Note: No SQL injections on live websites or other vulnerabilities that expose private information will ever be posted here.
Type | Public Disclosure | CVE | Affected Product | References |
---|---|---|---|---|
Arbitrary File Upload and Execution | 11.Aug.2015 | [SECUID0-15-005] | Netsweeper v4.0.9 | PacketStorm |
Open Redirection | 11.Aug.2015 | [SECUID0-15-006] | Netsweeper v4.0.9 | PacketStorm |
Open Redirection | 11.Aug.2015 | [SECUID0-15-007] | Netsweeper v4.0.9 | PacketStorm |
XSS | 11.Aug.2015 | [SECUID0-15-007] | Netsweeper v4.0.9 | PacketStorm |
XSS | 11.Aug.2015 | [SECUID0-15-009] | Netsweeper v4.0.9 | PacketStorm |
XSS | 11.Aug.2015 | [SECUID0-15-010] | Netsweeper v4.0.9 | PacketStorm |
XSS | 11.Aug.2015 | [SECUID0-15-011] | Netsweeper v4.0.9 | PacketStorm |
XSS | 11.Aug.2015 | [SECUID0-15-012] | Netsweeper v4.0.9 | PacketStorm |
Brute-force-able Interface | 11.Aug.2015 | [SECUID0-15-013] | Netsweeper v4.0.9 | PacketStorm |
Shellcode Encoder | 25.May.2015 | N/A | Linux x86 - /bin/sh ROL/ROR Encoded Shellcode | Exploit-DB |
XSS | 31.Apr.2015 | [SECUID0-15-004] | Ericsson Drutt MSDP 3PI Manager | PacketStorm |
Open Redirection | 31.Apr.2015 | CVE-2015-2167 | Ericsson Drutt MSDP 3PI Manager | PacketStorm |
Directory Traversal and Arbitrary File Access | 31.Apr.2015 | CVE-2015-2166 | Ericsson Drutt MSDP Instance Monitor | Exploit-DB |
XSS (Multiple) | 31.Apr.2015 | CVE-2015-2165 | Ericsson Drutt MSDP Report Viewer | CX Security |
SQLi Authentication Bypass | 11.Aug.2015 | CVE-2014-9605 | Netsweeper v4.0.8 | PacketStorm |
XSS | 11.Aug.2015 | CVE-2014-9606 | Netsweeper v4.0.8 | PacketStorm |
XSS | 11.Aug.2015 | CVE-2014-9607 | Netsweeper v4.0.4 | PacketStorm |
XSS | 11.Aug.2015 | CVE-2014-9608 | Netsweeper v4.0.3 | PacketStorm |
Directory Browsing | 11.Aug.2015 | CVE-2014-9609 | Netsweeper v4.0.8 | PacketStorm |
Authentication Bypass | 11.Aug.2015 | CVE-2014-9610 | Netsweeper v4.0.8 | PacketStorm |
Authentication Bypass | 11.Aug.2015 | CVE-2014-9611 | Netsweeper v3.0.6 | PacketStorm |
SQLi | 11.Aug.2015 | CVE-2014-9612 | Netsweeper v4.0.4 | PacketStorm |
SQLi | 11.Aug.2015 | CVE-2014-9613 | Netsweeper v2.6.29.8 | PacketStorm |
Default Account | 11.Aug.2015 | CVE-2014-9614 | Netsweeper v2.6.29.8 | PacketStorm |
XSS | 11.Aug.2015 | CVE-2014-9615 | Netsweeper v4.0.4 | PacketStorm |
Information Disclosure | 11.Aug.2015 | CVE-2014-9616 | Netsweeper v4.0.4 | PacketStorm |
Open Redirection | 11.Aug.2015 | CVE-2014-9617 | Netsweeper v3.0.6 | PacketStorm |
Authentication Bypass | 11.Aug.2015 | CVE-2014-9618 | Netsweeper v4.0.8 | PacketStorm |
Arbitrary File Upload and Execution | 11.Aug.2015 | CVE-2014-9619 | Netsweeper v4.0.8 | PacketStorm |
Directory Traversal | 12.Nov.2014 | CVE-2014-8727 | F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability | Exploit-DB |
SQLi | 30.Aug.2014 | CVE-2014-8728 | Subex FMS v7.4 Unauthenticated SQLi | Exploit-DB and PacketStorm |
Local Privilege Escalation | 27.Jul.2014 | None | Privilege Escalation Parallels Tools v9 Unquoted Search Path | PacketStorm |
Open Redirection | 27.Jul.2014 | None | MasterCard open redirect discovery | PacketStorm |
Local Escalation | 06.May.2013 | None | Owning Windows 7; From Recovery to "nt authority\system" | here and PacketStorm |
XSS | 18.Feb.2013 | CVE-2013-7434 | MIMEsweeper For SMTP 5.5 Cross Site Scripting | PacketStorm |
Open Redirection | 08.Jul.2012 | CVE-2012-4032 | WebsitePanel CMS Open Redirect | PacketStorm |
Open Redirection | 25.Oct.2011 | None | Google.com open redirect discovery | PacketStorm |
Exploit | 18.Mar.2011 | None | POP Peeper 3.7 SEH Exploit | Exploit-DB |
DOS | 17.Mar.2011 | None | Fake Webcam v 6.1 Local Crash PoC | Exploit-DB |
DOS | 10.Oct.2010 | None | FoxPlayer 2.3.0 (.m3u) Buffer Overflow Vulnerability | Exploit-DB |
Shellcode | 04.Oct.2010 | N/A | generic win32 – add new local administrator 326 bytes | Exploit-DB |
Shellcode | 04.Oct.2010 | N/A | win32/xp pro sp3 (EN) 32-bit – add new local administrator 113 bytes | Exploit-DB |
DDL Hijacking | 07.Sep.2010 | CVE-2010-5203 | NCP Secure Client Juniper Edition v.9.23.017 application | Exploit-DB and inj3ct0r and Secunia |
DDL Hijacking | 13.Sep.2010 | CVE-2010-5203 | NCP Secure Entry Client v.9.23.017 application | Exploit-DB and inj3ct0r and Secunia |
DDL Hijacking | 07.Sep.2010 | N/A | SeaMonkey application | Exploit-DB and inj3ct0r |
DDL Hijacking | 01.Sep.2010 | N/A | IZArc application | Exploit-DB and inj3ct0r |
Inadequate Access Control | 08.Jan.2008 | CVE-2008-0229 | LevelOne WBR-3460A router | SecurityFocus and SecurityTracker |