- [local] - CoolPlayer Portable 2.19.2 Buffer Overflow ASLR bypass
- [webapps] - Islamnt Islam Forum Script 1.2 Blind SQL Injection Exploit
- [webapps] - am4ss 1.2
- [webapps] - am4ss Support System 1.2 PHP Code Injection Exploit
- [remote] - Dell SonicWALL Scrutinizer 9 SQL Injection
- [remote] - Cisco Linksys PlayerPT ActiveX Control SetSource sURL argument Buffer Over
- [remote] - Zenoss 3 showDaemonXMLConfig Command Execution
- [dos] - FreeBSD Kernel SCTP Remote NULL Ptr Dereference DoS
- [local] - Nvidia Linux Driver Privilege Escalation
- [webapps] - Joomla joomgalaxy 1.2.0.4 Multiple Vulnerabilities
- [shellcode] - Linux x86 chmod 666 /etc/passwd & /etc/shadow - 57 bytes
- [remote] - Microsoft Internet Explorer Fixed Table Col Span Heap Overflow
- [webapps] - WebPageTest Arbitrary PHP File Upload
- [shellcode] - Linux x86 ASLR deactivation - 83 bytes
- [webapps] - ManageEngine Mobile Application Manager v10 SQL Injection
- [webapps] - ManageEngine Application Manager 10 Multiple Vulnerabilities
- [webapps] - Joomla Movm Extension (com_movm) SQL Injection
- [papers] - [Hebrew] Digital Whisper Security Magazine #34
- [remote] - pBot Remote Code Execution
- [dos] - eGlibc Signedness Code Execution Vulnerability
- [webapps] - Joomla com_niceajaxpoll
- [webapps] - Dr. Web Control Center 6.00.3.201111300 XSS Vulnerability
- [webapps] - Symantec Web Gateway 5.0.3.18 (deptUploads_data.php groupid parameter) Bl
- [remote] - Sysax Multi-Server 5.64 Create Folder Buffer Overflow
- [remote] - httpdx
- [papers] - Transferable State Attack on Iterated Hashing Functions
- [local] - Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow
- [papers] - [Hebrew] Digital Whisper Security Magazine #33
- [remote] - Cisco Linksys PlayerPT ActiveX Control Buffer Overflow
- [webapps] - CuteFlow v2.11.2 Arbitrary File Upload Vulnerability
- [remote] - Symantec Web Gateway 5.0.2.18 pbcontrol.php Command Injection
- [papers] - Bypassing Spam Filters Using Homographs
- [local] - Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 Buffer Overflow (ASLR and D
- [remote] - Symantec Web Gateway 5.0.3.18 pbcontrol.php ROOT RCE Exploit
- [webapps] - Zabbix 2.0.1 and Earlier Session Extractor 0day
- [papers] - 2012-1889 Technical Analysis Report
- [webapps] - WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload
- [webapps] - Symantec Web Gateway 5.0.3.18 LFI Remote ROOT RCE Exploit
- [webapps] - SpiceWorks 5.3.75941 Stored XSS and Post-Auth SQL Injection
- [webapps] - AlienVault OSSIM 3.1 Reflected XSS and Blind SQL Injection
- [webapps] - Symantec Web Gateway 5.0.3.18 Blind SQLi Backdoor via MySQL Triggers
- [papers] - CVE-2012-1889: Security Update Analysis
- [webapps] - MySQL Squid Access Report 2.1.4 HTML Injection
- [local] - MyMp3 Player Stack .m3u DEP Bypass Exploit
- [webapps] - Symantec Web Gateway 5.0.2 (blocked.php id parameter) Blind SQL Injection
- [webapps] - Atmail WebAdmin and Webmail Control Panel SQL Root Password Disclosure
- [local] - Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Exploit
- [webapps] - EGallery PHP File Upload Vulnerability
- [remote] - Simple Web Server Connection Header Buffer Overflow
- [webapps] - Ipswitch WhatsUp Gold 15.02 Stored XSS - Blind SQLi - RCE
- [webapps] - Dell SonicWALL Scrutinizer 9.0.1 (statusFilter.php q parameter) SQL Injec
- [webapps] - SolarWinds Orion Network Performance Monitor 10.2.2 Multiple Vulnerabilit
- [webapps] - X-Cart Gold 4.5 (products_map.php symb parameter) XSS Vulnerability
- [remote] - Atmail Email Server Appliance 6.4 XSS - CSRF - RCE
- [dos] - httpdx 1.5.4 Remote HTTP Server Denial of Service
- [dos] - ptunnel
- [dos] - Oxide Webserver 2.0.4 Denial of Service Vulnerability
- [webapps] - NetArt Media iBoutique 4.0 (index.php key parameter) SQL Injection Vulner
- [dos] - PHP 6.0 openssl_verify() Local Buffer Overflow PoC
- [webapps] - PHP-Nuke module(SPChat) SQL Injection Vulnerability
- [remote] - Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overf
- [remote] - Novell ZENworks Configuration Management Preboot Service 0x6c Buffer Overf
- [dos] - Oracle Outside-In FPX File Parsing Heap Overflow
- [dos] - Oracle Outside-In JP2 File Parsing Heap Overflow
- [dos] - Oracle Outside-In LWP File Parsing Stack Based Buffer Overflow
- [remote] - Simple Web Server 2.2 rc2 Remote Buffer Overflow Exploit
- [remote] - Novell ZENworks Configuration Management Preboot Service 0x06 Buffer Overf
- [local] - Windows Escalate Task Scheduler XML Privilege Escalation
- [local] - Linux Kernel Sendpage Local Privilege Escalation
- [remote] - Novell ZENworks Configuration Management Preboot Service 0x21 Buffer Overf
- [webapps] - Forum Oxalis
- [dos] - DomsHttpd 1.0 Remote Denial Of Service Exploit
- [webapps] - PBBoard v2.1.4 CMS - Multiple Vulnerabilities
- [webapps] - VamCart v0.9 CMS - Multiple Vulnerabilities
- [webapps] - CakePHP 2.x-2.2.0-RC2 XXE Injection
- [webapps] - Wordpress Diary/Notebook Site5 Theme Email Spoofing
- [webapps] - Vivotek Cameras Sensitive Information Disclosure
- [dos] - beSTORM 3.5.6 ActiveX (WinGraphviz.dll) Remote Heap Overflow
- [remote] - ALLMediaServer 0.8 Buffer Overflow
- [remote] - Siemens Simatic S7-1200 CPU START/STOP Module
- [remote] - Siemens Simatic S7-300 PLC Remote Memory Viewer
- [remote] - Siemens Simatic S7-300/400 CPU START/STOP Module
- [webapps] - Joomla OS Property 2.0.2 Unrestricted File Upload
- [webapps] - Shopware 3.5 SQL Injection
- [webapps] - Joomla KISS Advertiser Remote File & Bypass Upload Vulnerability
- [webapps] - Magento eCommerce Local File Disclosure
- [webapps] - WordPress Resume Submissions & Job Postings v2.5.1 Unrestricted File Uplo
- [webapps] - WebPagetest
- [papers] - Forensic Analysis of iOS5 iPhone Backups
- [webapps] - House Style 0.1.2 => readfile() Local File Disclosure Vulnerability
- [webapps] - eCan v0.1 => Local File Disclosure Vulnerability
- [webapps] - docXP 1.1 => Local File Disclosure Vulnerability
- [dos] - WaveSurfer 1.8.8p4
- [webapps] - Lc Flickr Carousel V1.0 => Local File Disclosure Vulnerability
- [papers] - Having Fun With VirusScan Enterprise
- [webapps] - TP Link Gateway v3.12.4 Multiple Vulnerabilities
- [webapps] - Reserve Logic v1.2 Booking CMS Multiple Vulnerabilities
- [local] - ZipItFast PRO v3.0 Heap Overflow Exploit
- [remote] - AdminStudio LaunchHelp.dll ActiveX Arbitrary Code Execution
- [remote] - Java Applet Field Bytecode Verifier Cache Remote Code Execution
- [webapps] - Netsweeper WebAdmin Portal Multiple Vulnerabilities
- [webapps] - WordPress WP-Predict Plugin v1.0 Blind SQL Injection
- [local] - Python Untrusted Search Path/Code Execution Vulnerability
- [webapps] - Umbraco CMS Remote Command Execution
- [webapps] - Basilic 1.5.14 diff.php Arbitrary Command Execution
- [webapps] - Tiki Wiki
- [papers] - Hack Box with DotDotPwn Directory Traversal Fuzzer
- [remote] - Poison Ivy 2.3.2 C&C Server Buffer Overflow
- [webapps] - Webmatic 3.1.1 Blind SQL Injection
- [webapps] - Event Script PHP v1.1 CMS Multiple Vulnerabilities
- [webapps] - sflog!
- [dos] - Linux Kernel fs/eventpoll.c Local Denial of Service
- [remote] - IBM Rational ClearQuest CQOle Remote Code Execution
- [webapps] - CLscript CMS v3.0 Multiple Vulnerabilities
- [papers] - CVE 2012-1889 Microsoft XML Core Services Uninitialized Memory Vulnerabili
- [webapps] - Freeside SelfService CGI|API 2.3.3 - Multiple Vulnerabilities
- [webapps] - GuestBook Scripts PHP v1.5 - Multiple Vulnerabilities
- [dos] - Photodex ProShow Producer v5.0.3256 Buffer Overflow
- [webapps] - WordPress MoodThingy Widget v0.8.7 Blind SQL Injection
- [webapps] - Tiki Wiki CMS Groupware
- [webapps] - Webify Link Directory SQL Injection
- [dos] - .Net Framework Tilde Character DoS
- [webapps] - phpMyBackupPro
- [webapps] - CLscript Classified Script 3.0 SQL Injection
- [webapps] - gp easy CMS Minishop 1.5 Plugin Persistent XSS
- [webapps] - IIS Short File/Folder Name Disclosure
- [papers] - Microsoft IIS Tilde Character Short File/Folder Name Disclosure
- [webapps] - WANGKONGBAO CNS-1000 UTM IPS-FW Directory Traversal
- [local] - python-wrapper Untrusted Search Path/Code Execution Vulnerability
- [local] - Emesene 2.12.5 Password Disclosure
- [local] - Irfanview JPEG2000
- [remote] - BSD telnetd Remote Root Exploit
- [remote] - HP Data Protector Create New Folder Buffer Overflow
- [webapps] - WordPress Paid Business Listings v1.0.2 Blind SQL Injection
- [dos] - GIMP 2.8.0 FIT File Format DoS
- [dos] - IrfanView JLS Formats PlugIn Heap Overflow
- [dos] - PowerNet Twin Client
- [webapps] - SpecView
- [papers] - Proper Hashing Methods
- [dos] - PC Tools Firewall Plus 7.0.0.123 Local DoS
- [webapps] - phpmoneybooks 1.03 Stored XSS
- [local] - Apple QuickTime TeXML Stack Buffer Overflow
- [webapps] - Openfire
- [webapps] - webERP
- [webapps] - Zend Framework Local File Disclosure
- [dos] - Sielco Sistemi Winlog 2.07.16 Multiple Vulnerabilities
- [webapps] - Symantec Web Gateway 5.0.2.8 Multiple Vulnerabilities
- [remote] - Symantec PcAnywhere 12.5.0 Login and Password Field Buffer Overflow
- [webapps] - SugarCRM
- [local] - quicktime.util.QTByteObject Initialization Security Checks Bypass
- [remote] - Root Exploit Western Digital's WD TV Live SMP/Hub
- [webapps] - WordPress Website FAQ Plugin v1.0 SQL Injection
- [webapps] - Wordpress Fancy Gallery Plugin 1.2.4 Arbitrary File Upload
- [webapps] - Parodia 6.8 employer-profile.asp SQL Injection
- [dos] - Able2Doc and Able2Doc Professional v 6.0 Memory Corruption
- [remote] - Adobe Flash Player Object Type Confusion
- [dos] - Kingview Touchview 6.53 Multiple Heap Overflow Vulnerabilities
- [dos] - Able2Extract and Able2Extract Server v 6.0 Memory Corruption
- [papers] - Insecurity of Poorly Designed Remote File Inclusion Payloads - Part 2
- [dos] - Slimpdf Reader 1.0 Memory Corruption
- [remote] - Apple iTunes 10 Extended M3U Stack Buffer Overflow
- [dos] - Kingview Touchview 6.53 EIP Overwrite
- [dos] - IrfanView 4.33 DJVU Image Processing Heap Overflow
- [webapps] - UCCASS
- [webapps] - SugarCRM CE
- [dos] - XnView 1.98.8 TIFF Image Processing Heap Overflow (2)
- [dos] - Lattice Diamond Programmer 1.4.2 Buffer Overflow
- [dos] - Qutecom Softphone 2.2.1 Heap Overflow DoS/Crash Proof of Concept
- [webapps] - LimeSurvey 1.92+ build120620 Multiple Vulnerabilities
- [webapps] - Agora Project 2.13.1 Multiple Vulnerabilities
- [dos] - ACDSee PRO 5.1 RLE Image Processing Heap Overflow
- [dos] - ACDSee PRO 5.1 CUR Image Processing Heap Overflow
- [dos] - ACDSee PRO 5.1 GIF Image Processing Heap Overflow
- [dos] - ACDSee PRO 5.1 PCT Image Processing Heap Overflow
- [dos] - XnView 1.98.8 TIFF Image Processing Heap Overflow
- [dos] - XnView 1.98.8 PCT Image Processing Heap Overflow
- [dos] - XnView 1.98.8 GIF Image Processing Heap Overflow
- [webapps] - Traq 2.3.5 Multiple Vulnerabilities
- [webapps] - WordPress Schreikasten 0.14.13 XSS
- [remote] - Apple iTunes
- [webapps] - Commentics 2.0 Multiple Vulnerabilities
- [webapps] - IBM System Storage DS Storage Manager Profiler Multiple Vulnerabilities
- [remote] - Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
- [local] - Sysax
- [webapps] - iBoutique eCommerce v4.0 Multiple Web Vulnerabilites
- [remote] - EZHomeTech EzServer
- [dos] - Airlock WAF 4.2.4 Overlong UTF-8 Sequence Bypass
- [remote] - HP Data Protector Client EXEC_CMD Remote Code Execution
- [webapps] - Nuked Klan SP CMS v4.5 SQL Injection Vulnerability
- [dos] - Total Video Player 1.31 .m3u Crash PoC
- [webapps] - MyTickets 1 to 2.0.8 Blind SQL Injection
- [remote] - Ezhometech Ezserver 6.4 Stack Overflow Exploit
- [webapps] - QNAP Turbo NAS 3.6.1 Build 0302T Multiple Vulnerabilities
- [dos] - Karafun Player 1.20.86 .m3u Crash PoC
- [remote] - PHP apache_request_headers Function Buffer Overflow
- [local] - Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflow
- [webapps] - Wordpress Automatic Plugin v2.0.3 CSRF Exploit
- [remote] - Microsoft XML Core Services MSXML Uninitialized Memory Corruption
- [webapps] - iScripts EasyCreate CMS v2.0 Multiple Vulnerabilities
- [webapps] - Huawei HG866 Authentication Bypass
- [dos] - XnView FlashPix Image Processing Heap Overflow
- [dos] - XnView ECW Image Processing Heap Overflow
- [dos] - XnView RAS Image Processing Heap Overflow
- [webapps] - News Script PHP v1.2 Multiple Vulnerabilites
- [remote] - ComSndFTP v1.3.7 Beta USER Buffer Overflow
- [local] - TFM MMPlayer (m3u/ppl File) Buffer Overflow
- [webapps] - Useresponse
- [remote] - MS12-037 Internet Explorer Same ID Property Deleted Object Handling Memory
- [local] - ESRI ArcGIS 10.0.X / ArcMap 9 Arbitrary Code Execution
- [local] - Adobe Illustrator CS5.5 Memory Corruption Exploit
- [papers] - [Turkish] Source Code Analysis at Web Applications - I
- [webapps] - Cells Blog CMS v1.1 Multiple Web Vulnerabilites
- [webapps] - MYRE Real Estate Mobile 2012 Multiple Vulnerabilities
- [remote] - XM Easy Personal FTP Server
- [dos] - Wyse Machine Remote Power off (DOS) without any privilege
- [papers] - [Turkish] Web Application Security #101
- [webapps] - Squirrelcart Cart Shop v3.3.4 Multiple Web Vulnerabilities
- [webapps] - Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities
- [webapps] - WordPress plugin Foxypress uploadify.php Arbitrary Code Execution
- [remote] - F5 BIG-IP SSH Private Key Exposure
- [dos] - Apple iTunes 10.6.1.7 M3U Playlist File Walking Heap Buffer Overflow
- [webapps] - XAMPP Windows 1.7.7 multiple XSS/Blind SQL Injection Vulnerabilities
- [remote] - MySQL Remote Root Authentication Bypass
- [remote] - F5 BIG-IP Remote Root Authentication Bypass Vulnerability
- [dos] - OpenType Font File Format DoS Exploit for Windows
- [webapps] - Symantec Web Gateway 5.0.2.8 ipchange.php Command Injection
- [remote] - Apple Personal Web Sharing 1.1 Vulnerability
- [dos] - Slackware Linux 3.4 liloconfig-color temporary file Vulnerability
- [remote] - F5 BIG-IP Remote Root Authentication Bypass Vulnerability
- [webapps] - Agora-Project 2.12.11 Arbitrary File Upload Vulnerability
- [webapps] - TheBlog
- [papers] - [Spanish] Remote Command Execution through Local File Inclusion
- [webapps] - Wordpress Custom Content Type Manager 0.9.5.13-pl Arbitrary File Upload V
- [webapps] - Wordpress drag and drop file upload 0.1 Arbitrary File Upload Vulnerabili
- [webapps] - Wordpress Mac Photo Gallery 2.7 Arbitrary File Upload
- [webapps] - Wordpress Pica Photo Gallery 1.0 Arbitrary File Upload Vulnerability
- [webapps] - Wordpress Top Quark Architecture Version 2.10 Arbitrary File Upload Vulne
- [webapps] - Wordpress User Meta Version 1.1.1 Arbitrary File Upload Vulnerability
- [local] - MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerab
- [webapps] - Wordpress wp-gpx-map version 1.1.21 Arbitrary File Upload Vulnerability
- [webapps] - ClanSuite 2.9 Arbitrary File Upload Vulnerability
- [webapps] - Wordpress SfBrowser Version 1.4.5 Arbitrary File Upload Vulnerability
- [dos] - SunOS
- [remote] - SunOS
- [dos] - SunOS
- [dos] - SunOS
- [dos] - AppleShare IP Mail Server 5.0.3 Buffer Overflow Vulnerability
- [dos] - Digital Ultrix 4.0/4.1 /usr/bin/chroot Vulnerability
- [webapps] - Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerability
- [papers] - Insecurity of Poorly Designed Remote File Inclusion Vulnerabilities: Pt 1