Lidosys CMS suffers from remote SQL injection and information disclosure vulnerabilities.
aed75f9b422d398ddc8a3bc152ec5a54b7aa049ce7c63239350a7471edf79f3c
RADIANT INFOTECH suffers from a remote SQL injection vulnerability.
f7deaf876e8083cb79829f6fbd01c4e1a519f27ab6bb5e753110d8be47b854ea
Geosoft Technologies suffers from a remote SQL injection vulnerability.
13e605724d4a56a8de25d72ff309c8ef8952bbe3768d85d0d43285a3ae3f2f95
Frog Web Works suffers from a remote SQL injection vulnerability.
2fa1644366058fc4f2b09482b72171e4297988d5b454d64ebcf74d9feeb17379
Dharmatechnet suffers from a remote SQL injection vulnerability.
08fc43acdfdbef9739aedbfa27b6bcc8eb60edc3ca6af2abd8041d84cfec040a
As'ad Mansour suffers from a remote SQL injection vulnerability.
9801786724876ca5d2a91359040bec7c985185348a7e40d57d2d9611dbaba539
Access Bank Plc suffers from a remote SQL injection vulnerability.
c81db695ee2d5b88c1bdef45d2c59ef8ef1f76d47fa934957c8f32694acfde36
webERP versions 4.08.1 and below suffer from local file inclusion and remote file inclusion vulnerabilities.
5267f890f545bb735b1c39589e72551064eb335e1539e0d265bf1035279b0379
Chiangrai Enter Soft Design suffers from a remote SQL injection vulnerability.
e301577863b80f8afebc3fab0af02f6a7bc28c1cefa52659a270e1b1dd1244eb
This is a local exploit for Real Player 10 Gold that uses a division by zero to trigger an exception handler.
bef48a2af7c152b4698cbb3e2c9b4d15795525b8bf8b700a9f8abe631953ac07
VLC version 2.0.1 suffers from an avi playlist denial of service vulnerability.
6400dd1a7d12ff853c19c53043a4fdc93b5051de204e01bf898e62de9dd1b0da
Top Nepal suffers from a remote SQL injection vulnerability.
3ba635007f36f932c35f438db58d698a1d107c3d5ab8dd5f34fde15067be1fb9
Rubysoft Solutions suffers from a remote SQL injection vulnerability.
ba290eedef8200b1eb3154a06936e7759014d52573641910f37674f180b975c1
Rhdesign suffers from a remote SQL injection vulnerability.
994b3f6e5919e91c1ef54e6bb6a1a043d9a4a5d9b2f422fabca853fc9f8a7e19
Rainbowdigital suffers from a remote SQL injection vulnerability.
99d02de14a1f053395b2d6291f379842ae9851cf7644f89cd9216c54bd15763f
Pixel Identity suffers from a remote SQL injection vulnerability.
53f5fcf3cc37318783474b06a01479a5a240e95c4363fa65ca213b751405f7d5
MUSOYAN suffers from a remote SQL injection vulnerability.
e648a2199ca11ed45130c62574b55d301604796519c02fe8df2432b5d4b892f5
HR Software suffers from a remote SQL injection vulnerability.
6ed4ebd0a76076b433760b7c0c296cc21d0a71d1c745f6a84694b245381d769e
ExNet suffers from a remote SQL injection vulnerability.
c394b2e5c9255f4aba70b868255f74dd75974463ba07a272ba4e772dfd07b87d
This Metasploit module exploits a php unserialize() vulnerability in SugarCRM versions 6.3.1 and below which could be abused to allow authenticated SugarCRM users to execute arbitrary code with the permissions of the webserver. The dangerous unserialize() exists in the 'include/MVC/View/views/view.list.php' script, which is called with user controlled data from the 'current_query_by_page' parameter. The exploit abuses the __destruct() method from the SugarTheme class to write arbitrary PHP code to a 'pathCache.php' on the web root.
1e73a4a4f9bf312d43feeea95213bce49f5dcf97660320b96cca53b8c0f4ba3d
Sielco Sistemi Winlog versions 2.07.16 and below suffer from various code execution, stack overflow, and directory traversal vulnerabilities. Proof of concept utility included.
2c3d3186116ed66592e68144dac18e5288896dc07ba9846d20cbd79b708917db
Symantec Web Gateway version 5.0.2.8 suffers from local file inclusion, remote command execution, and arbitrary file deletion vulnerabilities.
a0fccf32d3c50c44bbaec6e8b29d6a94e5b750a7a3630cb98f887b64cf02a1a9
Symantec PcAnywhere version 12.5.0 login and password field buffer overflow exploit.
431142dcabddee7d1d98c06b0f21e036c028f68d52e340f678ba55b852d410ad
Cute News version 1.4.7 suffers from a cross site request forgery vulnerability.
a6c888062576583a7d0249f9e1102e55b912f19ca049eeddea3637dc89e3540c
BizShop suffers from a remote SQL injection vulnerability.
f2c4bb991284bc2101c2fd060fda5800364b7e397d861f3402540acbc15aaf3d