This archive contains all of the 348 exploits added to Packet Storm in March, 2012.
b1213a6b087ecdbaceb24826682a5147445c4943594d2f3766ed5f03eb786a28
Flock version 2.6.1 suffers from a denial of service vulnerability.
a3fc59b92ec9778624cecbf9978cf792908c9fdec5a5a5a97851a4c0d3d4211f
World Graphics suffers from a remote SQL injection vulnerability.
0beda7071e21935066e90550a3ac769ae9386aa714a433e82e5b6318a7a2523d
Andensal suffers from a remote SQL injection vulnerability.
ff295d6c1b04aae85b2c6a3c07af0a7242277517c4543f74ab62410349c7b2d0
Landshop version 0.9.2 suffers from cross site scripting and remote SQL injection vulnerabilities.
06c23effd7b7b44a3089ec55527daab42554267e4fdee22011c25999803dae48
Bitsmith PS Knowbase version 3.2.3 suffers from a buffer overflow vulnerability.
ff8b475b068dda8ae047b8fac7df7397a76692e21be2a9c19f5a7db55247df62
This Metasploit module exploits a vulnerability due to the fact that AtomicReferenceArray uses the Unsafe class to store a reference in an array directly, which may violate type safety if not used properly. This allows a way to escape the JRE sandbox, and load additional classes in order to perform malicious operations.
f3f101f5489c7554b50702229d0f0d209cf48a2f373093551088f3e07904f138
JAMWiki version 1.1.4 suffers from a reflective cross site scripting vulnerability.
3a434a12f95e083d4e37bd69a090f4a82a49d407c4756262d732f4e0e3f3a399
SocialCMS versions 1.0.2 and below suffer from multiple cross site scripting vulnerabilities.
a66d3ebbdf0a5c8fec0b050c9acc1528e7708bd7acc201da83ebb71d1a25f4df
Simple PHP Agenda versions 2.2.8 and below suffer from multiple cross site request forgery vulnerabilities.
02e95a628273a7d274960548d31bfc06e489e5e9030ae0a37dac889a18238b13
MailMax versions 4.6 and below POP3 USER remote buffer overflow exploit.
14b8a1f5446fbce8f0033455b422da494838ebd8f710bfefe2e225cd86bde3c9
SyndeoCMS versions 3.0.01 and below suffer from a persistent cross site scripting vulnerability.
e50db0bbb8c9c5cf899bf6cc502424fee086c16a445dd347146129d91f1a131c
VMware suffers from a backdoor ROM overwrite privilege escalation vulnerability.
b9592c21e5137b1c05d3912f92d7e5520576843ea7ebeb78d6e4e04c2e626f17
Intuit Help System suffers from protocol file retrieval vulnerability.
65677d6250ef2ab1e9b970ddb24217950a01b3edbee65118c3e2ebe4ee508a3d
Dalbum version 144 build 174 suffers from a cross site request forgery vulnerability.
00db7898e4448ebb13cb644498d530d22f039f12896633da126ec0a6476a7296
Intuit Help System suffers from protocol URL heap corruption and memory leak vulnerabilities.
28c43548d0a76f1624a1a7bef0b4301fe6ec08af383b75c0a01f373d96370407
WebMatter CMS suffers from a remote SQL injection vulnerability.
4a0f7e79db84fc5f3e6ee7e303d84f4e17d86bc810f47fdf052eaf4e9a4686d1
ArticleSetup versions 1.11 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
9989e178ae23e232b3197892da9d4f97be442d52ccc77c18923483a98701abc4
PHP versions 5.4 and 5.3 suffer from a deprecated eregi() memory_limit bypass vulnerability. Proof of concepts included.
b8f9235bcde03d20acafbedaa0aa12b05d9c56034aaaa1a9f164f8fbde699142
Firstload.com suffers from a cross site scripting vulnerability.
fe8708399a692ce8a272a89ac63191db1d103668ef36b703b2323bfc1e4ff6cb
Coppermine version 1.5.18 suffers from cross site scripting and path disclosure vulnerabilities.
7ed975c2a3c1cbdf0d8633640f3ac1828890da246e38234fa66957454d96fdde
PHP Designer 2007 PE suffers from a remote SQL injection vulnerability.
7f5cd0d29463fed33d4ae2fd9962cde7c0185b25d1e0b37c8635ac96d1105fcd
PTK version 1.0.5 suffers from cross site scripting and direct access bypass vulnerabilities.
73db2993ed1cf68f7e922d7bd762d40bda60592e0f603e13367647097dc3daa2
GetSimple version 3.1 suffers from backup download and shell upload vulnerabilities.
6d7e6bb2dc03c8ee708abf9ebd0c5acdb49191acb3f9a1b447a52889d00c3574
Havalite CMS suffers from database disclosure, shell upload, and remote SQL injection vulnerabilities.
5333f13c7d3a31da5790853e3d445f2ca1d0412733313afc050cc63a50eeae64