- [remote] - HP Managed Printing Administration jobAcct Remote Command Execution
- [remote] - PCMan FTP Server 2.0.7 - Remote Exploit (msf)
- [webapps] - MLM (Multi Level Marketing) Script - Multiple Vulnerabilities
- [webapps] - Anchor CMS 0.9.1 - Stored XSS Vulnerability
- [webapps] - Barracuda LB, SVF, WAF & WEF - Multiple Vulnerabilities
- [webapps] - Flux Player v3.1.0 iOS - Multiple Vulnerabilities
- [webapps] - WiFly 1.0 Pro iOS - Multiple Vulnerabilities
- [dos] - Windows Movie Maker Version 2.1.4026.0 (.wav) - Crash POC
- [local] - Symantec Workspace Virtualization 6.4.1895.0 Local Kernel Mode Privilege Es
- [webapps] - ePhoto Transfer v1.2.1 iOS - Multiple Vulnerabilities
- [webapps] - Xibo 1.2.2 and 1.4.1 (index.php, p param) - Directory Traversal Vulnerabi
- [webapps] - Dell PacketTrap MSP RMM 6.6.x - Multiple XSS Vulnerabilities
- [webapps] - Dell PacketTrap PSA 7.1 - Multiple XSS Vulnerabilities
- [dos] - Light Audio Mixer Version 1.0.12 (.wav) - Crash POC
- [webapps] - Saurus CMS 4.7.1 - Multiple Vulnerabilities
- [webapps] - Dell Kace 1000 SMA v5.4.70402 - Persistent XSS Vulnerabilities
- [dos] - Kate's Video Toolkit Version 7.0 (.wav) - Crash POC
- [webapps] - FTP Sprite v1.2.1 iOS - Persistent XSS Vulnerability
- [dos] - rpcbind (CALLIT Procedure) UDP Crash PoC
- [dos] - Squid 3.3.5 - DoS PoC
- [webapps] - Olive File Manager 1.0.1 iOS - Multiple Vulnerabilities
- [dos] - Tri-PLC Nano-10 r81 - Denial of Service
- [webapps] - Wordpress Spicy Blogroll Plugin - File Inclusion Vulnerability
- [local] - Corel PDF Fusion Stack Buffer Overflow
- [webapps] - BMC Service Desk Express 10.2.1.95 - Multiple Vulnerabilities
- [webapps] - McAfee ePO 4.6.6 - Multiple Vulnerabilities
- [dos] - Jolix Media Player 1.1.0 (.m3u) - Denial of Service
- [remote] - Ultra Mini HTTPD 1.21 - Stack Buffer Overflow
- [papers] - Atlassian Confluence 4.3.5 - Multiple Vulnerabilities
- [webapps] - Zoom X4/X5 ADSL Modem - Multiple Vulnerabilities
- [remote] - nginx 1.3.9/1.4.0 x86 Brute Force Remote Exploit
- [webapps] - vBulletin Advanced User Tagging Mod - Stored XSS Vulnerability
- [webapps] - vBulletin vBShout Mod - Stored XSS Vulnerability
- [dos] - Apache CXF prior to 2.5.10, 2.6.7 and 2.7.4 - Denial of Service
- [papers] - [Hebrew] Digital Whisper Security Magazine #43
- [local] - Solaris Recommended Patch Cluster 6/19 Local root on x86
- [local] - ERS Viewer 2013 ERS File Handling Buffer Overflow
- [local] - Adobe Reader X 10.1.4.38 - BMP/RLE Heap Corruption
- [webapps] - OpenNetAdmin 13.03.01 - Remote Code Execution
- [webapps] - Multiple D-Link Devices - OS-Command Injection via UPnP Interface
- [webapps] - OpenX 2.8.10 - Multiple Vulnerabilities
- [remote] - InstantCMS 1.6 Remote PHP Code Execution
- [webapps] - Kasseler CMS 2 r1223 - Multiple Vulnerabilities
- [webapps] - Mobile Atlas Creator 1.9.12 - Persistent Command Injection Vulnerability
- [papers] - Mobile Application Hacking Diary Ep.1
- [local] - ABBS Audio Media Player .LST Buffer Overflow
- [dos] - Realtek Sound Manager AvRack (.wav) - Crash PoC
- [dos] - WinAmp 5.63 - Stack-based Buffer Overflow
- [local] - Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation
- [webapps] - Machform Form Maker 2 - Multiple Vulnerabilities
- [webapps] - GLPI 0.83.9 'unserialize()' Function Remote Code Execution Vulnerability
- [remote] - Java Applet ProviderSkeleton Insecure Invoke Method
- [webapps] - Fortigate Firewalls - CSRF Vulnerability
- [webapps] - Barracuda SSL VPN 680Vx 2.3.3.193 - Multiple Script Injection Vulnerabili
- [dos] - AVS Media Player 4.1.11.100 (.ac3) - Denial of Service
- [local] - Static HTTP Server 1.0 - SEH Overflow
- [webapps] - C.P.Sub 4.5 - Authentication Bypass
- [papers] - [Portuguese] Simple Weevely Guide
- [local] - AudioCoder (.lst) - Buffer Overflow (msf)
- [papers] - [Turkish] Digital Satellite Receiver & Safety
- [remote] - Bifrost 1.2.1 - Remote Buffer OverFlow
- [remote] - Bifrost 1.2d - Remote Buffer Overflow
- [remote] - PCMan's FTP Server 2.0 - Remote Buffer Overflow Exploit
- [webapps] - eFile Wifi Transfer Manager 1.0 - Multiple Vulnerabilities
- [remote] - PCMan's FTP Server 2.0.7 - Buffer Overflow Exploit
- [webapps] - PHP Charts 1.0 (index.php, type param) - Remote Code Execution
- [local] - AudioCoder 0.8.22 (.lst) - Direct Retn Buffer Overflow
- [dos] - Baby FTP Server 1.24 - Denial Of Service
- [local] - ZPanel zsudo Local Privilege Escalation Exploit
- [local] - Novell Client 2 SP3 nicm.sys Local Privilege Escalation
- [local] - FreeBSD 9 Address Space Manipulation Privilege Escalation
- [remote] - HP System Management Homepage JustGetSNMPQueue Command Injection
- [remote] - LibrettoCMS File Manager Arbitary File Upload Vulnerability
- [webapps] - Collabtive 1.0 (manageuser.php, task param) - SQL Injection Vulnerability
- [local] - aSc Timetables 2013 - Stack Buffer Overflow Vulnerability
- [local] - AudioCoder 0.8.22 - Direct Retn Buffer Overflow
- [remote] - Seowonintech Devices - Remote root Exploit
- [dos] - PEiD 0.95 - Memory Corruption POC
- [webapps] - PodHawk 1.85 - Arbitary File Upload Vulnerability
- [webapps] - Linksys X3000 1.0.03 build 001 - Multiple Vulnerabilities
- [webapps] - Elemata CMS RC3.0 (global.php, id param) - SQL Injection
- [local] - Novell Client 4.91 SP4 nwfs.sys Local Privilege Escalation
- [remote] - ZPanel 10.0.0.2 htpasswd Module Username Command Execution
- [local] - MediaCoder PMP Edition 0.8.17 (.m3u) - Buffer Overflow Exploit
- [local] - Mediacoder (.m3u) - SEH Buffer Overflow
- [webapps] - TRENDnet TE100-P1U Print Server Firmware 4.11 Authentication Bypass Vulne
- [local] - Mediacoder (.lst) - SEH Buffer Overflow
- [shellcode] - Linux/x86 Reverse TCP Bind Shellcode (92 bytes)
- [webapps] - Monkey CMS - Multiple Vulnerabilities
- [webapps] - GLPI v0.83.8 - Multiple Vulnerabilities
- [local] - Adrenalin Player 2.2.5.3 (.asx) - SEH Buffer Overflow
- [local] - FreeBSD 9.0-9.1 mmap/ptrace Privilege Esclation Exploit
- [papers] - [Turkish] Source Code Analysis at Web Applications - II
- [webapps] - imacs CMS 0.3.0 - Unrestricted File Upload Exploit
- [remote] - TP-Link Print Server TL PS110U - Sensitive Information Enumeration
- [dos] - MusicBee 2.0.4663 (.M3U) - Denial of Service Exploit
- [papers] - [Persian] Emperor Magazine #3
- [webapps] - Ultimate WordPress Auction Plugin 1.0 - CSRF Vulnerability
- [webapps] - Fly-High CMS 2012-07-08 - Unrestricted File Upload Exploit
- [local] - Adrenalin Player 2.2.5.3 (.wax) - SEH Buffer Overflow
- [webapps] - Havalite CMS 1.1.7 - Unrestricted File Upload Exploit
- [webapps] - SPBAS Business Automation Software 2012 - Multiple Vulnerabilities
- [local] - Winamp 5.12 (.m3u) - Stack Based Buffer Overflow
- [webapps] - Simple File Manager v.024 - Login Bypass Vulnerability
- [papers] - [Persian] Emperor Magazine #2
- [webapps] - LibrettoCMS 2.2.2 - Arbitrary File Upload
- [dos] - Easy LAN Folder Share Version 3.2.0.100 - Buffer Overflow Vulnerability
- [dos] - AXIS Media Control 6.2.10.11 - Unsafe ActiveX Method
- [webapps] - Airlive IP Cameras - Multiple Vulnerabilities
- [remote] - MS13-009 Microsoft Internet Explorer COALineDashStyleArray Integer Overflo
- [webapps] - Fobuc Guestbook 0.9 - SQL Injection Vulnerability
- [webapps] - NanoBB 0.7 - Multiple Vulnerabilities
- [dos] - Sami FTP Server 2.0.1 - RETR Denial Of Service
- [dos] - Syslog Server 1.2.3 - Crash PoC
- [dos] - Ubiquiti airCam RTSP Service 1.1.5 - Buffer Overflow
- [webapps] - Wordpress WP-SendSMS Plugin 1.0 - Multiple Vulnerabilities
- [webapps] - Buffalo WZR-HP-G300NH2 - CSRF Vulnerability
- [dos] - WinRadius 2.11 - Denial of Service
- [local] - Linux kernel perf_swevent_init - Local root Exploit
- [remote] - Synactis PDF In-The-Box ConnectToSynactic Stack Buffer Overflow
- [remote] - Java Applet Driver Manager Privileged toString() Remote Code Execution
- [webapps] - Simple PHP Agenda 2.2.8 (edit_event.php, eventid param) - SQL Injection
- [webapps] - Weathermap 0.97c (editor.php, mapname param) - Local File Inclusion
- [webapps] - PHP Ticket System Beta 1 - CSRF Vulnerability
- [remote] - Java Web Start Double Quote Injection Remote Code Execution
- [webapps] - Resin Application Server 4.0.36 Source Code Disclosure Vulnerability
- [remote] - MobileIron Virtual Smartphone Platform Privilege Escalation Exploit
- [dos] - Cisco ASA < 8.4.4.6|8.2.5.32 Ethernet Information Leak
- [webapps] - concrete5 CMS 5.6.1.2 - Multiple Vulnerabilities
- [dos] - Quick TFTP Server 2.2 - Denial of Service
- [papers] - [hebrew] Digital Whisper Security Magazine #42
- [remote] - Novell Zenworks Mobile Device Managment Local File Inclusion Vulnerability
- [webapps] - Asus RT56U 3.0.0.4.360 - Remote Command Injection
- [remote] - Microsoft Internet Explorer textNode Use-After-Free
- [papers] - Windows "Meterpreter"less Post Exploitation
- [webapps] - RuubikCMS 1.1.1 (tinybrowser.php, folder param) - Path Traversal Vulnerab
- [remote] - Plesk Apache Zeroday Remote Exploit
- [remote] - Xpient Cash Drawer Operation Vulnerability
- [remote] - Exim sender_address Parameter - RCE Exploit
- [dos] - PEStudio 3.69 - Denial of Service
- [webapps] - Cuppa CMS (alertConfigField.php, urlConfig param) - Remote/Local File Inc
- [dos] - Mac OSX Server DirectoryService Buffer Overflow
- [remote] - MiniUPnPd 1.0 Stack Buffer Overflow Remote Code Execution
- [webapps] - DS3 Authentication Server - Multiple Vulnerabilities
- [webapps] - Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilitie
- [webapps] - Netgear DGN1000 / DGN2200 - Multiple Vulnerabilities
- [remote] - Oracle WebCenter Content CheckOutAndOpen.dll ActiveX Remote Code Execution
- [remote] - Apache Struts includeParams Remote Code Execution
- [webapps] - PHD Help Desk 2.12 - SQL Injection Vulnerability
- [local] - Windows NT - Windows 8 EPATHOBJ Local Ring 0 Exploit
- [webapps] - PhpTax 0.8 - File Manipulation(newvalue,field) Remote Code Execution
- [remote] - Lianja SQL 1.0.0RC5.1 db_netserver Stack Buffer Overflow
- [remote] - Logic Print 2013 - Stack Overflow (vTable Overwrite)
- [remote] - Intrasrv Simple Web Server 1.0 - SEH Based Remote Code Execution
- [dos] - Monkey HTTPD 1.1.1 - Crash PoC
- [dos] - CodeBlocks 12.11 (Mac OS X) - Crash POC
- [webapps] - TP-LINK WR842ND Remote Multiple SSID Directory Travesal Exploit
- [webapps] - YeaLink IP Phone Firmware
- [webapps] - TP-Link IP Cameras Firmware 1.6.18P12 - Multiple Vulnerabilities
- [webapps] - MayGion IP Cameras Firmware 09.27 - Multiple Vulnerabilities
- [remote] - IBM SPSS SamplePower C1Tab ActiveX Heap Overflow
- [webapps] - Zavio IP Cameras Firmware 1.6.03 - Multiple Vulnerabilities
- [local] - AdobeCollabSync Buffer Overflow Adobe Reader X Sandbox Bypass
- [remote] - Nginx HTTP Server 1.3.9-1.4.0 Chuncked Encoding Stack Buffer Overflow
- [webapps] - AVE.CMS
- [papers] - Fuzzing: An introduction to Sulley Framework
- [local] - Sony Playstation 3 (PS3) 4.31 - Save Game Preview SFO File Handling Local C
- [dos] - Trend Micro DirectPass 1.5.0.1060 - Multiple Software Vulnerabilities
- [webapps] - Wordpress User Role Editor Plugin 3.12 - CSRF Vulnerability
- [papers] - Blackberry Z10 Research Primer - Dissecting Blackberry 10 - An Initial Ana
- [webapps] - Wordpress Spider Event Calendar Plugin 1.3.0 - Multiple Vulnerabilities
- [webapps] - Wordpress Spider Catalog Plugin 1.4.6 - Multiple Vulnerabilities
- [local] - AdobeCollabSync Buffer Overflow Adobe Reader X Sandbox Bypass
- [webapps] - RadioCMS 2.2 (menager.php, playlist_id param) - SQL Injection Vulnerabili
- [webapps] - WordPress ProPlayer Plugin 4.7.9.1 - SQL Injection
- [remote] - D-Link DIR615h OS Command Injection
- [remote] - Linksys WRT160nv2 apply.cgi Remote Command Injection
- [papers] - GAME ENGINES: A 0-DAY’S TALE
- [webapps] - Kimai 0.9.2.1306-3 - SQL Injection Vulnerability
- [local] - Ophcrack 3.5.0 - Local Code Execution BOF
- [webapps] - php-Charts 1.0 - Code Execution Vulnerability
- [webapps] - ZPanel templateparser.class.php Crafted Template Remote Command Execution
- [webapps] - Exponent CMS 2.2.0 beta 3 - Multiple Vulnerabilities
- [remote] - Mutiny 5 Arbitrary File Upload
- [dos] - nginx 1.3.9-1.4.0 DoS PoC
- [webapps] - CKEditor < 4.1 Drupal 6.x & 7.x - Persistent XSS Vulnerability
- [dos] - Serva 32 TFTP 2.1.0 - Buffer Overflow Denial of service
- [dos] - Quick Search Version 1.1.0.189 Buffer Overflow Vulnerability (SEH)
- [local] - Linux Kernel open-time Capability file_ns_capable() Privilege Escalation
- [webapps] - UMI.CMS 2.9 - CSRF Vulnerability
- [local] - ERS Viewer 2011 ERS File Handling Buffer Overflow
- [webapps] - AlienVault OSSIM 4.1.2 - Multiple SQL Injection Vulnerabilities
- [remote] - SAP SOAP RFC SXPG_COMMAND_EXECUTE Remote Command Execution
- [remote] - SAP SOAP RFC SXPG_CALL_SYSTEM Remote Command Execution
- [local] - Linux PERF_EVENTS - Local Root Exploit
- [webapps] - WHMCS 4.x (invoicefunctions.php, id param) - SQL Injection Vulnerability
- [webapps] - IPB (Invision Power Board) all versions (1.x? / 2.x / 3.x) - Admin Accoun
- [webapps] - File Lite 3.3 & 3.5 PRO iOS - Multiple Vulnerabilities
- [webapps] - SimpleTransfer 2.2.1 - Command Injection Vulnerabilities
- [webapps] - Wireless Photo Access 1.0.10 iOS - Multiple Vulnerabilities
- [webapps] - Wifi Album v1.47 iOS - Command Injection Vulnerability
- [webapps] - Wireless Disk PRO v2.3 iOS - Multiple Vulnerabilities
- [dos] - No-IP Dynamic Update Client (DUC) 2.1.9 - Local IP Address Stack Overflow
- [webapps] - Wifi Photo Transfer 2.1 & 1.1 PRO - Multiple Vulnerabilities
- [local] - Kloxo 6.1.6 - Local Privilege Escalation
- [webapps] - GetSimpleCMS 3.2.1 Arbitrary File Upload Vulnerability
- [dos] - Lan Messenger sending PM Buffer Overflow(UNICODE) - Overwrite SEH
- [dos] - Flightgear 2.0, 2.4 - Remote Format String Exploit
- [webapps] - Joomla DJ Classifieds Extension 2.0 - Blind SQL Injection Vulnerability
- [local] - Linux Kernel open-time Capability file_ns_capable() - Privilege Escalation
- [papers] - HTP Zine 5
- [webapps] - ColdFusion 9-10 - Remote Root Exploit
- [webapps] - b2evolution 4.1.6 - Multiple Vulnerabilities
- [remote] - Dovecot with Exim sender_address Parameter - Remote Command Execution
- [local] - AudioCoder .M3U Buffer Overflow
- [dos] - Huawei SNMPv3 Service - Multiple Buffer Overflow Vulnerabilities
- [webapps] - Cisco Linksys E4200 Firmware - Multiple Vulnerabilities
- [remote] - Microsoft Internet Explorer CGenericElement Object Use-After-Free Vulnerab
- [webapps] - OpenDocMan 1.2.6.5 - Persistent XSS Vulnerability
- [webapps] - Webid 1.0.6 - Multiple Vulnerabilities
- [webapps] - Craigslist Gold - SQL Injection Vulnerability
- [webapps] - D-Link DSL-320B - Multiple Vulnerabilities
- [papers] - [Hebrew] Digital Whisper Security Magazine #41
- [local] - ABBS Audio Media Player v3.1 (.lst) Buffer Overflow
- [local] - FuzeZip 1.0.0.131625 - SEH Buffer Overflow
- [local] - WinArchiver 3.2 - SEH Buffer Overflow
- [local] - AudioCoder 0.8.18 - Buffer Overflow Exploit (SEH)
- [webapps] - D-Link DNS-323 - Multiple Vulnerabilities
- [webapps] - eggBlog 4.1.2 - Arbitrary File Upload Vulnerability
- [dos] - WPS Office Wpsio.dll - Stack Buffer Overflow Vulnerability
- [webapps] - Vivotek IP Cameras Multiple Vulnerabilities
- [webapps] - D-Link IP Cameras Multiple Vulnerabilities
- [remote] - Wordpress W3 Total Cache PHP Code Execution
- [remote] - phpMyAdmin Authenticated Remote Code Execution via preg_replace()
- [dos] - Syslog Watcher Pro 2.8.0.812 - (Date Parameter) - Cross Site Scripting Vulner
- [local] - sudo v1.8.0-1.8.3p1 (sudo_debug) - Format String Root Exploit + glibc FORTI
- [webapps] - Foe CMS 1.6.5 - Multiple Vulnerabilities
- [webapps] - Ipswitch IMail 11.01 - XSS Vulnerability
- [webapps] - Joomla!
- [webapps] - D-Link DIR-635 - Multiple Vulnerabilities
- [webapps] - phpMyAdmin 3.5.8 and 4.0.0-RC2 - Multiple Vulnerabilities
- [webapps] - Hornbill Supportworks ITSM 1.0.0 - SQL Injection Vulnerability
- [remote] - GroundWork monarch_scan.cgi OS Command Injection
- [remote] - Windows Light HTTPD 0.1 - Buffer Overflow
- [remote] - SAP ConfigServlet Remote Unauthenticated Payload Execution
- [webapps] - CiviCRM for Joomla 4.2.2 - Remote Code Injection
- [dos] - Mikrotik Syslog Server for Windows 1.15 - Denial of Service
- [remote] - Java Applet Reflection Type Confusion Remote Code Execution
- [webapps] - D'Link DIR-615 Hardware rev D3 / DIR-300 - Hardware rev A - Multiple Vuln
- [remote] - Netgear DGN2200B pppoe.cgi Remote Command Execution