.5.7 Local stack overflow Root Exploit
2004-02-04 Microsoft Internet Explorer url javascript injection in history list (MS04-004)
2004-01-27 Serv-U FTPD 3.x/4.x "SITE CHMOD" Command remote exploit
2004-01-27 Serv-U FTPD 4.x "SITE CHMOD" overflow Reverse bindshell exploit
2004-01-25 Microsoft Windows XP/2003 Samba File Sharing Resource Exhaustion Exploit
2004-01-21 OpenSSL ASN.1 parsing bugs (<=0.9.6j <=0.9.7b) BruteForce Exploit
2004-01-15 Linux kernel 2.4.x mremap() bound checking Root Exploit
2004-01-15 SuSE linux 9.0 YaST config Skribt Local Exploit
2004-01-13 lftp <= 2.6.9 Remote Stack based overflow Exploit
2004-01-07 Linux Kernel "do_mremap" Local Proof of Concept II
2004-01-06 Linux Kernel "do_mremap" Local Proof of Concept
2004-01-02 Xsok v1.02 "-xsokdir" local buffer overflow game exploit
2003-12-27 Cyrus IMSPD v1.7 abook_dbname Remote Root Exploit
2003-12-21 phpBB 2.0.6 search_id sql injection MD5 Hash Remote Exploit
2003-12-21 PHP-NUKE version <= 6.9 'cid' sql injection Remote Exploit
2003-12-18 Eznet v3.5.0 remote stack overflow Universal Exploit
2003-12-16 Microsoft Windows Messenger Service Remote Exploit (MS03-043)
2003-12-16 HP-UX B11.11 /usr/bin/ct local format string Root Exploit
2003-12-15 Eznet v3.5.0 remote stack overflow and denial of service exploit
2003-12-06 Apache 1.3.*-2.0.48 mod_userdir remote users disclosure Exploit
2003-12-05 Linux kernel do_brk vma overflow local root exploit
2003-12-04 Microsoft Windows XP Workstation Service Remote Exploit (MS03-049)
2003-12-02 Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC)
2003-11-22 Opera 7.22 File Creation and Execution Exploit (Malicious Webserver)
2003-11-29 Applied Watch adding new user/rule Exploit
2003-11-20 mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit
2003-11-19 IA WebMail 3.x (iaregdll.dll version 1.0.0.5) Remote Exploit
2003-11-19 OpenBSD 2.x - 3.3 exec_ibcs2_coff_prep_zmagic() kernel Exploit
2003-11-14 Microsoft Windows ListBox/ComboBox Control Local Exploit (MS03-045)
2003-11-14 Microsoft Workstation Service WKSSVC Remote Exploit (MS03-049)
2003-11-13 Microsoft Frontpage Server Extensions fp30reg.dll Exploit (MS03-051)
2003-11-13 Microsoft Frontpage Server Extensions fp30reg.dll Exploit (MS03-051)
2003-11-13 TerminatorX <= 3.81 stack overflow local root exploit
2003-11-12 Microsoft Windows 2000/XP Workstation Service Overflow (MS03-049)
2003-11-07 OpenBSD ibcs2_exec Kernel local Exploit
2003-11-07 Microsoft Windows XP/2000 Remote Return Into Libc Exploit
2003-11-04 NIPrint LPD-LPR Print Server <= 4.10 Remote Exploit
2003-10-31 WU-FTPD 2.6.2 Remote Denial Of Service Exploit (wuftpd-freezer.c)
2003-10-27 Solaris runtime linker (ld.so.1) buffer overflow Exploit (SPARC version)
2003-10-22 Microsoft Exchange 2000 XEXCH50 Heap Overflow PoC (MS03-046)
2003-10-21 mIRC v6.1 "IRC" protocol Remote Buffer overflow Exploit
2003-10-18 Microsoft Windows Messenger Service DoS Proof of Concept (MS03-043)
2003-10-13 ProFTPd 1.2.7 - 1.2.9rc2 Remote Root & brute-force Exploit
2003-10-09 Microsoft Windows RPC2 Universal Exploit (MS03-039) & Remote DoS (RPC3)
2003-10-09 Universal shellcode for Windows RPC2 Universal Exploit
2003-10-04 ProFTPD 1.2.9rc2 ASCII File Remote Root Exploit
2003-09-27 Cfengine versions 2.-2.0.3 stack overflow Remote exploit
2003-09-27 IBM DB2 Universal Database 7.2 Linux/x86 db2licm Local Exploit
2003-09-21 hztty 2.0 Local root exploit (Tested on Red Hat 9.0)
2003-09-20 Knox Arkeia Pro v5.1.12 backup Remote Root Exploit
2003-09-20 Microsoft Windows RPC DCOM2 Remote Exploit Ver1.1 (MS03-039)
2003-09-20 Knox Arkeia Pro v5.1.12 backup Remote Root Exploit
2003-09-19 Solaris Sadmind Default Configuration Remote Root Exploit
2003-09-16 Microsoft Windows RPC DCOM long filename heap overflow Exploit (MS03-039)
2003-09-16 Pine <= 4.56 Remote Buffer Overflow Exploit
2003-09-14 Mysql 3.23.x/4.0.x Remote mysql privileges Exploit
2003-09-11 4D WebSTAR FTP Server Suite Remote Buffer Overflow Exploit
2003-09-11 Microsoft Windows RPC DCOM II Unix based Scanner (MS03-039)
2003-09-10 MyServer 0.4.3 Remote denial of service Exploit
2003-09-10 Roger Wilco 1.x Client Data Buffer Overflow Exploit
2003-09-09 RealOne Player 9 *nix local Privileges Escalation Exploit
2003-09-05 Stunnel <= 3.24, 4.00 Daemon Hijacking proof of concept
2003-09-01 eMule/xMule/LMule OP_SERVERMESSAGE Format String Exploit
2003-08-29 Linux pam_lib_smb < 1.1.6 /bin/login exploit
2003-08-28 GtkFTPd v1.0.4 Remote Root buffer overflow Exploit
2003-08-28 RealOne Player Cross Zone and Domain Access Exploit
2003-08-25 Real Server 9, 8, 7 Remote Root Exploit (Windows & Linux)
2003-08-22 Gopherd <= 3.0.5 FTP Gateway Buffer Overflow remote Exploit
2003-08-22 Gopherd <= 3.0.5 GSisText() Buffer Overflow remote Exploit
2003-08-21 Microsoft Internet Explorer Object Data Remote Execution Exploit (M03-032)
2003-08-20 Piolet client v1.05 Remote Denial of Service Exploit
2003-08-15 Microsoft Windows 2000 RSVP Server Authority Hijacking Exploit
2003-08-13 DameWare Mini Remote Control Server Local SYSTEM Exploit
2003-08-11 Wu-ftpd v2.6.2 off-by-one remote Exploit (advanced version)
2003-08-10 Cisco IOS 12.x/11.x HTTP integer overflow remote Exploit
2003-08-07 Microsoft Windows remote RPC DCOM exploit with Universal targets
2003-08-06 man-db v2.4.1 open_cat_stream() local uid=man exploit
2003-08-03 Wu-ftpd v2.6.2 off-by-one remote root Exploit
2003-08-01 xtokkaetama 1.0b local game exploit on Red Hat 9.0
2003-08-01 Trillian v.0.74* Remote Denial of Service Exploit
2003-07-31 XGalaga 2.0.34 local game exploit (Red Hat 9.0)
2003-07-29 Linux 2.4.20 kernel decode_fh Denial of Service Exploit
2003-07-29 Microsoft Windows RPC DCOM Remote Overflow Exploit (18 Targets)
2003-07-28 Apache 1.3.x mod_mylo Remote code execution Exploit
2003-07-26 Microsoft Windows RPC DCOM Remote Exploit W2k+XP Targets
2003-07-25 Microsoft SQL Server DoS Remote Exploit (MS03-031)
2003-07-25 miniSQL (mSQL) version 1.3 remote gid root Exploit
2003-07-25 Microsoft Windows RPC DCOM Buffer Overflow Remote Exploit (MS03-026)
2003-07-22 Cisco IOS Remote Denial of Service Exploit using hping
2003-07-21 Cisco IOS IPv4 Packet DoS Exploit (cisco-bug-44020.c)
2003-07-21 Microsoft Windows 2000 RPC DCOM Interface Denial of Service Exploit
2003-07-18 Cisco IOS IPv4 Packet Processing Denial of Service Exploit
2003-07-17 Citadel/UX BBS version 6.07 remote exploit (Citadel-exploit.c)
2003-07-15 Microsoft SQL Server Named Pipe Privilege Escalation Exploit
2003-07-14 Microsoft Windows Media Services nsiislog.dll Remote Exploit (New)
2003-07-13 Samba 2.2.8 Remote Root exploit with bruteforce method
2003-07-12 LeapFTP v2.7.x remote buffer overflow exploit (dwclft273.c)
2003-07-10 CCBILL CGI Remote Exploit for /ccbill/whereami.cgi (ccbillx.c)
2003-07-09 ICQ Pro 2003a Password Bypass exploit (ca1-icq.asm)
2003-07-08 Microsoft WebDav III (New) remote root Exploit (xwdav)
2003-07-07 Macromedia ColdFusion MX Remote Development Service Exploit
2003-07-02 Linux eXtremail 1.5.x Remote Format Strings Exploit
2003-07-01 Microsoft Windows Media Services Remote Command Execution (MS03-022)
2003-06-30 phpBB 2.0.4 Remote Admin_Styles.PHP Theme_Info.CFG File Include
2003-06-27 Kerio MailServer 5.6.3 Remote Buffer Overflow Exploit
2003-06-23 Yahoo Messenger v5.5 Remote Exploit (DSR-ducky.c)
2003-06-20 phpBB 2.0.5 SQL Injection password disclosure Exploit
2003-06-19 ProFTPD 1.2.9rc1 mod_sql SQL Injection remote Exploit
2003-06-11 Magic Winmail Server 2.3 Remote Format string exploit
2003-06-10 Atftpd version 0.6 remote root exploit (atftpdx.c)
2003-06-10 Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl)
2003-06-10 mnoGoSearch 3.1.20 remote command execution exploit
2003-06-08 Apache <= 2.0.45 APR remote Exploit (Apache-Knacker.pl)
2003-06-07 Microsoft Internet Explorer Object Tag Remote Exploit (MS03-020)
2003-06-01 Microsoft IIS 5.0 - 5.1 remote denial of service Exploit
2003-05-31 Microsoft IIS 5.0 - 5.1 remote denial of service Exploit
2003-05-22 WsMp3d 0.x Heap Overflow remote root exploit
2003-05-21 Microsoft Windows XP explorer.exe desktop.ini buffer overflow exploit
2003-05-14 Cdrecord Version <= 2.0 Mandrake local root exploit
2003-05-12 Firebird 1.0.2 FreeBSD 4.7-RELEASE local root exploit
2003-05-12 Snitz Forum 3.3.03 Remote Command Execution Exploit
2003-05-08 Kerio Personal Firewall v2.1.4 remote code execution exploit
2003-05-08 Microsoft Windows Media Player 8.0 Remote Exploit (Java) for windows XP
2003-05-08 Tiny & Kerio Personal Firewalls remote root buffer overflow
2003-05-05 CommuniGatePro webmail version 4.0.6 session hijacking exploit
2003-05-02 OpenSSH/PAM <= 3.6.1p1 remote Users Identification (gossh.sh)
2003-04-30 Sendmail <= 8.12.8 prescan() proof of concept BSD exploit
2003-04-30 OpenSSH/PAM <= 3.6.1p1 remote users discovery tool
2003-04-30 Real Server 8 for Windows Remote Buffer Overflow Exploit
2003-04-29 Qpopper v4.0.x poppassd local root exploit (0x82-Local.Qp0ppa55d.c)
2003-04-25 Exploit for PopPToP PPTP server (poptop-sane.c)
2003-04-25 Microsoft Windows SMB Protocol Remote Athentication Exploit
2003-04-25 Pi3Web 2.0.1 Denial of Service - Proof of concept
2003-04-23 Snort <=1.9.1 remote root exploit (p7snort191.sh)
2003-04-22 Xeneo Web Server 2.2.9.0 Denial Of Service (sp_xeneo.pl)
2003-04-18 Stack overflow exploit code generator (0x333xes.c)
2003-04-18 Chindi server 1.0 Denial of Service Exploit (chindi-dos-poc.c)
2003-04-18 Apple Mac OS X <= 10.2.4 DirectoryService Local Root PATH Exploit
2003-04-18 PoPToP PPTP server <= 1.1.4-b3 remote root Exploit
2003-04-14 Linux Kernel < 2.4.20 Module Loader Local Root Exploit
2003-04-11 apache <= 2.0.44 DoS exploit for linux th-apachedos.c"
2003-04-10 Samba 2.2.8 < remote root exploit - sambal.c
2003-04-09 Apache HTTP Server 2.x Memory Leak Exploit
2003-04-07 Samba 2.2.x remote Buffer Overflow root exploit
2003-04-04 Passlogd sniffer remote buffer overflow root exploit
2003-04-03 Microsoft Windows RPC Locator Service Remote Exploit
2003-04-01 Sun SUNWlldap Library Hostname Remote Buffer Overflow Exploit
2003-03-30 Linux kernel 2.2.x - 2.4.x ptrace/kmod local root exploit
2003-03-24 Microsoft IIS 5.0 ntdll.dll WebDAV Remote Buffer Overflow Exploit
2003-03-23 Microsoft Windows ntdll.dll WebDAV Remote Buffer Overflow Exploit

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
X videos.c www..narut anhlavodic s s c hall Www.sex in X videos.c 52cpp.com Wwwusasex. CMS is Fre nginxs videoporno Subdreamer W.W.W.SEXS Kushpoo se porn(sex WWWW.PINKW CMS is Fre Sexx melay sex southindia W...indian mom sinhala www.52luon novel.hong ww.sexocea news for c tool ret5rt www.bollwo imesh Tune up ut Sexy blue eroticapho IPB 2.3.3 www.aaaaaa sexporn Www .tamil www.maopu. neostats 200 /compo www.pinkwo DPR www.868ddz ps_cart.ph Granny mambo Remo xxxsexcom news for c ASS BOOB T