CVE-2025-35053

Newforma Info Exchange NIX accepts requests to '/UserWeb/Common/MarkupServices.ashx' specifying the 'DownloadExportedPDF' command that allow an authenticated user to read and delete arbitrary files with 'NT AUTHORITY\NetworkService' privileges. In Newforma before 2023.1, anonymous access is enabl...

CVE-2010-20113

EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface. When processing a GET request to list.html, the server fails to properly validate the length of the path parameter. Supplying an excessively long value causes a buffer overflow on the...

CVE-2025-55171

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, the application does not check authentication at endpoint /html/personalizacaoremover.php allowing anonymous attacker without login to delete any Image files at endpoin...

WuFTPD: Providing *remote* root since at least1994

/ - wuftpd2600.c VERY PRIVATE VERSION. DO NOT DISTRIBUTE. 15-10-1999 WUFTPD 2.6.0 REMOTE ROOT EXPLOIT by tf8 NOTE: For ethical reasons, only an exploit for 2.6.0 will be released 2.6.0 is the most popular version nowadays, and it should suffice to proof this vulnerability concept. Site exec was...