Web :: Apps
Last Updated: 7/6/2013 11:15:29 PM




Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

1008-49.htm
1845 bytes. by advisory@htbridge.ch (2010)
Mystic XSRF (CSRF)

1008-50.htm
2018 bytes. by advisory@htbridge.ch (2010)
Mystic XSS vulnerability

1008-51.htm
2007 bytes. by advisory@htbridge.ch (2010)
Mystic XSS vulnerability

1008-52.htm
2950 bytes. by advisory@htbridge.ch (2010)
Onyx XSS vulnerability

1008-53.htm
2365 bytes. by advisory@htbridge.ch (2010)
Onyx XSS vulnerability

fingersv.htm
1970 bytes. by I. Wade (2000)
"The Finger Server" execute shell commands
Advisory   World Wide Web  
arcadi~1.htm
2607 bytes. (2001)
1C:Arcadia Tradecli.dll Show Path, Read Arbitrary Files, DoS
Advisory   Windows   World Wide Web  
b06-2012.htm
1575 bytes. by d4igoro (2006)
321soft PhP Gallery 0.9 - directory travel & XSS
World Wide Web  
b06-1771.htm
672 bytes. by qex (2006)
4images <= 1.7 XSS
World Wide Web  
b06-1947.htm
3650 bytes. by CrAzY.CrAcKeR (2006)
4images<-- 1.7.1 SQL Injection
World Wide Web  
b06-2598.htm
850 bytes. by CrAzY.CrAcKeR (2006)
4nNukeWare<--V 0.91 SQL Injection exploits
World Wide Web  
b06-1196.htm
2421 bytes. by alex (2006)
@1 File Store Multiple XSS and SQL Injection Vulnerabilities
World Wide Web  
web5444.htm
1495 bytes. (2002)
Active! mail -Active! mail arbitrary script execution
Exploit   World Wide Web  
web1029.htm
21824 bytes. (2001)
ActivePerl (PerlScript and Perl-ISAPI) inadequate path length checking on open()
Exploit   World Wide Web  
adcycle1.htm
2205 bytes. by M. Lastdrager (2000)
AdCycle Banner Management System installation insecurity
Advisory   World Wide Web  
adcycle2.htm
8940 bytes. by Neil K. (2001)
AdCycle Banner Management System installation insecurity
Advisory   World Wide Web  
adcycl~1.htm
1826 bytes. by qDefense (2001)
AdCycle up to 1.15 does not properly validate user input
Advisory   World Wide Web  
web5109.htm
1565 bytes. (2002)
Add2It mailman allow command execution on server
Exploit   World Wide Web  
bt1159.txt
1417 bytes. (2003)
Admin Access Vulnerability in Community Wizard
World Wide Web  
b06-3226.htm
1373 bytes. by securityconnection (2006)
aeDating 4.1 XSS
World Wide Web  
web4945.htm
4377 bytes. (2001)
Agoracgi Cross Site Scripting Vulnerability
Exploit   World Wide Web  
b06-1235.htm
2036 bytes. by Stefan Keller (2006)
AkoComment SQL injection vulnerability
World Wide Web  
albumpl.txt
1374 bytes. (2003)
Album.pl vuln
World Wide Web  
web5456.htm
3337 bytes. (2002)
AlienForm2 server file access (reading, writing)
Exploit   World Wide Web  
b06-3103.htm
563 bytes. by s3rv3r_hack3r (2006)
alipager xss attack
World Wide Web  
b06-2407.htm
2869 bytes. by luny (2006)
Alstrasoft Article Manager Pro v1.6
World Wide Web  
b06-2406.htm
900 bytes. by luny (2006)
AlstraSoft E-Friends - XSS
World Wide Web  
clippr33.htm
1043 bytes. by UkR (2001)
Anaconda Clipper 3.3 retrieve artbitrary files
Advisory   Unix   World Wide Web  
analog1.htm
2385 bytes. by S. Turner (2001)
Analog all versions except 4.16 and 4.90beta3 Buffer Overflow
Advisory   Linux   World Wide Web  
b06-1675.htm
434 bytes. by qex (2006)
AnimeGenesis <= XSS
World Wide Web  
b06-3108.htm
586 bytes. by nanoymaster (2006)
animesuki XSS
World Wide Web  
web5132.htm
2117 bytes. (2002)
ans.pl - Avenger's News System permits remote command execution
Exploit   World Wide Web  
pm1.htm
1397 bytes. by J. Chemas (2000)
Apache::ASP prior to v1.95 write to files local to source.asp
Advisory   World Wide Web  
web5511.htm
798 bytes. (2002)
Argosoft Mail Server Plus/Pro webmail reverse directory traversal
Exploit   Windows   World Wide Web  
sql6.htm
2160 bytes. by S. Wilding (2000)
ASP/SQL Inappropriate Permissions
Advisory   World Wide Web  
aspseek1.htm
5693 bytes. by Neil K. (2001)
Aspseek search engine CGI up to 1.0.3 multiple buffer overflows
Advisory   World Wide Web  
b06-2507.htm
608 bytes. by zerogue (2006)
Assetman <= 2.4a XSS
World Wide Web  
authix53.htm
2575 bytes. by L. Saarloos (2000)
Authentix up to 5.3. - bypass logon, authentication
Advisory   Exploit   World Wide Web  
b06-3419.htm
3296 bytes. by majorsecurity.de (2006)
AutoRank <= 5.01 - Multiple XSS and cookie disclosure
World Wide Web  
b06-3924.htm
1047 bytes. by newbinaryfile (2006)
AWBS XSS vuln
World Wide Web  
b06-1607.htm
2095 bytes. by alex (2006)
aWebNews Multiple XSS and SQL Injection Vulnerabilities
World Wide Web  
b06-1692.htm
449 bytes. by qex (2006)
axoverzicht.cgi <= XSS
World Wide Web  
b06-1753.htm
773 bytes. by CrAzY.CrAcKeR (2006)
axoverzicht.cgi<==Remote File Inclusion
World Wide Web  
b06-2451.htm
1514 bytes. by luny (2006)
AZ Photo Album Script Pro
World Wide Web  
b06-3340.htm
690 bytes. by CrAzY.CrAcKeR (2006)
AzDGDatingPlatinum<<--v1.1.0 "view.php" SQL Injection
World Wide Web  
b06-1552.htm
1287 bytes. by selfar2002 (2006)
AzDGVote File inclusion
World Wide Web  
wsweep~1.htm
2091 bytes. by eDvice (2001)
Baltimore Technologies WEBSweeper 4.02 bypass malicious tags
Advisory   World Wide Web  
bt299.txt
1209 bytes. (2003)
Bandmin 1.4 XSS Exploit
Exploit   World Wide Web  
banneror.htm
4330 bytes. by Zillion (2000)
Banner rotating 01 CGI Script Cleartext Passwords
Advisory   World Wide Web  
web5472.htm
3415 bytes. (2002)
BasiliX Webmail multiple vulnerabilities
Exploit   World Wide Web  
basilix.htm
2365 bytes. by T. Sahin (2001)
Basilix Webmail System 0.9.7beta retrievable MySQL password
Advisory   World Wide Web  
b06-3125.htm
2573 bytes. by luny (2006)
Biblenet.net - XSS
World Wide Web  
bigip.htm
1985 bytes. by G. Cohen (1999)
BigIP - bigconf.cgi users retrieve arbitrary files
Advisory   World Wide Web  
bizdbcgi.htm
3804 bytes. by Black Watch Labs (2000)
BizDB CGI - run shell commands
Advisory   World Wide Web  
b06-2980.htm
7638 bytes. by rgod (2006)
blur6ex <= 0.3.462 'ID' blind sql injection
World Wide Web  
b06-1693.htm
2898 bytes. by h e (2006)
blur6ex Local File Inclusion and SQL injection .
World Wide Web  
b06-3666.htm
2961 bytes. by gmdarkfig (2006)
boastMachine <= 3.1 SQL Injection Exploit
World Wide Web  
b06-2273.htm
1491 bytes. (2006)
Boastmachine Cross Site Scripting Vulnerability
World Wide Web  
b06-1542.htm
2156 bytes. by alex (2006)
Book Multiple Vulnerabilities
World Wide Web  
b06-2714.htm
2450 bytes. by selfar2002 (2006)
Bookmark4U Remote File Include
World Wide Web  
b06-2601.htm
824 bytes. by CrAzY.CrAcKeR (2006)
Bratpack Cross Site Scripting Vulnerability
World Wide Web  
bvision.htm
1476 bytes. by B. Jurry (2000)
BroadVision One-To-One Enterprise - discover path to server files
Advisory   World Wide Web  
bsscript.htm
1827 bytes. by Elf (2000)
BS Scripts Multiple CGI execute arbitrary code
Advisory   World Wide Web  
web4970.htm
5066 bytes. (2002)
BSCW meta character escape allows script execution
Exploit   World Wide Web  
bscw~1.htm
3205 bytes. by neovatar (2001)
BSCW Symlinks vulnerability
Advisory   World Wide Web  
b06-3406.htm
5208 bytes. by luny (2006)
Buddy Zone Version 1.0.1 - XSS
World Wide Web  
bt1297.txt
1890 bytes. (2003)
ByteHoard Directory Traversal Vulnerability CGI:
Exploit   World Wide Web  
httpd99.htm
2764 bytes. by CDI (2000)
Cached_feed.cgi retrieve arbitrary files
Advisory   World Wide Web  
b06-3243.htm
973 bytes. by Silitix (2006)
Calendar ( Provided by Codewalkers ) - SQL Injection
World Wide Web  
b06-2795.htm
890 bytes. by CrAzY.CrAcKeR (2006)
Calendar Express 2 SQL injection
World Wide Web  
b06-3681.htm
2418 bytes. by matdhule (2006)
Calendar Mambo Module <= 1.5.7 Remote File Include Vulnerabilities
World Wide Web  
b06-3654.htm
2235 bytes. by matdhule (2006)
Calendar Module <= 1.5.7 Remote File Include Vulnerabilities
World Wide Web  
b06-1664.htm
738 bytes. by botan (2006)
Calendarix "yearcal.php" XSS Attacking
World Wide Web  
b06-3064.htm
1332 bytes. by Federico Fazzi (2006)
Calendarix 0.7.20060401, SQL Injection Vulnerabilities
World Wide Web  
b06-4203.htm
2603 bytes. by sh3ll (2006)
Calendarix <= 0.7 (calpath) Remote File Inclusion Vulnerability

va1056.htm
5472 bytes. by Secunia (2008)
Calendarix Basic Two SQL Injection Vulnerabilities

tb11415.htm
4481 bytes. by netvigilance.com (2007)
Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities

tb11420.htm
4347 bytes. by netvigilance.com (2007)
Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities

tb11428.htm
4580 bytes. by netvigilance.com (2007)
Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities

tb11417.htm
3861 bytes. by netvigilance.com (2007)
Calendarix version 0.7. 20070307 Multiple XSS Attacks

b06-2375.htm
3670 bytes. by omnipresent (2006)
CANews Multiple Vulnerabilities
World Wide Web  
b06-2348.htm
1358 bytes. by luny (2006)
Captivate 1.0 - XSS Vuln
World Wide Web  
web5729.htm
2338 bytes. (2002)
Carello Remote File Execution
Exploit   World Wide Web  
whois_~1.txt
4040 bytes. (1999)
cdomain v1.0's whois_raw.cgi allows arbitrary programs to be executed.
Hacking   World Wide Web  
a6101.htm
1892 bytes. (2003)
Ceilidh testcgi.exe Cross Site Scripting vuln
World Wide Web  
ceilidh.htm
1340 bytes. by Delphis (2000)
Ceilidh v2.60a - spawn multiple copies to deplete system resources
Advisory   Denial of Service   Windows   World Wide Web  
cfdecr~1.c
1595 bytes. by M. Chapman (2001)
CFDecrypt - Decrypt Cold Fusion templates encrypted with CFCRYPT
Cryptanalysis   Source Code  
httpd56.htm
3547 bytes. by Xitami (1998)
CGI in Xitami execute arbitrary CGI
Advisory   Multi Platform   World Wide Web  
ciaci024.txt
10882 bytes. (1998)
CGI Security Hold Ews1 1

cgi-ex_1.txt
3464 bytes.
CGI Security: Escape Newlines
Hacking   World Wide Web  
cgisec.txt
11944 bytes.
CGI Vulnerabilities
Hacking   World Wide Web  
bt681.txt
2908 bytes. (2003)
CGI.pm vulnerable to Cross-site Scripting

cgic.htm
2541 bytes. by J. Ribbens (1999)
CGIc library Exploitable Buffer Overflow
Advisory   World Wide Web  
bt1268.txt
1734 bytes. (2003)
cgiemail - patch for vulnerability

web5251.htm
3018 bytes. (2002)
CGIscript.net scripts remote code execution
Exploit   Windows   World Wide Web  
web5308.htm
3937 bytes. (2002)
CGIscript.net's csMailto.cgi remote command execution
Exploit   World Wide Web  
cgiwrap1.htm
1672 bytes. by T. Hiromitsu (2001)
CGIWrap - cookies can be stolen
Advisory   World Wide Web  
cgiwrp35.txt
1263 bytes. (1997)
Cgiwrap 3.5 possible vulnerability
Advisory   World Wide Web  
bt35.txt
1876 bytes. (2003)
CGIWrap Format strings vuln

bt861.txt
2060 bytes. (2003)
Chatserver - XSS ( push )
World Wide Web  
b06-2802.htm
832 bytes. by luny (2006)
Chemical Directory - XSS
World Wide Web  
csasp1.htm
3193 bytes. by M. Krenz (2001)
Chili!Soft ASP - inherited mode can be defeated
Advisory   World Wide Web  
csasp3.htm
1429 bytes. by J. Sander (2001)
Chili!Soft ASP - license file can be zapped, shutting down ASP services
Advisory   World Wide Web  
csasp2.htm
7740 bytes. by S. Bubrouski (2001)
Chili!Soft ASP 3.5.2 default admin password, view sensitive information
Advisory   World Wide Web  
b06-1572.htm
1394 bytes. by Soothackers (2006)
Clansys Multiple Xss Vulnerabilities
World Wide Web  
b06-3264.htm
1531 bytes. by bug (2006)
Claroline Cross-Site Scripting Vulnerabilities
World Wide Web  
b06-2072.htm
1741 bytes. by beford (2006)
Claroline Open Source e-Learning 1.7.5 Remote File Include
World Wide Web  
b06-3095.htm
2776 bytes. by liz0 (2006)
Cline Communications Sql injection
World Wide Web  
cf16~1.htm
2737 bytes. by ISS (2001)
Cold Fusion multiple remote vulnerabilities
Advisory   World Wide Web  
cf15.htm
4454 bytes. by E. Lackey (2001)
Cold Fusion on Linux cfrethrow tag crash
Advisory   Linux   World Wide Web  
bt116.txt
4978 bytes. by EXPLOIT (2003)
CommuniGatePro 4.0.6
World Wide Web  
bx1692.htm
5943 bytes. by come2waraxe@yahoo.com (2008)
Coppermine 1.4.14 multiple vulnerabilities

bx1676.htm
5502 bytes. by come2waraxe@yahoo.com (2008)
Coppermine 1.4.14 remote shell command execution

tb12546.htm
2011 bytes. by L4teral (2007)
Coppermine <= 1.4.12 Cross Site Scripting and Local File Inclusion

tb11973.htm
831 bytes. by master-of-desastor (2007)
Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability

tb12025.htm
831 bytes. by master-of-desastor (2007)
Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability

c07-2462.htm
2850 bytes. by s0cratex (2007)
Coppermine Photo Gallery 1.3.x Blind SQL Injection Exploit

va3347.htm
1561 bytes. by darkz.gsa@gmail.com (2009)
Coppermine Photo Gallery 1.4.21 Cross-Site Scripting

va3356.htm
1561 bytes. by darkz.gsa@gmail.com (2009)
Coppermine Photo Gallery 1.4.21 Cross-Site Scripting

c07-1673.htm
6086 bytes. by gmdarkfig (2007)
Coppermine Photo Gallery <= 1.4.10 SQL Injection Exploit

tb10065.htm
1836 bytes. by RaeD Hasadya (2007)
Coppermine Photo Gallery remote file include

b06-3222.htm
1324 bytes. by addmimistrator (2006)
Coppermine 1.4.8~Parameter Cleanup System ByPass~Registering Global Varables
World Wide Web  
a6119.htm
10248 bytes. (2003)
Coppermine Photo Gallery remote command execution
World Wide Web  
b06-3923.htm
1971 bytes. by A-S-T2006 (2006)
Coppermine Photo Gallery v1.2.2b-Nuke Remote File Inclusion Vulnerabilities
World Wide Web  
b06-2913.htm
1348 bytes. by addmimistrator (2006)
CopperminePhotoGallery1.4.8~ addhit() function~ SQLinjection attack
World Wide Web  
b06-1797.htm
3335 bytes. by Mustafa Can Bjorn IPEKCI (2006)
CoreNews <= 2.0.1 Multiple Remote Vulnerabilities.
World Wide Web  
web5440.htm
3138 bytes. (2002)
csNews.cgi path disclosure, database access, script injection, command executions
Exploit   World Wide Web  
web5405.htm
3298 bytes. (2002)
csPassword.cgi (from CGIscript.net) multiple vulnerabilities
Exploit   World Wide Web  
bt166.txt
1574 bytes. (2003)
CSS found in Movable Type CGI:
World Wide Web  
web5212.htm
1723 bytes. (2002)
csSearch.cgi remote code execution
Exploit   World Wide Web  
web4917.htm
1921 bytes. (2001)
CSVForm.pl remote command execution
Exploit   World Wide Web  
web5332.htm
7285 bytes. (2002)
cURL remote buffer overflow exploits
Exploit   World Wide Web  
cvsweb.htm
10435 bytes. by J. Hess (2000)
Cvsweb 1.80 remote shell exploit
Advisory   Exploit   World Wide Web  
csched.htm
9283 bytes. by E. Sanchez (2001)
Cyberscheduler Exploitable Buffer Overflow
Advisory   World Wide Web  
b06-1673.htm
2077 bytes. by alex (2006)
CzarNews XSS and Multiple SQL Injection Vulnerabilities
World Wide Web  
bt1673.txt
556 bytes. (2003)
DailyDose v 1.1 CGI:
World Wide Web  
b06-3228.htm
2109 bytes. by securityconnection (2006)
Dating Agent PRO 4.7.1 Vulnerability
World Wide Web  
b06-3239.htm
2032 bytes. by luny (2006)
Dating biz@ dating script v1.0 - XSS
World Wide Web  
web5700.htm
2279 bytes. (2002)
DB4Web component bug allows all files on server to be downloaded
Exploit   World Wide Web  
dbman1.htm
3277 bytes. by Black Watch Labs (2000)
DBMan (db.cgi) Script - view environment variables & other info
Advisory   World Wide Web  
b06-2346.htm
1750 bytes. by luny (2006)
Destiney Links Script v2.1.2
World Wide Web  
b06-2345.htm
2237 bytes. by luny (2006)
Destiney Rated Images Script v0.5.0 - XSS Vulnv
World Wide Web  
b06-2432.htm
560 bytes. by a_linuxer (2006)
Diesel Joke Site SQL INJECTION
World Wide Web  
b06-2284.htm
2474 bytes. by Matt Gibson (2006)
Diesel PHP Job Site Latest Version
World Wide Web  
txn-012.txt
2285 bytes. (2001)
directorypro.cgi directory traversal exploit
Exploit   World Wide Web  
b06-3167.htm
1712 bytes. by soltan_defacer (2006)
display.cgi
World Wide Web  
dmail3.htm
3273 bytes. by C. Wolfe (2000)
DMailWeb 2.6 and prior Buffer Overflow
Advisory   World Wide Web  
dmail2.htm
6133 bytes. by E. Andry (2000)
DMailWeb Buffer Overflow crash
Advisory   World Wide Web  
dmail4.htm
5398 bytes. by C. Wolfe (2000)
DMailWeb exploit
Advisory   Exploit   World Wide Web  
web5314.htm
948 bytes. (2002)
dnstool web authentication bypass
Exploit   World Wide Web  
b06-2850.htm
1227 bytes. by Federico Fazzi (2006)
Docebo Core 3.0.3, Remote command execution
World Wide Web  
b06-2853.htm
1394 bytes. by Federico Fazzi (2006)
Docebo Kms 3.0.3, Remote command execution
World Wide Web  
b06-2490.htm
950 bytes. by beford (2006)
Docebo LMS 2.05 Remote File Include
World Wide Web  
b06-2856.htm
1544 bytes. by Federico Fazzi (2006)
Docebo Lms 3.0.3, Remote command execution
World Wide Web  
b06-1640.htm
2277 bytes. by Alvaro Olavarria (2006)
Dokeos 1.6.4 SQL Injection Vulnerability
World Wide Web  
b06-2070.htm
3116 bytes. by beford (2006)
Dokeos Learning Management System 1.6.4 Remote File Include
World Wide Web  
b06-3157.htm
3605 bytes. by luny (2006)
Dragons Kingdom v1.0 - XSS & cookie disclosure
World Wide Web  
b06-2730.htm
2482 bytes. by majorsecurity.de (2006)
DreamAccount <= 3.1 - Remote File Include Vulnerability
World Wide Web  
b06-3234.htm
3620 bytes. by KARKOR23 (2006)
DREAMACCOUNT V3.1 Remote Command Execution Exploit
World Wide Web  
bt683.txt
2634 bytes. (2003)
Drupal XSS Vulnerability (main page and sub pages)
World Wide Web  
b06-1223.htm
1732 bytes. by alex (2006)
DSCounter 'X-Forwarded-For' SQL Injection Vulnerability
World Wide Web  
b06-1224.htm
1704 bytes. by alex (2006)
DSDownload Multiple SQL Injection Vulnerabilities
World Wide Web  
b06-1244.htm
1820 bytes. by alex (2006)
DSLogin Authentication Bypass Vulnerability
World Wide Web  
b06-1201.htm
1712 bytes. by alex (2006)
DSNewsletter SQL Injection Vulnerability
World Wide Web  
b06-1200.htm
1719 bytes. by alex (2006)
DSPoll Multiple SQL Injection Vulnerabilities
World Wide Web  
b06-2100.htm
926 bytes. by Dj_ReMix_20 (2006)
DuGallery V2.x SQL Injection
World Wide Web  
b06-3079.htm
865 bytes. by CrAzY.CrAcKeR (2006)
dvdwolf SQL injection/XSS
World Wide Web  
b06-2807.htm
2269 bytes. by luny (2006)
E-Dating System from scriptsez.net - XSS
World Wide Web  
esmith.htm
704 bytes. by P. Stinker (2001)
E-smith - insert accounts that are invisible to admin
Advisory   World Wide Web  
b06-2803.htm
1521 bytes. by luny (2006)
Easy Ad-Manager
World Wide Web  
b06-1736.htm
960 bytes. by botan (2006)
EasyGallery Cross-Site Scripting
World Wide Web  
bt1239.txt
3279 bytes. (2003)
ECHU.ORG Alert #4: GuppY makes XSS attacks easy
World Wide Web  
egroup~1.txt
1669 bytes. (1999)
eGROUPS security flaw
Hacking   World Wide Web  
hyperm~1.txt
708 bytes.
Eliminating Hypermart Popup Windows
Hacking   World Wide Web  
web5244.htm
595 bytes. (2002)
emumail.cgi abitrary file disclosure
Exploit   World Wide Web  
b06-2573.htm
4306 bytes. by Mustafa Can Bjorn IPEKCI (2006)
Enigma Haber <= 4.3 Multiple Remote SQL Injection Vulnerabilities
World Wide Web  
entrust.htm
2985 bytes. by R. Carell (2001)
Entrust execute arbitrary code
Advisory   Exploit   World Wide Web  
eperl1.htm
1391 bytes. by T. Pinto (1998)
ePerl 2.1.12 Security Issues
Advisory   World Wide Web  
eperl2~1.htm
2512 bytes. by D. Madison (2001)
ePerl can be made to process untrusted files
Advisory   World Wide Web  
b06-3035.htm
1011 bytes. by luny (2006)
ePrayver v.Alpha - XSS
World Wide Web  
bt1031.txt
1805 bytes. (2003)
Escapade Scripting Engine XSS Vulnerability and Path Disclosure
World Wide Web  
unify.htm
1636 bytes. by A. Nonymous (2000)
EWave ServletExec show source hole
Advisory   World Wide Web  
excitews.txt
3487 bytes. (1997)
Excite for web servers CGI
Exploit   World Wide Web  
ls_exp~1.txt
2574 bytes. (1997)
Exploiting Net Administration CGIs like nethosting.com, by Lord Somer
Hacking   World Wide Web  
b06-3473.htm
3705 bytes. by matdhule (2006)
ExtCalendar <== v2.0 Remote File Include Vulnerabilities
World Wide Web  
b06-1091.htm
1762 bytes. by Soothackers (2006)
ExtCalendar v1.0 Multiple Xss Vuln
World Wide Web  
a6157.htm
6682 bytes. (2003)
Ez publish info & path disclosure and XSS
World Wide Web  
b06-2809.htm
1136 bytes. by luny (2006)
Ez Ringtone Manager from scriptez.net - XSS
World Wide Web  
ezmlmcgi.htm
3411 bytes. by Vort-fu (2000)
Ezmlm-cgi execute arbitrary code
Advisory   Exploit   World Wide Web  
b06-3380.htm
1046 bytes. by luny (2006)
ezWaiter v3.0 - XSS
World Wide Web  
web5104.htm
1009 bytes. (2002)
FAQ-O-Matic cross-site scripting vulnerability
Exploit   Unix  
web4979.htm
1820 bytes. (2002)
Faqmanager.cgi - read files on the server
Exploit   World Wide Web  
fastgraf.htm
1158 bytes. by M. van Berkum (2001)
Fastgraf CGI colllection - no meta character checking
Advisory   World Wide Web  
faxsurvy.txt
1899 bytes. (1998)
faxsurvey - Remote exploit for the faxsurvey CGI that comes with Hylafax.
Exploit   World Wide Web  
fileseek.txt
3094 bytes. (2002)
Fileseek CGI script advisory
Advisory   World Wide Web  
b06-1129.htm
1773 bytes. by alfy@coders.ch (2006)
Firepass 4100 SSL VPN v.5.4.2 (and probably others) XSS
World Wide Web  
b06-2041.htm
1023 bytes. by zerogue (2006)
FlexCustomer <= 0.0.4 sql injection
World Wide Web  
web5525.htm
1049 bytes. (2002)
Fluid Dynamics search engine XSS
Exploit   World Wide Web  
b06-2915.htm
1227 bytes. by darkfire@f4kelive.zzn.com (2006)
Foing (manage_songs.php) Remote File Inclusion
World Wide Web  
b06-2164.htm
3306 bytes. by botan (2006)
Foing Remote File Include Vulnerability
World Wide Web  
b06-2588.htm
2941 bytes. by s3rv3r_hack3r (2006)
Foing Remote File Include Vulnerability
World Wide Web  
web5031.htm
64951 bytes. (2002)
FormMail anonymous mail forwarding
Exploit   World Wide Web  
fmail2~1.htm
3233 bytes. by M. Rawls (2001)
FormMail.pl - spam anonymously
Advisory   World Wide Web  
fmail2.htm
3236 bytes. by M. Rawls (2001)
FormMail.pl can be used by spammers to send fakemail
Advisory   World Wide Web  
freest~1.txt
2762 bytes. (1998)
Freestats.com CGI Vulnerability
Hacking   World Wide Web  
web4835.htm
1087 bytes. (2001)
Fuse Talk
Exploit   World Wide Web  
bt887.txt
1333 bytes. (2003)
Fusen News 3.3 Account Add Vulnerability
Exploit   World Wide Web  
b06-1241.htm
2352 bytes. by h4cky0u.org (2006)
G-Book 1.0 XSS And Other Vulnerabilities
World Wide Web  
b06-3439.htm
1041 bytes. by ineal (2006)
galleria <= 1.0 Remote File Inclusion Vulnerability
World Wide Web  
gall14v.txt
1413 bytes. (2003)
Gallery 1.4 Including File Vunerability CGI:
Exploit   World Wide Web  
web5592.htm
1384 bytes. (2002)
gallery PHP code injection
Exploit   World Wide Web  
b06-2185.htm
1349 bytes. by Dj_ReMix_20 (2006)
Gallery Upload Vulnerabilities
World Wide Web  
bt740.txt
2077 bytes. (2003)
Gallery XSS security advisory (with fix and patch instructions)
World Wide Web  
bt1306.txt
3096 bytes. (2003)
Gast Arbeiter Privilege Escalation CGI:
World Wide Web  
web4992.htm
818 bytes. (2002)
Geeklog.cgi user restrictions may be bypassed
Exploit   World Wide Web  
getdoc.htm
2251 bytes. by Black Watch Labs (2000)
Getdoc.cgi - attackers can read documents that would normally require logon
Advisory   World Wide Web  
ciaci014.txt
16057 bytes. (1998)
GlimpseHTTP WebGlimpse CGI bin Packages

bt459.txt
17165 bytes. (2003)
GNATS (The GNU bug-tracking system) multiple buffer overflow vulnerabilities. CGI:
World Wide Web  
gnatsw~1.htm
2209 bytes. by J. Pol (2001)
Gnatsweb.pl unchecked user input
Advisory   World Wide Web  
web5114.htm
4161 bytes. (2002)
gnujsp is vulnerable to directorylisting, scriptsource disclosure and httpd-restrictions bypass
Exploit   World Wide Web  
web5138.htm
2088 bytes. (2002)
Greymatter remote login/pass exposure
Exploit   World Wide Web  
hackincg.htm
117609 bytes. by b0iler (2002)
Hacking CGI - security and exploitation CGI:
World Wide Web  
cgi_me~1.txt
9796 bytes. (1998)
How To Remove Meta-characters From User-Supplied Data In CGI Scripts
Hacking   World Wide Web  
htgrep1.htm
2914 bytes. by N30 (2000)
Htgrep retrieve arbitrary files
Advisory   World Wide Web  
hscript1.htm
1517 bytes. by D. Moore (1998)
Htmlscript 2.99x CGI Directory traversal vulnerability
Advisory   World Wide Web  
htmlscrp.txt
1677 bytes. (1998)
Htmlscript CGI fileaccess
Exploit   World Wide Web  
httpprot.htm
1390 bytes. by SNS (2001)
HTTProtect 1.1 - change protected files
Advisory   Exploit   World Wide Web  
hypseek.htm
1239 bytes. by IcleFire (1999)
Hyperseek - change the whole site's layout!!
Advisory   World Wide Web  
hypseek2.htm
1147 bytes. by MC Gan (2001)
Hyperseek ../ and %00 vulnerabilities
Advisory   World Wide Web  
b06-2808.htm
1938 bytes. by majorsecurity.de (2006)
i.List <= 1.5 - XSS
World Wide Web  
bt2005.txt
8103 bytes. (2003)
IA WebMail 3.x PoC
Exploit   Windows   World Wide Web  
ikeyman1.htm
4416 bytes. by Rude Yak (2000)
IBM HTTPD /usr/bin/ikeyman setuid bug
Advisory   World Wide Web  
db2www.htm
3237 bytes. by ISS (2000)
IBM Net.Data db2www CGI Exploitable Buffer Overflow
Advisory   World Wide Web  
netdat.htm
2194 bytes. by C. Kalmes (2000)
IBM Net.Data disclose local path of server files
Advisory   World Wide Web  
icatca~1.txt
1159 bytes. (1997)
iCat Carbo Server security bug
Exploit   World Wide Web  
b06-2242.htm
666 bytes. by LiNuX_rOOt1 (2006)
IceWarp Cross-Site Scripting(XSS)
World Wide Web  
ichat3.txt
2908 bytes. (1998)
iChat 3.0 and below allow remote users to read abritrary files.
Exploit   World Wide Web  
ichat.htm
1143 bytes. by J. Beaton (1998)
IChat 3.0 ROOMS Server Directory traversal vulnerability
Advisory   World Wide Web  
ihtml.htm
2721 bytes. by Team Asylum (1999)
iHTML Merchant - view sensitive files, possibly including credit card details!!!
Advisory   Windows   World Wide Web  
web5408.htm
4306 bytes. (2002)
Image Display System information disclosure vulnerability
Exploit   World Wide Web  
web5447.htm
3003 bytes. (2002)
ImageFolio Pro weak access control for administration area, path disclosure, and more
Exploit   World Wide Web  
web5581.htm
1497 bytes. (2002)
IMail Web Calendaring service crash using malformed POST request
Exploit   World Wide Web  
web5537.htm
1231 bytes. (2002)
IMHO webmail allows reading other users mail
Exploit   World Wide Web  
imp3.htm
2713 bytes. by Secure Reality Advisory (2000)
IMP - email as atatchment any file IMP can read
Advisory   World Wide Web  
imp4.htm
7662 bytes. by J. Steube (2000)
IMP - execute commands under the uid/gid of the webserver
Advisory   World Wide Web  
imp2.htm
4032 bytes. by J. Steube (2000)
IMP - many weaknesses
Advisory   World Wide Web  
web4852.htm
1806 bytes. (2001)
IMP cross-site script attack
Exploit   World Wide Web  
imp.htm
3346 bytes. by J. Nazario (2000)
IMP Inappropriate Permissions
Advisory   World Wide Web  
indexu20.htm
1641 bytes. by Sp4rK (2001)
IndexU 2.0beta cookie vulnerability
Advisory   World Wide Web  
info2www.txt
926 bytes. (1998)
info2www - vulnerabilities in some versions
Hacking   World Wide Web  
info2w~1.txt
963 bytes. (1998)
Info2www CGI - blindly allows files to open
Exploit   World Wide Web  
infoseek.htm
16425 bytes. by USSR, eEye (1999)
Infoseek Ultraseek GET command overflow
Advisory   World Wide Web  
b06-1866.htm
515 bytes. by qex (2006)
Instant Photo Gallery <= Multiple XSS
World Wide Web  
b06-1867.htm
490 bytes. by qex (2006)
Instant Photo Gallery <= Multiple XSS
World Wide Web  
web5214.htm
852 bytes. (2002)
Instant Web Mail additional POP3 commands and mail headers
Exploit   World Wide Web  
istory~1.htm
1577 bytes. by qDefense (2001)
Interactive Story 1.3 read arbitrary file
Advisory   World Wide Web  
b06-3411.htm
564 bytes. by Breeeeh (2006)
Internet Crna Gora SQL Injection
World Wide Web  
bt271.txt
2090 bytes. (2003)
iPlanet Messaging Server possible XSS
World Wide Web  
web5523.htm
2742 bytes. (2002)
iPlanet search engine allows remote files access and buffer overflow
Exploit   World Wide Web  
b06-2395.htm
788 bytes. by zerogue (2006)
IpLogger <= 1.7 XSS
World Wide Web  
irixpf~1.txt
1738 bytes. (1998)
Irix pfdisplay-CGI
SGI/Irix   Exploit   World Wide Web  
b06-3102.htm
1543 bytes. by majorsecurity.de (2006)
ISO.org - XSS vulnerability
World Wide Web  
tomcat3.htm
947 bytes. by Et Lownoise (2000)
Jakarta Tomcat 3.1 - reveals paths
Advisory   World Wide Web  
tomcat1.htm
1469 bytes. by J. Madsen (2000)
Jakarta Tomcat retrieve arbitrary files
Advisory   World Wide Web  
tomcat4.htm
1264 bytes. by S. Morris (2000)
Jakarta Tomcat retrieve arbitrary files
Advisory   Unix   World Wide Web  
java7.htm
3290 bytes. by Princeton (1998)
Java implementation-related security hole
Advisory   World Wide Web  
b06-3306.htm
6678 bytes. by rgod (2006)
Jaws <= 0.6.2 'Search gadget' SQL injection
World Wide Web  
b06-1530.htm
814 bytes. by root__ (2006)
Jbook Cross Site Scripting
World Wide Web  
web5730.htm
954 bytes. (2002)
Jetty CGIServlet Arbitrary Command Execution
Exploit   World Wide Web  
b06-1938.htm
684 bytes. by alp_eren@ayyildiz.org (2006)
JMK's Picture Gallery admin login
World Wide Web  
jrun4.htm
3281 bytes. by Shah, Shah, McClure (2000)
JRun access to sensitive directories
Advisory   World Wide Web  
jrun3.htm
2903 bytes. by Shah, Shah, McClure (2000)
JRun compile and run any file in web document root
Advisory   World Wide Web  
jrun5.htm
2199 bytes. by Shah, Shah, McClure (2000)
JRun DoS
Advisory   World Wide Web  
jrun.htm
3585 bytes. by Allaire (2000)
JRun sample code vulnerabilities
Advisory   World Wide Web  
jrun2.htm
2154 bytes. by Shah, Shah, McClure (2000)
JRun Show Code Vulnerabilities
Advisory   World Wide Web  
jserver.htm
2288 bytes. by J. Testa (2001)
JServer - execute any CGI, arbitrary shell commands
Advisory  
b06-3531.htm
1539 bytes. by Darren Bounds (2006)
Juniper Networks DX Web Administration Persistent System Log XSS Vulnerability
World Wide Web  
web4912.htm
1934 bytes. (2001)
kebi-Webmail reveals mailbox data
Exploit   World Wide Web  
b06-3438.htm
4457 bytes. by Marc Ruef (2006)
Kyberna AG ky2help various form fields SQL Injection
World Wide Web  
httpd28.htm
1331 bytes. by C. Shotton (1997)
Lasso CGI retrieve arbitrary files
Advisory   Macintosh/MacOS   World Wide Web  
bt415.txt
1239 bytes. (2003)
LedNews XSS Vulnerability (CGI/Perl) v0.7
Exploit   World Wide Web  
b06-2694.htm
5268 bytes. by rgod (2006)
LifeType <=1.0.4 'articleId' SQL injection
World Wide Web  
b06-3838.htm
5910 bytes. by simo64 (2006)
LinksCaffe 3.0 SQL injection/Command Execution Vulnerabilties
World Wide Web  
b06-1686.htm
1380 bytes. by d4igoro (2006)
Linpha 1.1.0 - XSS Vulnerabilities
World Wide Web  
b06-2688.htm
1048 bytes. by ajannhwt (2006)
LocazoList Classifieds <= v1.05e(viewmsg.asp) Remote SQL Injection Vulnerability
World Wide Web  
b06-2725.htm
1048 bytes. by ajannhwt (2006)
LocazoList Classifieds <= v1.05e(viewmsg.asp) Remote SQL Injection Vulnerability
World Wide Web  
b06-2971.htm
1049 bytes. by SpC-x (2006)
Ltwcalendar 4.1.3 version - Remote File Include Vulnerabilities
World Wide Web  
b06-1267.htm
1687 bytes. by alex (2006)
Maian Events SQL Injection Vulnerability
World Wide Web  
b06-1268.htm
1721 bytes. by alex (2006)
Maian Support Authentication Bypass
World Wide Web  
mailfile.htm
3078 bytes. by D. Brockhausen (2000)
Mail File CGI POST security hazard
Advisory   World Wide Web  
bt648.txt
1443 bytes. (2003)
Mail System Ver. 0.9 Beta CGI:
World Wide Web  
mail2web.htm
1480 bytes. by P. Oonk (2000)
Mail2web - read other peoples' email!
Advisory   World Wide Web  
mailform.htm
2204 bytes. by K. Hanmore (2000)
Mailform.pl - access any file by email
Advisory   Unix   World Wide Web  
mailman.htm
2718 bytes. by S. Jared (1999)
Mailman - read/write/delete other users' webmail!
Advisory   Unix   World Wide Web  
mailman3.htm
4845 bytes. by C. Lindsey (2000)
Mailman execute arbitrary code
Advisory   Unix   World Wide Web  
mailman4.htm
2963 bytes. by Secure Reality (2000)
Mailman execute arbitrary code
Advisory   Unix   World Wide Web  
mailman2.htm
8193 bytes. by S. Bubrouski (2000)
Mailman fatal() weakness
Advisory   Unix   World Wide Web  
mnews1.htm
1713 bytes. by K. Bohater (2001)
Mailnews.cgi 1.1, 1.3 - add or delete users from maillist without admin password!
Advisory   World Wide Web  
mstudio2.htm
13060 bytes. by Naif, Vecna, FuSyS (2000)
MailStudio2000 CGI retrieve arbitrary files (as root!)
Advisory   World Wide Web  
mailto.htm
3583 bytes. by K. Hanmore (2000)
Mailto.cgi execute arbitrary code
Advisory   World Wide Web  
bt418.txt
6531 bytes. (2003)
Mailtraq Multiple Vulnerabilities (DoS, Password Decryption, Directory Traversal) CGI:
World Wide Web  
web5086.htm
1864 bytes. (2002)
MakeBid CGI cross site scripting vulnerability and insecure cookie usage
Exploit   World Wide Web  
b06-2426.htm
3274 bytes. by rgod (2006)
Mambo <= 4.6. RC1 xss
World Wide Web  
b06-3094.htm
9532 bytes. by rgod (2006)
Mambo <= 4.6rc1 sql injection
World Wide Web  
b06-3927.htm
2272 bytes. by A-S-T2006 (2006)
Mambo Gallery Manager v095.r3 Remote File Inclusion Vulnerabilities
World Wide Web  
b06-1700.htm
4008 bytes. by alireza hassani (2006)
Mambo/Joomla rss component vulnerability
World Wide Web  
b06-1544.htm
1339 bytes. by d4igoro (2006)
Manila <= 9.5 - XSS Vulnerabilities
World Wide Web  
b06-1642.htm
3479 bytes. by Aaron Kaplan (2006)
manila.userland cross site scriptable
World Wide Web  
web5641.htm
19107 bytes. (2002)
mantis Multiple Vulnerabilities
Exploit   World Wide Web  
b06-3387.htm
1278 bytes. by mac68k (2006)
Massting Cross-Site Scripting Vulnerability
World Wide Web  
mastcgi.txt
9907 bytes. (2002)
Mastergate/add.cgi - an In Depth Look
Hacking   World Wide Web  
formmail.htm
5449 bytes. by Black Watch Labs (2000)
Matt's FormMail.cgi - view useful environment variables
Advisory   World Wide Web  
b06-3142.htm
4608 bytes. by Fixer (not AOH's Fixer) (2006)
Maximus SchoolMAX XSS vuln
World Wide Web  
hack1918.htm
3061 bytes. by M. Lopez (2004)
MaxWebPortal XSS, Sql Injection and Avatar ScriptCode Injection
Exploit   World Wide Web  
b06-1742.htm
1882 bytes. by alex (2006)
MD News Authentication Bypass and SQL Injection Vulnerabilities
World Wide Web  
b06-1319.htm
1457 bytes. by simo64 (2006)
MediaSlash Gallery 'rub' variable Remote File inlcusion Vulnerability
World Wide Web  
bt504.txt
2789 bytes. (2003)
Megabook 2.0 -XSS & UA execution
World Wide Web  
mercntyl.htm
1090 bytes. by M. O'Neill (1998)
Mercantyle vulnerable to simple URL attacks
Advisory   Windows   World Wide Web  
mercur.htm
6986 bytes. by USSR Labs (2000)
MERCUR WebMail-Client DoS
Advisory   Denial of Service   World Wide Web  
web5291.htm
2044 bytes. (2002)
MHonArc script filtering bypass vulnerability
Exploit   World Wide Web  
b06-1774.htm
908 bytes. by CrAzY.CrAcKeR (2006)
Mini-NUKE v2.3<<--- SQL Injection
World Wide Web  
b06-1136.htm
1698 bytes. by dabdoub_mosikar@forislam.com (6)
Mini-Nuke<=1.8.2 SQL injection (2006)
World Wide Web  
b06-2570.htm
3980 bytes. by Mustafa Can Bjorn IPEKCI (2006)
MiniNuke v2.x Multiple Remote Vulnerabilities
World Wide Web  
b06-2788.htm
2893 bytes. by Federico Fazzi (2006)
MiraksGalerie <= 2.62 Multiple Remote command execution
World Wide Web  
b06-2806.htm
2908 bytes. by Federico Fazzi (2006)
MiraksGalerie <= 2.62 Multiple Remote command execution
World Wide Web  
b06-2854.htm
1747 bytes. by luny (2006)
MobeSpace v2.0 - XSS
World Wide Web  
ddirect1.htm
5327 bytes. by Litchfield, Litchfield (2000)
Mobius DocumentDirect for the Internet 1.2 buffer overflows
Advisory   World Wide Web  
b06-3393.htm
687 bytes. by CrAzY.CrAcKeR (2006)
Module's Name "Classifieds" SQL Injection
World Wide Web  
b06-3173.htm
922 bytes. by CrAzY.CrAcKeR (2006)
Module's Name Content<<--V1.0 SQL injection
World Wide Web  
b06-3172.htm
887 bytes. by CrAzY.CrAcKeR (2006)
Module's Name Downloads <<--V 7 SQL injection
World Wide Web  
b06-2025.htm
689 bytes. by Mster-X (2006)
modules name(Downloads)SQL Injection Exploit
World Wide Web  
b06-2024.htm
688 bytes. by Mster-X (2006)
modules name(Sections)SQL Injection Exploit
World Wide Web  
mojoxss.txt
706 bytes. (2002)
Mojo Mail Signup Form XSS
World Wide Web  
b06-2851.htm
1346 bytes. by luny (2006)
mole.com.ua Booking Script
World Wide Web  
b06-2852.htm
922 bytes. by luny (2006)
mole.com.ua Ticket Booking Script - XSS
World Wide Web  
b06-1321.htm
1328 bytes. by undefined1 (2006)
MonAlbum 0.8.7 SQL Injection
World Wide Web  
web5769.htm
863 bytes. (2002)
MondoSearch show source of files
Exploit   World Wide Web  
bt1189.txt
1785 bytes. (2003)
MondoSoft File Creation vulnerability
World Wide Web  
b06-3040.htm
1517 bytes. by luny (2006)
MP3 Search/Archive v1.2 - XSS
World Wide Web  
mp3m~1.htm
951 bytes. by Nemesystm (2001)
MP3Mystic dot-dot directory traversal
Advisory   World Wide Web  
mhtml.htm
1683 bytes. by N. Heinen (2000)
MultiHTML allows SSI calls to retrieve arbitrary files
Advisory   World Wide Web  
b06-2114.htm
4944 bytes. by Brian Gallagher (2006)
Multiple SQL Injection Vulnerabilities in Dreamweaver Generated Code
World Wide Web  
b06-2960.htm
1924 bytes. by black code (2006)
multiple Xss exploits in 35mmslidegallery V6
World Wide Web  
b06-2594.htm
1630 bytes. by black code (2006)
multiple Xss exploits in : vCard 2.9
World Wide Web  
b06-3816.htm
2384 bytes. by securityconnection (2006)
MusicBox <= 2.3.4 XSS SQL injection Vulnerability
World Wide Web  
bt1327.txt
10985 bytes. (2003)
Musicqueue multiple local vulnerabilities CGI:
World Wide Web  
b06-1780.htm
1965 bytes. by alex (2006)
MWNewsletter SQL Injection and XSS Vulnerabilities
World Wide Web  
b06-1836.htm
2090 bytes. by Mustafa Can Bjorn IPEKCI (2006)
My Gaming Ladder Combo System <= 7.0 Remote File Inclusion Vulnerability.
World Wide Web  
b06-1666.htm
1677 bytes. by botan (2006)
MyEvent Remote File Execution And XSS Attacking
World Wide Web  
b06-3261.htm
1899 bytes. by botan (2006)
MyMail Directory Traversal And XSS Attacking Vulnerability
World Wide Web  
mymkxss.txt
1023 bytes. (2002)
MyMarket 1.71 XSS
World Wide Web  
b06-3959.htm
2494 bytes. by philipp.niedziela@gmx.de (2006)
MyNewsGroups <= 0.6b (myng_root) Remote Inclusion Vulnerability
World Wide Web  
b06-2737.htm
2680 bytes. by farhadkey (2006)
myNewsletter 1.1.2 SQL_Injection
World Wide Web  
b06-2909.htm
2124 bytes. by luny (2006)
Myscrapbook v3.1 - XSS
World Wide Web  
bt1671.txt
287 bytes. (2003)
nCUBE Server Manager CGI:
World Wide Web  
netauth1.htm
889 bytes. by M. Maiffret (2000)
Netauth CGI Directory traversal vulnerability
Advisory   World Wide Web  
netbeans.htm
2095 bytes. by H. Skinner (1999)
NetBeans/ Forte' Java IDE HTTP Directory traversal vulnerability
Advisory   World Wide Web  
ncbook~1.htm
859 bytes. by digitalseed (2001)
NetCode NC Book 0.2b remote command execution
Advisory   World Wide Web  
web4878.htm
1939 bytes. (2001)
NetDynamics Session ID Reusable
Windows   World Wide Web  
sminder.htm
4160 bytes. by Litchfield, Litchfield (2000)
Netegrity SiteMinder 3.6, 4.0 URL Parsing flaws allow protected pages to be viewed directly
Advisory   World Wide Web  
bt1177.txt
6051 bytes. (2003)
Netup UTM Multiple Security Issues CGI:
World Wide Web  
web5115.htm
1943 bytes. (2002)
Netwin's WebNews remotely exploitable buffer overrun
Exploit   Windows   World Wide Web  
b06-3397.htm
4460 bytes. by gmdarkfig (2006)
News <= 5.2 XSS, SQL Injection, Full Path Disclosure
World Wide Web  
newsdesk.htm
2796 bytes. by B10Z (2001)
News Desk - retrieve arbitrary files
Advisory   World Wide Web  
npublish.htm
4862 bytes. by N30 (2000)
News Publisher CGI - add user into authors file
Advisory   World Wide Web  
nupdate.htm
15023 bytes. by Morpheus{bd} (2000)
News Update change admin password without knowing old one!
Advisory   World Wide Web  
b06-2663.htm
858 bytes. by CrAzY.CrAcKeR (2006)
newsfactory Cross Site Scripting & SQL injection
World Wide Web  
b06-3962.htm
2026 bytes. by tr_zindan@wolfsecurity.org (2006)
NewsLetter v3.5 <= (NL_PATH) Remote File Inclusion Exploit
World Wide Web  
b06-3963.htm
1113 bytes. by botan (2006)
newsReporter v1.0 Remote Command Execution
World Wide Web  
b06-1079.htm
1918 bytes. by alex (2006)
NMDeluxe XSS & SQL Injection Vulnerabilities
World Wide Web  
b06-1099.htm
2982 bytes. by raphael.huck@free.fr (2006)
Noah's Classifieds Multiple Path Disclosure and Cross Site Scripting Vulnerabilities
World Wide Web  
noccxss.txt
3600 bytes. (2002)
NOCC Cross Site Scripting
World Wide Web  
b06-2817.htm
3328 bytes. by gmdarkfig (2006)
NPDS <= 5.10 Local Inclusion, XSS, Full path disclosure
World Wide Web  
nph-mlst.htm
7248 bytes. by K. Bohater (2001)
Nph-maillist.pl exploit
Advisory   Exploit   World Wide Web  
b06-1237.htm
799 bytes. by dabdoub_mosikar@forislam.com (2006)
nuked-klan<=1.7.5 SQL Injection
World Wide Web  
b06-2595.htm
1644 bytes. by farhadkey@kapda.ir (2006)
Nukedit Unauthorized Admin Add
World Wide Web  
b06-1444.htm
1748 bytes. by alex (2006)
Null news SQL Injection Vulnerability
World Wide Web  
bt915.txt
2067 bytes. (2003)
Omail Webmail 0.98.4 remote command exec CGI:
World Wide Web  
b06-2612.htm
4307 bytes. by enji@seclab.tuwien.ac.at (2006)
Open Searchable Image Catalogue: XSS and SQL Injection Vulnerabilities
World Wide Web  
b06-2037.htm
1810 bytes. by Kamil Sienicki (2006)
OpenFAQ - HTML injection and XSS (Cross Site Scripting)
World Wide Web  
web5300.htm
1525 bytes. (2002)
OpenKeyServer cross site scripting allows code insertion in keys
Exploit   World Wide Web  
b06-1320.htm
718 bytes. by dabdoub-mosikar@moroccan-security.com (2006)
Oxygen<=1.x.x SQL injection
World Wide Web  
b06-1078.htm
1458 bytes. by r00t3rr0r (2006)
Oxynews Sql İnjection
World Wide Web  
b06-2095.htm
925 bytes. by Dj_ReMix_20 (2006)
OzzyWork Gallery SQL Injection
World Wide Web  
b06-2111.htm
1120 bytes. by Dj_ReMix_20 (2006)
OzzyWork Gallery Upload Vulnerabilities
World Wide Web  
bt306.txt
2621 bytes. (2003)
P-Synch Password Management Multiple Vulnerabilities CGI:
World Wide Web  
pagelog1.htm
1360 bytes. by M. Stratman (2000)
Pagelog.cgi Directory traversal vulnerability
Advisory   World Wide Web  
pals.htm
1107 bytes. by UkR (2001)
PALS Library System "pine pipe bug" yields arbitrary files, command execution
Advisory   Exploit   World Wide Web  
pammys1.htm
2929 bytes. by Secure Reality (2000)
Pam_mysql up to 0.4.7 escape character attacks may yield plaintext passwords
Advisory   World Wide Web  
b06-3488.htm
6426 bytes. by rgod (2006)
PAPOO <=3RC3 sql injection / admin credentials disclosure
World Wide Web  
b06-2747.htm
1119 bytes. by luny (2006)
Particle Gallery v1.0.0
World Wide Web  
b06-2043.htm
1163 bytes. by zerogue (2006)
PassMasterFlex (and PassMasterFlex+) XSS injection
World Wide Web  
bt1715.txt
3174 bytes. (2003)
PeopleSoft Gateway Administration servlet path disclosure issue
World Wide Web  
bt1712.txt
3018 bytes. (2003)
PeopleSoft IScript XSS issue CGI:
World Wide Web  
bt1709.txt
3488 bytes. (2003)
PeopleSoft PeopleBooks Search CGI multiple argument issues CGI:
World Wide Web  
perl2.htm
3704 bytes. by S. Kenton (2000)
Perl with databases - input overflows
Advisory   Denial of Service   World Wide Web  
bt827.txt
3964 bytes. by OpenPKG (2003)
perl-www XSS
Advisory   Linux   World Wide Web  
web4892.htm
2832 bytes. (2001)
PGPMail.pl
Exploit   World Wide Web  
b06-3579.htm
735 bytes. by luny (2006)
Photocycle v1.0 - XSS
World Wide Web  
b06-1845.htm
1128 bytes. by Dr-Jr7 (2006)
photokorn 1.53 , 1.542 << Sql
World Wide Web  
web5681.htm
3809 bytes. (2002)
phpGB mysql injection, cross site scripting, DoS, and arbitrary code execution
Denial of Service   Exploit   World Wide Web  
b06-1299.htm
1166 bytes. by dabdoub-mosikar@moroccan-security.com (2006)
PhxContacts <= 0.93.1 beta Multiple SQL injection & xss
World Wide Web  
picservr.htm
845 bytes. by J. Testa (2001)
Picserver - break out of web root
Advisory   World Wide Web  
b06-1939.htm
656 bytes. by tugr (2006)
planetGallery admin login
World Wide Web  
b06-1631.htm
1249 bytes. by d4igoro (2006)
planetSearch+ - XSS Vulnerabilities
World Wide Web  
poll_it1.htm
4539 bytes. by E. Levy (2000)
Poll_It 2.0 pipe attack
Advisory   World Wide Web  
poll_it.txt
1465 bytes. (2000)
Poll_It CGI arbitrary file retrieval vulnerability
Advisory   World Wide Web  
poll_it2.htm
1884 bytes. by A. Daminato (2000)
Poll_It CGI v2.0 retrieve arbitrary files
Advisory   World Wide Web  
b06-3426.htm
546 bytes. by BoNy-m (2006)
popup Vacation Rentals SQL Injection
World Wide Web  
bt1382.txt
792 bytes. (2003)
possible issue with IPv4 mapped address and $REMOTE_ADDR in CGI

pquery.htm
7939 bytes. by Proton (2001)
Post-query (CGI) Exploitable Buffer Overflow
Advisory   World Wide Web  
postacw1.htm
2105 bytes. by M. Rudel (2000)
PostACI Webmail - retrieve passwords
Advisory   World Wide Web  
postacw2.htm
6227 bytes. by B. Demir (2001)
PostACI Webmail lacks checks for malicious SQL
Advisory  
bt854.txt
2678 bytes. (2003)
PostNuke Downloads & Web_Links ttitle variable XSS
World Wide Web  
bt868.txt
2678 bytes. (2003)
PostNuke Downloads & Web_Links ttitle variable XSS
World Wide Web  
b06-1605.htm
1153 bytes. by d4igoro (2006)
PowerClan 1.14 - SQL Injection
World Wide Web  
plusmail.htm
5190 bytes. by YT Cracker (2000)
PowerScripts PlusMail password file exploit
Advisory   Exploit   World Wide Web  
b06-2672.htm
1607 bytes. by Soothackers (2006)
Pro Publish SQL Injection and XSS Vulnerabilities
World Wide Web  
psit.htm
1430 bytes. by UkR (2001)
Processit.pl - environment and setup variables can be viewed
Advisory   World Wide Web  
prospero.htm
2740 bytes. by Darkyoda (2001)
Prospero 1.3.5 CGI trivial PIN bruteforcing
Advisory   Exploit   World Wide Web  
bt970.txt
1197 bytes. (2003)
PtHProductions Gastenboek - XSS
World Wide Web  
b06-2424.htm
2978 bytes. by luny (2006)
Publicist v0.95 - XSS And Full Path Errors
World Wide Web  
pwc.htm
1458 bytes. by W. Pawlikowski (2001)
Pwc exploitable buffer overrun
Advisory   Exploit   World Wide Web  
b06-3221.htm
31684 bytes. by enji@seclab.tuwien.ac.at (2006)
QaTraq 6.5 RC: Multiple XSS Vulnerabilities
World Wide Web  
b06-1579.htm
1725 bytes. by alex (2006)
qliteNews SQL Injection Vulnerability
World Wide Web  
b06-2330.htm
693 bytes. by Mster-X (2006)
RaceEventManagement <--v0.7.6 SQL injection & XSS
World Wide Web  
b06-3174.htm
902 bytes. by CrAzY.CrAcKeR (2006)
RahnemaCo "page.php" Remote File Inclusion
World Wide Web  
b06-3127.htm
947 bytes. by Breeeeh (2006)
RahnemaCo Remote File Inclusion Exploit
World Wide Web  
b06-3170.htm
4962 bytes. by majorsecurity.de (2006)
Ralf Image Gallery <=0.7.4 - Multiple XSS, Remote File Include and directory traversal vulnerabilities
World Wide Web  
b06-1818.htm
1645 bytes. by alex (2006)
RateIt SQL Injection Vulnerability
World Wide Web  
rmedia2.htm
4300 bytes. by Bow (1999)
RealMedia Server Buffer Overflow
Advisory   Multi Platform  
rmedia1.htm
1881 bytes. by F. Alonso (1999)
RealMedia Server Cleartext Passwords
Advisory   Multi Platform  
rserver6.htm
1910 bytes. by Core SDI (2000)
RealNetworks RealServer 7 and below gives up random pieces of core memory
Advisory   Multi Platform  
rserver5.htm
4915 bytes. by USSR Labs (2000)
RealNetworks RealServer 7 Denial of Service
Advisory   Denial of Service   Linux  
rserver4.htm
1573 bytes. by USSR Labs (2000)
RealNetworks RealServer 7 memory problem/Denial of Service
Advisory   Denial of Service   Linux   Windows  
rserver3.htm
14589 bytes. by Dark Spyrit (1999)
RealNetworks RealServer G2 Buffer Overflow
Advisory   Exploit   Unix  
b06-1717.htm
3948 bytes. by info@g-0.org (2006)
RechnungsZentrale V2 - SQL injection and Remote PHP inclusion vulnerabilities
World Wide Web  
redi.htm
1913 bytes. by D. Nakatomi (2001)
REDI Cleartext Passwords
Advisory   Windows   World Wide Web  
b06-3741.htm
5149 bytes. by RedTeam Pentesting (2006)
Remote command execution in planetGallery
World Wide Web  
b06-3904.htm
710 bytes. by R0t-K33Y (2006)
Remote Include Vulnerability ====> in Dr.Jr7 Gallery 3.2 RC1
World Wide Web  
macosx.txt
2795 bytes. (1999)
Repeated calls to CGI's under MacOS X will cause a "system panic".
Hacking   World Wide Web  
sexec5.htm
1430 bytes. by Benjurry (2000)
RESIN ServletExec show source using URL encoded characters
Advisory   World Wide Web  
sexec4.htm
1841 bytes. by Benjurry (2000)
RESIN ServletExec show source vulnerability
Advisory   Windows   World Wide Web  
respon~1.htm
5806 bytes. by D. Irvine (2001)
Respondus v1.1.2 weak encryption
Advisory   World Wide Web  
b06-2883.htm
1116 bytes. by luny (2006)
Ringlink v3.2 - XSS
World Wide Web  
roads1.htm
1593 bytes. by UkR (2001)
ROADS search system %00 read abritrary files vulnerability
Advisory   World Wide Web  
bt566.txt
2460 bytes. (2003)
Rockliffe Mailsite Express - mail attachments retrievable without proper authentication CGI:
World Wide Web  
va3405.htm
8647 bytes. by y3nh4ck3r@gmail.com (2009)
RTWebalbum 1.0.462 BLIND SQL INJECTION exploit (GET var 'AlbumID')
Exploit   World Wide Web  
va3409.htm
8647 bytes. by y3nh4ck3r@gmail.com (2009)
RTWebalbum 1.0.462 BLIND SQL INJECTION exploit (GET var 'AlbumID')
Exploit   World Wide Web  
safe-cgi.txt
13758 bytes. by Paul P. (1995)
Safe CGI Programming
World Wide Web  
ciacg017.txt
24479 bytes. (1996)
Sample HTTPD CGI Vulnerabilities

ca-9725.txt
6236 bytes. (1998)
Sanitizing User-Supplied Data in CGI Scripts

b06-3609.htm
700 bytes. by Breeeeh (2006)
saphp "add.php" forumid Parameter SQL Injection
World Wide Web  
b06-1596.htm
2131 bytes. by selfar2002 (2006)
SaphpLesson 2.0 (forumid) Remote SQL Injection Exploit
World Wide Web  
b06-2032.htm
3060 bytes. by o.y.6 (2006)
SaPHPLesson 3.0 Multbugs
World Wide Web  
b06-3147.htm
843 bytes. by CrAzY.CrAcKeR (2006)
SaphpLesson<<--1.1 "misc.php" SQL injection
World Wide Web  
bt1209.txt
2376 bytes. (2003)
sbox path disclosure problem
World Wide Web  
web5021.htm
1311 bytes. (2002)
scoadminreg.cgi local root exploit
Exploit   SCO Unixware   World Wide Web  
b06-1786.htm
1518 bytes. by simo64 (2006)
Scry Gallery Directory Traversal & Full Path Disclosure Vulnerabilites
World Wide Web  
b06-1815.htm
1011 bytes. by arko.dhar (2006)
Scry Gallery XSS Vulnerability
World Wide Web  
httpd81.htm
4909 bytes. (2000)
Search.cgi Directory traversal vulnerability
Advisory   Exploit   World Wide Web  
b06-2860.htm
5841 bytes. by Secunia Research (2006)
SelectaPix Cross-Site Scripting and SQL Injection Vulnerabilities
World Wide Web  
web5582.htm
3098 bytes. (2002)
sendform.cgi directory traversal leading to arbitrary file reading
Exploit   World Wide Web  
unify2.htm
2302 bytes. (2000)
ServletExec 3.0c Multiple Vulnerabilities
Advisory   Exploit   World Wide Web  
unify3.htm
2516 bytes. (2000)
ServletExec 3.0c Overwrite Files
Advisory   World Wide Web  
unify4.htm
5474 bytes. (2000)
ServletExec 3.0c show source hole
Advisory   World Wide Web  
www-cg~1.txt
6032 bytes. (1998)
Several New CGI Vulnerabilities
Hacking   World Wide Web  
b06-1970.htm
868 bytes. by zerogue (2006)
SF-Users V1.0 XSS injection
World Wide Web  
sgipfd~1.txt
1303 bytes. (1998)
Sgi pfdisplay2 CGI holes
SGI/Irix   Exploit   World Wide Web  
simpcgi.txt
4028 bytes. (2002)
Simple CGI Exploiting
Hacking   World Wide Web  
b06-3153.htm
2170 bytes. by simo64 (2006)
singapore gallery <= 0.10.0 Multiple Vulnerabilities
World Wide Web  
b06-2073.htm
1225 bytes. by alp_eren@ayyildiz.org (2006)
singapore v0.9.7 XSS Vulnerabilities
World Wide Web  
b06-1446.htm
1707 bytes. by simo64 (2006)
Sire 2.0 Nws Remote File inclusion & Arbitary Files Upload
World Wide Web  
b06-3316.htm
992 bytes. by botan (2006)
SiteBar Cross-Site Scripting
World Wide Web  
bt971.txt
889 bytes. (2003)
Sitebuilder 1.4 Directory Traversal CGI:
World Wide Web  
b06-1348.htm
776 bytes. by ali (2006)
SiteMan <= All version SQL injection in admin_login.asp
World Wide Web  
web5117.htm
3598 bytes. (2002)
SiteNews remote add user exploit
Exploit   World Wide Web  
b06-1296.htm
1824 bytes. by alex (2006)
Skull-Splitter's PHP Downloadcounter for Wallpapers SQL Injection
World Wide Web  
b06-2399.htm
616 bytes. by zerogue (2006)
SkyeShoutbox <= v.1.2.0 XSS
World Wide Web  
scode.htm
2011 bytes. by B. Aker (2000)
Slashcode 2.0-Alpha default password
Advisory   World Wide Web  
web5113.htm
2189 bytes. (2002)
SlashCode login vulnerability (through cross site scripting)
Exploit   World Wide Web  
b06-2711.htm
806 bytes. by CrAzY.CrAcKeR (2006)
SMS "messages.php" SQL injection
World Wide Web  
b06-3412.htm
597 bytes. by Breeeeh (2006)
SmS Script SQL Injection
World Wide Web  
b06-1657.htm
1107 bytes. by qex (2006)
Snipe Gallery <= 3.1.4 Multiple XSS
World Wide Web  
snpsrvlt.txt
335 bytes. (2000)
Snoop Servlet gives up too much info
Advisory   World Wide Web  
tomcat.htm
696 bytes. by Et Lownoise (2000)
Snoop Servlet gives up too much sensitive site info
Advisory   World Wide Web  
b06-3365.htm
1682 bytes. by securityconnection (2006)
Softbiz Banner Exchange 1.0 XSS
World Wide Web  
b06-3257.htm
1732 bytes. by securityconnection (2006)
Softbiz Dating 1.0 SQL injection
World Wide Web  
sojourn1.htm
2292 bytes. by Cerberus Security (2000)
Sojourn Search Engine - retrieve arbitrary files
Advisory   Multi Platform   World Wide Web  
b06-3760.htm
2482 bytes. by chris_hasibuan (2006)
SolpotCrew Advisory #2 - Advanced Poll ver 2.02 (base_path) Remote File Inclusion
World Wide Web  
b06-3789.htm
2050 bytes. by mail@sipplah.com (2006)
SolpotCrew Advisory #3 - com_trade Remote File Inclusion (mosConfig_absolute_path)
World Wide Web  
search~1.txt
6727 bytes. (2000)
SolutionScripts.com Home Free CGI package search.cgi allows remote users to view directory listings on the server.
Hacking   World Wide Web  
bt406.txt
6437 bytes. (2003)
Sphera Hosting Director Control Panel Multiple Vulnerabilities
World Wide Web  
spinbox1.htm
1363 bytes. by T. Heen (2000)
SpinBox/1.1 CGI Buffer Overflows
Advisory   World Wide Web  
b06-2283.htm
1919 bytes. by innate@gmx.de (2006)
sql injection + view all files as admin user
World Wide Web  
b06-1905.htm
2279 bytes. by satanchild123 (2006)
SQL injection exploit IPB <= 2.1.4
World Wide Web  
b06-3413.htm
1939 bytes. by black code (2006)
Sql injection in Diesel joke site script
World Wide Web  
b06-1744.htm
3172 bytes. by susam_pal@yahoo.co.in (2006)
SQL Injection in incredibleindia.org
World Wide Web  
b06-1706.htm
2076 bytes. by ak (2006)
SQL Injection in package SYS.DBMS_LOGMNR_SESSION
World Wide Web  
b06-2550.htm
967 bytes. by black-cod3 (2006)
sql injection in PHPcafe.net Tutorial Manager
World Wide Web  
b06-2456.htm
965 bytes. by help-users (2006)
sql injection in phpWebSite 0.8.3
World Wide Web  
b06-1233.htm
1084 bytes. by xx_hack_xx_2004 (2006)
SQL Injection in SaphpLesson2.0
World Wide Web  
b06-1363.htm
1262 bytes. by xx_hack_xx_2004 (2006)
SQL Injection in Softbiz Image Gallery
World Wide Web  
b06-1236.htm
1008 bytes. by mfoxhacker (2006)
SQL injection in VGM Forbin.
World Wide Web  
b06-3947.htm
5358 bytes. by vulnerabilities@mail.ru (2006)
SQL injection Seir Anphin v666 Community Management System
World Wide Web  
b06-2204.htm
2008 bytes. by socsam (2006)
SQL-Injection in e107 allows attacker to become a site admininstrator
World Wide Web  
b06-1341.htm
3360 bytes. by uid0@exploitercode.com (2006)
SQuery <= 4.5 Remote File Inclusion Exploit
World Wide Web  
b06-3549.htm
1722 bytes. by SHiKaA- (2006)
SQuery <= 4.5(libpath) Remote File Inclusion Exploit
World Wide Web  
b06-3822.htm
3210 bytes. by saudi.unix (2006)
SQuery v.x (devi.php) (armygame.php) Remote File Inclusion
World Wide Web  
web5065.htm
1750 bytes. (2002)
Squid - cachemgr.cgi shipped with Squid can be fooled to scan hosts besides firewalls
Exploit   Linux   World Wide Web  
sqmail~1.htm
17343 bytes. by Secure Reality (2001)
SquirrelMail webmail Insecure include() calls
Advisory   World Wide Web  
bt1987.txt
2705 bytes. (2003)
Sqwebmail Session Hijacking CGI:
World Wide Web  
cgimail.htm
2237 bytes. by S. Huseby (2000)
Stalker's CGImail retrieve arbitrary files
Advisory   World Wide Web  
ss502x.txt
14687 bytes. (2000)
Statistics Server 5.02x buffer overflow as shipped
Advisory   World Wide Web  
sdbs~1.htm
4354 bytes. by M. Prodeus (2001)
SuSE 6.x, 7.x sdbsearch.cgi misplaced environment variable trust
Advisory   Linux   World Wide Web  
swish.htm
4499 bytes. by J. de Haas (1998)
Swish search engine package indexer vulnerabilities
Advisory   World Wide Web  
talkback.htm
1727 bytes. by ThePike (2001)
Talkback.cgi retrieve arbitrary files
Advisory   World Wide Web  
thusband.htm
3221 bytes. by Rpc (2000)
Tammie's HUSBAND scripts ad.cgi insecure input validation vulnerability
Advisory   Exploit   World Wide Web  
va3380.htm
11860 bytes. by y3nh4ck3r@gmail.com (2009)
TemaTres 1.0.3 BLIND SQL INJECTION EXPLOIT
Exploit   World Wide Web  
test-cgi.txt
3262 bytes.
test-cgi vulnerability in certain setups
Hacking   World Wide Web  
tcounter.htm
3760 bytes. by D. Petrescu (1998)
Textcounter.pl - execute arbitrary code
Advisory   Unix   World Wide Web  
tfodoc.htm
1727 bytes. by Cgisecurity.com (2001)
The Free On-line Dictionary of Computing execute arbitrary code
Advisory   World Wide Web  
valiseha.txt
2721 bytes. (1998)
The New Valise Email Hack
Hacking   World Wide Web  
occweb.txt
16159 bytes. (2002)
The Occasional Hacking of Web Applications
World Wide Web  
b06-1652.htm
592 bytes. by qex (2006)
Tiny Web Gallery <= 1.4 XSS
World Wide Web  
tivoli.htm
1984 bytes. by Duct Tape (2001)
Tivoli Management Framework problem
Advisory   Windows   World Wide Web  
secway1.htm
2591 bytes. by iXsecurity (2001)
Tivoli SecureWay Policy Director incorrect URL-Encoding handling
Advisory   World Wide Web  
twt~1.htm
1502 bytes. (2001)
ttawebtop.cgi read arbitrary files
Advisory   World Wide Web  
bt458.txt
4286 bytes. (2003)
Tutos Multiple vulnerabilities
Exploit   World Wide Web  
twig2~1.htm
8811 bytes. by L. Rustianto (2001)
Twig 2.6.2 free webmail system Unquoted SQL Query String problem
Advisory   World Wide Web  
udir~1.htm
5555 bytes. by I. Dobrovitski (2001)
udirectory.pl remote command execution
Advisory   Unix   World Wide Web  
useek3.htm
1528 bytes. by Chinansl (2000)
Ultraseek Directory Traversal Vulnerability
Advisory   World Wide Web  
useek2.htm
3885 bytes. by USSR Labs (2000)
Ultraseek Search Engine DoS
Advisory   Denial of Service   World Wide Web  
uncgi.htm
4943 bytes. by K. Staring (2001)
Uncgi directory traversal
Advisory   World Wide Web  
web4896.htm
25195 bytes. (2001)
ValiCert Multiple Vulns
Exploit   World Wide Web  
valuec~1.txt
3326 bytes. (1998)
ValueClick CGI Vulnerability
Hacking   World Wide Web  
b06-3330.htm
714 bytes. by CrAzY.CrAcKeR (2006)
vCard PRO SQL Injection
World Wide Web  
b06-1472.htm
1718 bytes. by alex (2006)
vCounter - sourceworkshop SQL Injection Vulnerability
World Wide Web  
b06-1527.htm
2143 bytes. by king_purba@yahoo.co.uk (2006)
Vegadns blind sql injection and cross site scripting
World Wide Web  
b06-2777.htm
796 bytes. by CrAzY.CrAcKeR (2006)
Vice Stats 0.5b SQL injection
World Wide Web  
view-s~1.txt
740 bytes.
view-source - ugly hole in the view-source cgi script
Hacking   World Wide Web  
web5353.htm
4757 bytes. (2002)
ViewCVS cross-site scripting bug
Exploit   World Wide Web  
viewsr~1.htm
1341 bytes. by Joe Testa (2001)
viewsrc.cgi - view any file on server
Advisory   World Wide Web  
a6120.htm
3934 bytes. (2003)
Vignette Story Server sensitive informations leakage
World Wide Web  
web4834.htm
1334 bytes. (2001)
viralator create arb file
Exploit   World Wide Web  
vndbcgi.txt
2145 bytes. (2001)
vndb.cgi can display arb files
Exploit   World Wide Web  
b06-2520.htm
996 bytes. by try_og (2006)
Vodafone XSS vuln
World Wide Web  
bt534.txt
4795 bytes. (2003)
VPASP SQL Injection Vulnerability & Exploit CODE CGI:
Exploit   World Wide Web  
vpopm1.txt
1655 bytes. (2002)
vpopmail CGIapps vadddomain multiple vulnerabilities
World Wide Web  
vpopm.txt
1712 bytes. (2002)
vpopmail CGIapps vpasswd vulnerabilities
World Wide Web  
web5450.htm
1801 bytes. (2002)
W-Agora remote file injection
Exploit   World Wide Web  
sendtemp.htm
1901 bytes. by T. Parker (2001)
W3.ORGS sendtemp.pl directory traversal vulnerability
Advisory   Unix   World Wide Web  
web5025.htm
6892 bytes. (2002)
w3perl succeptible to cookie theft, faked logs and more
Exploit   World Wide Web  
b06-1891.htm
1803 bytes. by alex (2006)
warforge.NEWS SQL Injection and Multiple XSS Vulnerabilities
World Wide Web  
bt64.txt
2047 bytes. (2003)
WebAdmin Path disclosure and file access CGI:
World Wide Web  
wbanner.htm
1128 bytes. by J. Westerink (2000)
WebBanner directory traversal vulnerability
Advisory   Exploit   World Wide Web  
b06-3155.htm
782 bytes. by entrika_fs (2006)
WeBBoA Hosting Script SQL Injection
World Wide Web  
bt996.txt
6614 bytes. (2003)
Webcalendar <= 0.9.42 Cross Site Scripting Attacks and Potential SQL Injection Attack
World Wide Web  
bt689.txt
352 bytes. (2003)
WebCalendar Include File
World Wide Web  
b06-2023.htm
1152 bytes. by David Maciejak (2006)
WebCalendar User Account Enumeration Weakness
World Wide Web  
b06-2611.htm
1603 bytes. by socsam (2006)
WebCalendar-1.0.3 reading of any files
World Wide Web  
sb5934.htm
593 bytes. (2003)
WebCollection Plus directory traversal
Windows   World Wide Web  
webgais.txt
3145 bytes.
WebGais CGI exploit
Hacking   World Wide Web  
webmail3.htm
2374 bytes. by P. Stoev (2000)
WebMail - hijack others' attachments
Advisory   World Wide Web  
webmail1.htm
12579 bytes. by CDI (2000)
WebMail sites - Multiple Vulnerabilities
Advisory   World Wide Web  
web5122.htm
931 bytes. (2002)
WebNews default hardcoded passwords
Exploit   Windows   World Wide Web  
wobjects.htm
2195 bytes. by B. Potter (2000)
WebObjects with development licence DoS, possible remotely execu8table exploit
Advisory   Denial of Service   World Wide Web  
webpage.htm
1324 bytes. by UkR (2001)
Webpage.cgi - view environment variables
Advisory   World Wide Web  
webspirs.htm
1542 bytes. by UkR (2001)
WebSPIRS CGI 3.1 (at least) Directory traversal vulnerability
Advisory   World Wide Web  
httpd80.htm
1144 bytes. by hhp (1999)
WebWho+ (a whois cgi) shell escape characters vulnerability
Advisory   World Wide Web  
anhttpd.htm
1007 bytes. by Unyun (1999)
Windows98J with AN-HTTPd 1.20b CGI remote command exploit
Advisory   Windows   World Wide Web  
b06-3303.htm
945 bytes. by luny (2006)
Winged Gallery v1.0
World Wide Web  
winwra~1.htm
1355 bytes. by SNS (2001)
WinWrapper Professional 2.0 read arbitrary files
Advisory   Windows   World Wide Web  
wc21vuln.txt
1392 bytes. (2000)
WorldClient 2.1 vulnerability
Advisory   World Wide Web  
b06-3970.htm
1482 bytes. by AG Spider (2006)
WoW Roster <= 1.5.x Remote File Include (hsList.php)
World Wide Web  
b06-3978.htm
1537 bytes. by AG Spider (2006)
WoW Roster <= 1.5.x Remote File Include (hsList.php)
World Wide Web  
wrenzoom.txt
2380 bytes. (2003)
Wrensoft Zoom Search Engine XSS
World Wide Web  
web5222.htm
4207 bytes. (2002)
wwwisis remote command execution and get files
Exploit   World Wide Web  
b06-1306.htm
915 bytes. by dabdoub-mosikar@moroccan-security.com (2006)
X-Changer <=v0.2 Demo SQL injection
World Wide Web  
b06-2060.htm
516 bytes. by alp_eren@ayyildiz.org (2006)
X-POLL admin By-Pass
World Wide Web  
a6076.htm
2968 bytes. (2003)
XOOPS path disclosure
World Wide Web  
web5208.htm
4888 bytes. (2002)
Xpede cookie password decode
Exploit   World Wide Web  
web5297.htm
8694 bytes. (2002)
Xpede multiple remote vulnerabilities
Exploit   World Wide Web  
b06-1253.htm
1919 bytes. by xx_hack_xx_2004 (2006)
XSS & SQL Injection in Music Box v2.3
World Wide Web  
b06-1933.htm
1641 bytes. by outlaw@aria-security.net (2006)
XSS Attack On DirectAdmin Hosting Managment
World Wide Web  
b06-1820.htm
1786 bytes. by Aditya@Metaeye.Org (2006)
XSS Bug in OpenGear Server Website
World Wide Web  
b06-2615.htm
1188 bytes. by black code (2006)
Xss exploit in Chipmunk directory
World Wide Web  
b06-2582.htm
1185 bytes. by black-cod3 (2006)
Xss exploit in Photoalbum B&W v1.3
World Wide Web  
b06-1271.htm
1220 bytes. by xx_hack_xx_2004 (2006)
XSS in AL-Caricatier
World Wide Web  
b06-1662.htm
1114 bytes. by W3._ (2006)
Xss In bMachine 2٫7
World Wide Web  
b06-3270.htm
2002 bytes. by preth00nker (2006)
XSS in Cpanel 10
World Wide Web  
b06-2217.htm
1099 bytes. by bonsite (2006)
XSS in FreeTextBox and FCKEditor Basic Toolbar Selection
World Wide Web  
b06-3096.htm
637 bytes. by nanoymaster (2006)
XSS in GardenWeb
World Wide Web  
b06-2492.htm
1181 bytes. by V8f3 (2006)
XSS in Monster Top List | MTL 1.4
World Wide Web  
b06-3889.htm
621 bytes. by R0t-K33Y (2006)
Xss in MttKe-php v2.6
World Wide Web  
b06-2489.htm
764 bytes. by MC Iglo (2006)
XSS in Omegasoft's Insel
World Wide Web  
b06-1291.htm
598 bytes. by badnet_xoopiter (2006)
XSS in PHPKIT Version 1.6.03
World Wide Web  
b06-1252.htm
1508 bytes. by D.Snezhkov (2006)
XSS in Raindance Communications Web Conferencing Pro
World Wide Web  
b06-1436.htm
1027 bytes. by w3._ (2006)
Xss In SaphpLesson3.0
World Wide Web  
b06-2776.htm
1154 bytes. by spymeta (2006)
XSS on LarkinWEB & Company
World Wide Web  
b06-2427.htm
646 bytes. by Breeeeh (2006)
YLZH(right.php)Cross Site Scripting
World Wide Web  

SQL

mysql7.txt
1322 bytes. (2000)
MySQL File Structure Weakness
Advisory   World Wide Web  
in200204.htm
9710 bytes. (2002)
Exploitation of Vulnerabilities in Microsoft SQL Server
Windows   World Wide Web  
web5553.htm
15028 bytes. (2002)
Microsoft SQL server buffer overrun in resolution service
Exploit   Windows  
web5460.htm
948 bytes. (2002)
Microsoft SQL Server pwdencrypt() buffer overflow
Exploit   Windows  
microsql.txt
1674 bytes. (2002)
Microsoft SQL Server Webtasks privilege elevation
Windows   World Wide Web  
web5445.htm
3163 bytes. (2002)
Microsoft SQLXML ISAPI Overflow and Cross Site Scripting
Exploit   World Wide Web  
web5655.htm
3069 bytes. (2002)
SQL server
Exploit   Windows  
web5126.htm
4872 bytes. (2002)
SQL Server - Sql Server buffer overflow
Exploit   Windows  
web5560.htm
4159 bytes. (2002)
SQL Server 2000 Buffer Overflows and SQL Inyection vulnerabilities
Exploit   Windows  
web5489.htm
1017 bytes. (2002)
SQL server 2000 hex padding to fool trustees
Exploit   Windows  
web5529.htm
1672 bytes. (2002)
SQL Server BULK INSERT command remote overflow
Exploit   Windows  
web5283.htm
5568 bytes. (2002)
SQL server extended procedure buffer overflow
Exploit   Windows  
web4956.htm
2242 bytes. (2001)
SQL Server functions format strings and buffer overflows issues
Exploit   Windows  
web5533.htm
2238 bytes. (2002)
SQL Server may leave passwords in files afther install or patch
Exploit   Windows  
web5637.htm
3788 bytes. (2002)
SQL server priviledge escalation via the helper agent
Exploit   Windows  
web5470.htm
4670 bytes. (2002)
SQL server remote exploit via OpenDataSource function overflow
Exploit   Windows  
web4947.htm
4665 bytes. (2001)
SQL Server stored procedure encryption == NULL
Exploit   Windows  
web5521.htm
2315 bytes. (2002)
SQL Server users passwords cryptanalysis whitepaper and tool
Exploit   Windows  
web5636.htm
1001 bytes. (2002)
SQL user priviledge escalation via stored procedures
Exploit   Windows  
bt1718.txt
6739 bytes. by Conectiva (2003)
postgresql buffer overflow
Advisory   Linux   World Wide Web  
bt1685.txt
4615 bytes. (2003)
postgresql remote code exec
Advisory   Linux   World Wide Web  
n-125.txt
18564 bytes. by LLNL (2003)
Cumulative Patch for Microsoft SQL Server (CIAC N-125)
Advisory   Windows   World Wide Web  
bt592.txt
3242 bytes. (2003)
Pipe Filename Local Privilege Escalation FAQ
Windows   World Wide Web  
dsa-381.htm
11920 bytes. by Debian (2003)
mysql - buffer overflow
Advisory   Linux  
dsa-303.htm
15520 bytes. by Debian (2003)
mysql - privilege escalation
Advisory   Linux  
bt1428.txt
3444 bytes. (2003)
Microsoft SQL Server DoS
Windows   World Wide Web  
bt1426.txt
3428 bytes. (2003)
Microsoft SQL Server local code execution
Windows   World Wide Web  
bt1155.txt
6060 bytes. by CLA-2003:743 (2003)
MySQL (Conectiva)
Advisory   Linux   World Wide Web  
flawsqls.txt
2038 bytes. (2003)
Hunting Flaws in Microsoft SQL Server
Windows   World Wide Web  
a6058.htm
1941 bytes. (2003)
MySQL configuration injection makes it runs as root
Unix   World Wide Web  
a6055.htm
1864 bytes. (2003)
PostgreSQL Remote DoS condition
Unix   World Wide Web  
a6088.htm
1781 bytes. (2003)
paFileDB SQL Injection Vulnerability
World Wide Web  
namepex.txt
1933 bytes. (2003)
@Stake Named Pipe Exploit (mySQL)
World Wide Web  
bt1430.txt
3958 bytes. by OpenPKG (2003)
postgresql remote code exec
Advisory   Linux   World Wide Web  
bt931.txt
3965 bytes. (2003)
AppSecInc Security Alert: Buffer Overflow in UDP broadcasts for Microsoft SQL Server client utilities
World Wide Web  
bt1060.txt
5879 bytes. (2003)
Buffer overflow in MySQL
World Wide Web  
bt726.txt
3726 bytes. (2003)
exp for Microsoft SQL Server DoS(MS03-031) By Xfocus
World Wide Web  
bt1114.txt
4310 bytes. (2003)
mysql
World Wide Web  
bt1140.txt
3379 bytes. (2003)
MySQL buffer overflow.
World Wide Web  
bt721.txt
3800 bytes. (2003)
paFileDB 3.1
World Wide Web  
bt303.txt
894 bytes. (2003)
PAFileDB SQL Injection Vulnerability & Ratings Cheat Fix
World Wide Web  
bt989.txt
2713 bytes. (2003)
SQL-injection defensively
World Wide Web  
bt1501.txt
17184 bytes. (2003)
SuSE: mysql (SuSE-SA:2003:042)
World Wide Web  
m-094.txt
10897 bytes. by LLNL (2002)
Microsoft SQL Server 2000 OpenDataSource Buffer Overflow (CIAC M-094)
Windows   World Wide Web  
m-102.txt
13481 bytes. by LLNL (2002)
Microsoft SQL Server 2000 Resolution Service Buffer Overflow Vulnerabilities (CIAC M-102)
Windows   World Wide Web  
m-069.txt
12490 bytes. by LLNL (2002)
Microsoft SQL Server Unchecked Buffer Vulnerabilities (CIAC M-069)
Windows   World Wide Web  
m-101.txt
14113 bytes. by LLNL (2002)
Microsoft Unchecked Buffer in SQL Server 2000 Utilities Could Allow Code Execution (CIAC M-101)
Windows   World Wide Web  
m-091.txt
14147 bytes. by LLNL (2002)
Microsoft Unchecked Buffer in SQLXML Vulnerability (CIAC M-091)
Windows   World Wide Web  
m-099.txt
14905 bytes. by LLNL (2002)
Microsoft Cumulative Patch for SQL Server (CIAC M-099)
Advisory   Windows   World Wide Web  
n-003.txt
16924 bytes. by LLNL (2002)
Microsoft Cumulative Patch for SQL Server (CIAC N-003)
Advisory   Windows   World Wide Web  
n-008.txt
12880 bytes. by LLNL (2002)
Microsoft Elevation of Privilege in SQL Server Web Tasks (CIAC N-008)
Advisory   Windows   World Wide Web  
bt1303.txt
1840 bytes. (2003)
Multiple SQL Injection Vulnerabilities in DeskPRO
World Wide Web  
sql2.htm
1764 bytes. by L. Owen (1999)
PostgreSQL plaintext password
Advisory   Unix   World Wide Web  
sql4.htm
2986 bytes. by J. Lopez (2000)
SQL Security Issues
Advisory   Multi Platform  
sql1.htm
3730 bytes. by B. Coverett (1999)
SQL Server 7.0 cleartext passwords
Advisory   Multi Platform   World Wide Web  
sql5.htm
1817 bytes. by J. Gunther (2000)
SQL Server EM - view others' passwords
Advisory   Multi Platform  
sql3.htm
29596 bytes. by Rain Forest Puppy (2000)
SQL systems - how Packetstorm's wwwthreads system was compromised by the author
Advisory   World Wide Web  
hack0703.htm
4254 bytes. (2004)
mysqlbug tmpfile/symlink vulnerability.

hack0438.htm
4204 bytes. by GLSA 200405-20 (2004)
Insecure Temporary File Creation In MySQL

hack0412.htm
4019 bytes. by GLSA 200409-02 (2004)
MySQL: Insecure temporary file creation in mysqlhotcopy

hack1112.htm
1377 bytes. (2004)
BENCHMARK() is not the only way to determine successfull MySQL injection

hack1422.htm
6675 bytes. (2004)
MySQL Authentication Bypass

hack1289.htm
5358 bytes. by OpenPKG-SA-2004.014 (2004)
OpenPKG Security Advisory (mysql)

hack1259.htm
6342 bytes. by OpenPKG-SA-2004.045 (2004)
OpenPKG Security Advisory (mysql)

hack3537.htm
6922 bytes. by CLA-2004:892 (2004)
Conectiva Security Announcement - MySQL

b06-1977.htm
20383 bytes. by Stefano Di Paola (2006)
MySQL COM_TABLE_DUMP Information Leakage and Arbitrary command execution.

b06-3309.htm
6571 bytes. by Martin Pitt (2006)
MySQL 4.1 vulnerability

b06-1976.htm
10000 bytes. by Stefano Di Paola (2006)
MySQL Anonymous Login Handshake - Information Leakage.

b06-3021.htm
752 bytes. by Kanatoko (2006)
MySQL DoS

b06-2079.htm
15893 bytes. by Martin Pitt (2006)
MySQL vulnerabilities

b06-1898.htm
15755 bytes. by Martin Pitt (2006)
MySQL vulnerability

b06-2212.htm
11384 bytes. by Martin Pitt (2006)
MySQL vulnerability

b06-3054.htm
15697 bytes. by Martin Pitt (2006)
MySQL vulnerability

b06-3748.htm
6649 bytes. by Martin Pitt (2006)
mysql-dfsg-4.1 vulnerability

b06-2155.htm
3889 bytes. by Sune Kloppenborg Jeppesen (2006)
MySQL: Information leakage

b06-2898.htm
3972 bytes. by Sune Kloppenborg Jeppesen (2006)
MySQL: SQL Injection

b06-3046.htm
3741 bytes. by Sune Kloppenborg Jeppesen (2006)
PAM-MySQL: Multiple vulnerabilities

tb12948.htm
24528 bytes. by Kees Cook (2007)
MySQL vulnerabilities

tb10060.htm
15275 bytes. by Kees Cook (2007)
MySQL vulnerability

tb12152.htm
4284 bytes. by Raphael Marichez (2007)
MySQL: Denial of Service and information leakage

tb13478.htm
3556 bytes. by Pierre-Yves Rofes (2007)
MySQL: Denial of Service

tb10768.htm
4224 bytes. by Raphael Marichez (2007)
MySQL: Two Denial of Service vulnerabilities

c07-2598.htm
4588 bytes. by sec-consult.com (2007)
MySQL 5 Single Row Subselect Denial of Service

bt-21278.htm
38600 bytes. by Kingcope (2009)
MySQL <= 5.0.45 post auth format string vulnerability

va1446.htm
1982 bytes. by Thomas Henlich (2008)
MySQL command-line client HTML injection vulnerability

c07-2636.htm
4030 bytes. by erdc (2007)
MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability

b06-4110.htm
1746 bytes. by Justin M. Forbes (2006)
mysql mysql-bench mysql-server

bx2660.htm
9787 bytes. by Jamie Strandboge (2008)
MySQL regression

bx1164.htm
30526 bytes. by Jamie Strandboge (2007)
MySQL vulnerabilities

bx2471.htm
30727 bytes. by Jamie Strandboge (2008)
MySQL vulnerabilities

bx2482.htm
30727 bytes. by Jamie Strandboge (2008)
MySQL vulnerabilities

va1833.htm
24533 bytes. by Marc Deslauriers (2008)
MySQL vulnerabilities

bu-1761.htm
48252 bytes. by Marc Deslauriers (2010)
MySQL vulnerabilities

b06-4560.htm
9158 bytes. by Martin Pitt (2006)
MySQL vulnerabilities

bx2712.htm
4638 bytes. by Robert Buchholz (2008)
MySQL: Multiple vulnerabilities

va1150.htm
4452 bytes. by Robert Buchholz (2008)
MySQL: Privilege bypass

b06-5162.htm
1604 bytes. by crackers_child (2006)
MysqlDumper Version 1.21 b6 Xss Vulnerability

c07-2251.htm
1152 bytes. by gokhankaya (2007)
MySQLNewsEngine (affichearticles.php3) Remote File Inc. Vuln.

b06-4820.htm
3153 bytes. by gmdarkfig (2006)
mysql_error() can lead to Cross Site Scripting attacks


Java / JavaScript

a6116.htm
1995 bytes. (2003)
Java Agent freezes Lotus Notes and Domino 6.0.1 JAV:
World Wide Web  
a6070.htm
12510 bytes. (2003)
JDK Denial-Of-Service holes JAV:
World Wide Web  
bt1305.txt
3798 bytes. (2003)
Cross Site Java applets JAV:
Windows   World Wide Web  
n-141.txt
8881 bytes. by LLNL (2003)
Timing based attack vulnerabilities in the JAVA Secure Socket Extension (CIAC N-141) JAV:
World Wide Web  
bt1337.txt
1939 bytes. (2003)
Java 1.4.2_02 InsecurityManager JVM crash JAV:
World Wide Web  
bt326.txt
825 bytes. (2003)
JBOSS 3.2.1: JSP source code disclosure JAV:
World Wide Web  
bt1314.txt
4298 bytes. (2003)
Security vulnerability in SUN's Java Virtual Machine implementation JAV:

bt480.txt
7871 bytes. (2003)
Privilege escalation applet, Java Media Framework JAV:

web5189.htm
1221 bytes. (2002)
java - JRE Bytecode Verifier may be exploited to escalate privileges.
Exploit   World Wide Web  
web5193.htm
1807 bytes. (2002)
Java Applet Can Redirect Browser Traffic
Exploit   World Wide Web  
web5578.htm
13044 bytes. (2002)
JavaScript's "Same Origin Policy" circumvention allows bypassing firewall rules
Exploit   World Wide Web  
web4846.htm
2044 bytes. (2001)
Entrust - getAccess
Exploit   World Wide Web  
bu-1370.htm
800 bytes. by Paul (2010)
Java vulnerability

va2251.htm
13418 bytes. by William A. Rowe, Jr. (2009)
Java Runtime UTF-8 Decoder Smuggling Vector

va1644.htm
770 bytes. by varun.srivastav@gmail.com (2008)
Java Web start vulnerability

bx6101.htm
7368 bytes. by Reversemode (2010)
JAVA web start arbitrary command-line injection - "-XXaltjvm" arbitrary dll loading (0day) JAV:

bx6040.htm
4079 bytes. by VUPEN Security Research (2010)
Sun Java JDK/JRE AWT Library Invalid Pointer Vulnerability JAV:

bx6043.htm
4071 bytes. by VUPEN Security Research (2010)
Sun Java JDK/JRE AWT Library Invalid Index Vulnerability JAV:

bx6024.htm
5266 bytes. by Secunia Research (2010)
Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow JAV:

bx6029.htm
5264 bytes. by Secunia Research (2010)
Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow JAV:

bx6037.htm
3991 bytes. by VUPEN Security Research (2010)
Sun Java JDK/JRE Unpack200 Buffer Overflow Vulnerability JAV:

bx6068.htm
3598 bytes. by ZDI Disclosures (2010)
Sun Java Runtime CMM readMabCurveData Remote Code Execution Vulnerability JAV:

bx6065.htm
3749 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment JPEGImageReader stepX Remote Code Execution Vulnerability JAV:

bx6076.htm
3514 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment JPEGImageDecoderImpl Remote Code Execution Vulnerability JAV:

bx6074.htm
3911 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerability JAV:

bx6063.htm
4021 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerability JAV:

bx6069.htm
4033 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment MixerSequencer Invalid Array Index Remote Code Execution Vulnerability JAV:

bx6078.htm
3433 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment Mutable InetAddress Socket Policy Violation Vulnerability JAV:

bx6062.htm
3743 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment Trusted Methods Chaining Remote Code Execution Vulnerability JAV:

bx6077.htm
3825 bytes. by ZDI Disclosures (2010)
Sun Java Runtime Environment XNewPtr Remote Code Execution Vulnerability JAV:

bx6073.htm
3893 bytes. by ZDI Disclosures (2010)
Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability JAV:

bx6126.htm
3848 bytes. by ZDI Disclosures (2010)
Sun Microsystems Directory Server DSML-over-HTTP Username Search Denial of Service Vulnerability JAV:

bx6134.htm
3711 bytes. by ZDI Disclosures (2010)
Sun Microsystems Directory Server Enterprise ASN.1 Parsing Remote Code Execution Vulnerability JAV:

bx6130.htm
3859 bytes. by ZDI Disclosures (2010)
Sun Microsystems Directory Server Enterprise DSML UTF-8 Denial of Service Vulnerability JAV:

tb11572.htm
3649 bytes. by Brett Moore (2007)
SUN Java JNLP Overflow

bx3406.htm
4382 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages Authorization Bypass Vulnerability

bx3407.htm
4652 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages Buffer Overflow Vulnerability

bx3401.htm
4415 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages File Creation Vulnerability

bx3402.htm
4251 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages Information Disclosure Vulnerability

bx3404.htm
4770 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages Multiple Command Injection Vulnerabilities

bx3405.htm
5107 bytes. by iDefense Labs (2008)
Sun Java System Active Server Pages Multiple Directory Traversal Vulnerabilities

tb10078.htm
4548 bytes.
Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability [iDef

b06-5511.htm
1237 bytes. by handrix (2006)
Sun java System Messenger Express XSS

tb11061.htm
4480 bytes. by iDefense Labs (2007)
Sun Java System Web Proxy Multiple Buffer Overflow Vulnerabilities

bx3773.htm
4907 bytes. by zdi-disclosures@3com.com (2008)
Sun Java Web Start Sandbox Bypass Vulnerability

bx3772.htm
5037 bytes. by zdi-disclosures@3com.com (2008)
Sun Java Web Start vm args Stack Buffer Overflow

tb11547.htm
5555 bytes. by eEye Advisories (2007)
Sun Java WebStart JNLP Stack Buffer Overflow Vulnerability

bx2244.htm
1706 bytes. by Chris Evans (2008)
Sun JDK image parsing vulnerabilities

bx1706.htm
989 bytes. by Chris Evans (2008)
Sun JRE / JDK bug introduces XXE possibilities

c07-1995.htm
43909 bytes. by luoluonet (2007)
Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability Prove Of Concept Exploit

c07-1939.htm
3683 bytes. by 3com.com (2007)
Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability

bt-21934.htm
3523 bytes. by ZDI Disclosures (2009)
Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability

bt-21422.htm
3351 bytes. by ZDI Disclosures (2009)
Sun Java Pack200 Decoding Inner Class Count Integer Overflow Vulnerability

bt-21935.htm
3630 bytes. by ZDI Disclosures (2009)
Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability

bt-21938.htm
3597 bytes. by ZDI Disclosures (2009)
Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability

bt-21429.htm
5483 bytes. by iDefense Labs (2009)
Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability

bt-21936.htm
3534 bytes. by ZDI Disclosures (2009)
Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability

bu-2007.htm
2499 bytes. by edgard.chammas@beyond-security.org (2010)
Sun Java System Communication Express CSRF via HPP

bt-21937.htm
3621 bytes. by ZDI Disclosures (2009)
Sun Java Web Start Arbitrary Command Execution Vulnerability

bt-21423.htm
3335 bytes. by ZDI Disclosures (2009)
Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability

va1999.htm
5040 bytes. by ZDI (2008)
Sun Java AWT Library Sandbox Violation Vulnerability

va1990.htm
5907 bytes. by iDefense Labs (2008)
Sun Java JRE Pack200 Decompression Integer Overflow Vulnerability

va1986.htm
4618 bytes. by iDefense Labs (2008)
Sun Java JRE TrueType Font Parsing Heap Overflow Vulnerability

va1998.htm
4942 bytes. by iDefense Labs (2008)
Sun Java JRE TrueType Font Parsing Integer Overflow Vulnerability

va2995.htm
6587 bytes. by iDefense Labs (2009)
Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability

va2993.htm
4896 bytes. by iDefense Labs (2009)
Sun Java Runtine Environment (JRE) GIF Decoding Heap Corruption Vulnerability

va2985.htm
5414 bytes. by iDefense Labs (2009)
Sun Java Runtine Environment (JRE) Type1 Font Parsing Integer Signedness

va2850.htm
1472 bytes. by sosoblood@hotmail.com (2009)
Sun Java System Communications Express

va1569.htm
4254 bytes. by labs-no-reply@idefense.com (2008)
Sun Java Web Proxy Server FTP Resource Handling Heap-Based Buffer Overflow

va2988.htm
6229 bytes. by iDefense Labs (2009)
Sun Java Web Start (JWS ) GIF Decoding Heap Corruption

va2994.htm
6494 bytes. by iDefense Labs (2009)
Sun Java Web Start (JWS ) PNG Decoding Integer Overflow Vulnerability

va1983.htm
5751 bytes. by ZDI (2008)
Sun Java Web Start and Applet Multiple Sandbox Bypass Vulnerabilities

va2003.htm
6269 bytes. by iDefense Labs (2008)
Sun Java Web Start GIF Decoding Memory Corruption Vulnerability

SAP Apps
b1a-1301.htm
6358 bytes. by Onapsis Research Labs (2010)
SAP J2EE Telnet Administration Security Check Bypass

b1a-1538.htm
7278 bytes. by Onapsis Research Labs (2010)
SAP J2EE Web Services Navigator Cross-Site Scripting

b1a-1566.htm
3320 bytes. by Alexandr Polyakov (2010)
SAP NetWaver SLD - multiple XSS

b1a-1565.htm
3485 bytes. by Alexandr Polyakov (2010)
SAP Netweaver wsnavigator XSS Security Vulnerability

b1a-1378.htm
2108 bytes. by salchoman@gmail.com (2010)
SAP's web module OLK SQL Injection vulnerability

b1a-1480.htm
1797 bytes. by Elazar Broad (2010)
SAPGui BI wadmxhtml.dll Tags Property Heap Corruption

bt-21412.htm
1508 bytes. by mikey27@hotmail.com (2009)
SAP Business One 2005 Remote Buffer Overflow Vulnerability.

va3250.htm
3528 bytes. by Digital Security Research Group [DSecRG (2009)
SAP Cfolders Multiple Linked XSS Vulnerabilities ]

va3251.htm
4135 bytes. by Digital Security Research Group [DSecRG (2009)
SAP Cfolders Multiple Stored XSS Vulnerabilies ]

bu-2068.htm
3237 bytes. by Alexandr Polyakov (2010)
SAP GUI - Insecure method, code execution

bt-21095.htm
4445 bytes. by Alexandr Polyakov (2009)
SAP GUI 6.4 Buffer Overflow vulnerability

bt-21721.htm
3840 bytes. by Alexandr Polyakov (2009)
SAP GUI 7.1 Insecure Method

bt-21715.htm
2913 bytes. by Alexandr Polyakov (2009)
SAP GUI 7.1 Insecure Methods

va3169.htm
5928 bytes. by Secunia Research (2009)
SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method

bt-21768.htm
4937 bytes. by DSecRG (2009)
SAP GUI vsflexGrid ActiveX - Buffer Overflow vulnerability

tb11450.htm
2916 bytes. by Ivan Buetler (2007)
SAP Internet Communication Framework (BC-MID-ICF) Vulnerability

tb11527.htm
2046 bytes. by NGSSoftware Insight Security Research (2007)
SAP Internet Graphics Server XSS and Heap Overflow

c07-1163.htm
3985 bytes. by =?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?= (2006)
SAP Internet Graphics Service (IGS) Remote Arbitrary File Removal

b06-4151.htm
4320 bytes. by =?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?=
SAP Internet Graphics Service (IGS) Remote Buffer Overflow

c07-1956.htm
7674 bytes. by CYBSEC Advisories (2007)
SAP Internet Graphics Service (IGS) Remote Buffer Overflow

b06-4150.htm
3813 bytes.
SAP Internet Graphics Service (IGS) Remote Denial of Service [=?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?=

c07-1162.htm
3936 bytes. by =?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?= (2006)
SAP Internet Graphics Service (IGS) Undocumented Features

b06-4959.htm
1857 bytes. by ilionsecurity.ch (2006)
SAP Internet Transaction Server XSS vulnerability

bu-1768.htm
6033 bytes. by Onapsis Research Labs (2010)
SAP J2EE Authentication Phishing Vector

bu-1767.htm
5636 bytes. by Onapsis Research Labs (2010)
SAP J2EE Engine MDB Path Traversal

bx3929.htm
4282 bytes. by iDefense Labs (2008)
SAP MaxDB dbmsrv Untrusted Execution Path Vulnerability

bu-2033.htm
3443 bytes. by ZDI Disclosures (2010)
SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability

bx2320.htm
4451 bytes. by iDefense Labs (2008)
SAP MaxDB sdbstarter Privilege Escalation Vulnerability

bx2331.htm
4451 bytes. by iDefense Labs (2008)
SAP MaxDB sdbstarter Privilege Escalation Vulnerability

bx2317.htm
4574 bytes. by iDefense Labs (2008)
SAP MaxDB Signedness Error Heap Corruption Vulnerability

bx2318.htm
4574 bytes. by iDefense Labs (2008)
SAP MaxDB Signedness Error Heap Corruption Vulnerability

bx2328.htm
4574 bytes. by iDefense Labs (2008)
SAP MaxDB Signedness Error Heap Corruption Vulnerability

tb11526.htm
3211 bytes. by NGSSoftware Insight Security Research (2007)
SAP Message Server Heap Overflow

bx2728.htm
2335 bytes. by jaime.blasco@aitsec.com (2008)
SAP Netweaver 6.40-7.0 Cross-Site-Scripting

bt-21474.htm
3438 bytes. by Alexandr Polyakov (2009)
SAP Netweaver UDDI - XSS Security Vulnerability

va2447.htm
3141 bytes. by Martin Suess (2009)
SAP NetWeaver XSS Vulnerability

tb10247.htm
5655 bytes. by CYBSEC Advisories (2007)
SAP RFC_SET_REG_SERVER_PROPERTY RFC Function Denial Of Service

tb10244.htm
6172 bytes. by CYBSEC Advisories (2007)
SAP RFC_START_GUI RFC Function Buffer Overflow

tb10242.htm
5774 bytes. by CYBSEC Advisories (2007)
SAP RFC_START_PROGRAM RFC Function Multiple Vulnerabilities

va3028.htm
3893 bytes. by Alexandr Polyakov (2009)
SAP SAPDB Multiple XSS

b06-2321.htm
4251 bytes. by leandro meiners (2006)
SAP sapdba command local privilege escalation

c07-1634.htm
2027 bytes. by Mark Litchfield (2007)
SAP Security Contact

c07-1659.htm
698 bytes. by Mark Litchfield (2007)
SAP Security

tb10245.htm
7595 bytes. by CYBSEC Advisories (2007)
SAP SYSTEM_CREATE_INSTANCE RFC Function Buffer Overflow

tb10240.htm
5702 bytes. by CYBSEC Advisories (2007)
SAP TRUSTED_SYSTEM_SECURITY RFC Function Information Disclosure

b06-5547.htm
2373 bytes. by Nicob (2006)
SAP Web Application Server 6.40 and 7.00 - multiple vulns

bx3246.htm
2410 bytes. by Digital Security Research Group (2008)
SAP Web Application Server XSS Security Vulnerability

tb11449.htm
3042 bytes. by Ivan Buetler (2007)
SAP Web Dynpro Java (BC-WD-JAV) Vulnerability

c07-2270.htm
5647 bytes. by Nicob (2007)
SAP WebAS 6.40 and 7.00 (technical details) multi vulns

bu-1537.htm
6316 bytes. by Onapsis Research Labs (2010)
SAP WebAS Integrated ITS Remote Command Execution

bu-1770.htm
5969 bytes. by Onapsis Research Labs (2010)
SAP WebDynpro Runtime XSS/CSS Injection

bx1728.htm
2245 bytes. by Luigi Auriemma (2008)
SAPlpd 6.28 multiple vulnerabilities

bt958.txt
5376 bytes. (2003)
SAP Internet Transaction Server CGI:
Windows   World Wide Web  
sap1.htm
1510 bytes. by A. Cabezon (2001)
SAP Internet Transaction Server Cross Site Scripting Vulnerability
World Wide Web  

lol, wtf?
1 Whoa, bro... Access denied for user 'root'@'localhost' (using password: NO)



The bar is open!

The new 10,000 drink recipe archive has arrived!

It's back! TUCoPS Text Archive

System Security - General Information - Countersecurity Techniques - Password Security - Internet - Broken Security Apps - Browsers - Web - Web Servers - Apache - IIS - Sites - Web Apps - CMS, Portals - e-Commerce - Blogs - Wiki - Guestbooks - Adminware - PHP - Web Forums - Popular Web Forums - Networks - Wireless - Unix - HP/UX - SGI - BSD - SCO - SunOS/Solaris - Unix-like Platforms - Cisco - Oracle - VMWare - Citrix - Network Appliances - Macintosh - Apple(multi) - HP(multi) - IBM(multi) - Microsoft(multi) - Handhelds - Games - Linux - Linux Apps A-M - Linux Apps N-Z - Red Hat/Fedora - Slackware - Debian - Mandriva/Mandrake - Gentoo - SuSE - Conectiva - Trustix - Ubuntu - Retro Linux - Antique Systems - Dialup BBSes Windows Windows Apps Windows Network Vulns
Telecom Security - General Telecom Security - Phreak Boxes - Major Cellular Brands - Other Cellular Brands - Cellular Misc. - Number Lists - Caller ID - Public Phones - Voice Mail - Asterisk - Technical System Info
/etc - Hardware Hacks - Crypto - Malware - PC Hacks - Radio Hacks - Television Hacks - Scams - Physical Security - Espionage - Privacy - Wetware Hacks - Hacker Counterculture - The Law - Totally Miscellaneous


Hardware 99
Are you working with older hardware like us? If you're using the same equipment we are, you probably need service information complete with vacuum tube pinouts and daily coal requirements. This archive isn't quite that old but it is a definite help to anyone who has a PC that is not brand-new anymore. And it's free!

It's Back!
PC Game Sniper 2007
Thousands of cheats, hints, hacks and walkthroughs for PC Games!

Food!
Our parent site, THC BBS, has returned and brought a huge new text archive with it, containing over 61,000 recipes! And like everything at the AOH complex, it's free!

Security and Computing Freedom Archives

InfoSec News 2005
InfoSec News 2006
InfoSec News 2007
InfoSec News 2008
InfoSec News 2009

InfoSec News 2010

PoliTech 2005
PoliTech 2006
PoliTech 2007
PoliTech 2008
PoliTech 2009


Over 4,000 default passwords
Updated Oct.02,2011



Bored? Play some Games!


Text files by
The Fixer, El Oscuro
AOH Staff
and AOH Contributors
!
Phone Sounds
More Phone Sounds
The Fixer's Phreak Box Review
Box Review Handy Index!
Orange Boxing FAQ
Beating Caller ID FAQ
S.O.B. Orange Box
(NEW Version 1.94 2009)

More Caller ID Info
Phrack, Inc.!
Latest (final???) Issue: #63

Updated Nov.26/2006
More Payphone Info

Click here to get it!


It's Back! Check it out now!
New Site: Things I Shot!
Put your cell cam to good use!

The Web Page You Have Reached is now...
This is a Recording (formerly The Web Page You Have Reached)
And you thought we had a lot of telephone sounds!

Rancho Nevada - the biggest, baddest, best BBS game ever written!


easter egg #71

Site design & layout copyright © 1986-2014 THC