SMBind versions 0.4.7 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. smbind-sql.txt
Pligg version 1.0.4 suffers from additional remote SQL injection vulnerabilities outside of the previously discovered findings. pligg104-sql.txt
Month Of Abysssec Undisclosed Bugs - Visinia version 1.3 suffers from cross site request forgery and local file inclusion vulnerabilities. moaub-visinia.txt
Month Of Abysssec Undisclosed Bugs - Trend Micro Internet Security Pro 2010 suffers from an Active-X extSetOwner remote code execution vulnerability. moaub-trendmicro.txt
OneCMS version 2.6.1 suffers from a cross site scripting vulnerability. onecms-xss.txt
CMS WebManager-Pro suffers from a remote SQL injection vulnerability. webmanagerpro-sql.txt
A flaw exists within SSHD.NLM of Novell Netware version 6.5. When the application attempts to resolve an absolute path on the server, a 512 byte destination buffer is used without bounds checking. By providing a large enough value, an attacker can cause a buffer to be overflowed. Successful exploitation results in remote code execution under the context of the server. PRL-2010-07.txt
Moovida Media Player versions 2.0.0.15 and below DLL hijacking exploit. moovida-dllhijack.tgz
Month Of Abysssec Undisclosed Bugs - Apple QuickTime player version 7.6.5 FlashPix NumberOfTiles remote code execution exploit. moaub-quicktime.txt
vbShout version 5.2.2 suffers from remote and local file inclusion vulnerabilities. vbshout-rfilfi.txt