Apple iTunes 10.6.1.7 M3U Playlist File Walking Heap Buffer Overflow

Summary iTunes is a free application for your Mac or PC. It lets you organize and play digital music and video on your computer. It can automatically download new music, app, and book purchases across all your devices and computers. And it’s a store that has everything you need to be entertained...

PyroCMS 2.1.1 CRLF Injection And Stored XSS Vulnerability

Summary PyroCMS is a CMS built using the CodeIgniter PHP framework. Using an MVC architecture it was built with modularity in mind. Lightweight, themeable and dynamic. Description PyroCMS suffers from a stored XSS and HTTP Response Splitting vulnerability when parsing user input to the 'title' an...

Artiphp CMS 5.5.0 Database Backup Disclosure Exploit

Summary Artiphp is a content management system CMS open and free to create and manage your website. Description Artiphp stores database backups using backupDB utility with a predictable file name inside the web root, which can be exploited to disclose sensitive information by downloading the file...

backupDB() v1.2.7a (onlyDB) Remote XSS Vulnerability

Summary backupDB is a PHP script that backs up MySQL tables and databases to a file uncompressed, gzip, bzip2 for easy daily backup. Description backupDB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to...

phpThumb() v1.7.11 (dir & title) Cross-Site Scripting Vulnerability

Summary phpThumb uses the GD library to create thumbnails from images JPEG, PNG, GIF, BMP, etc on the fly. The output size is configurable can be larger or smaller than the source, and the source may be the entire image or only a portion of the original image. Description phpThumb is prone to a...

Artiphp CMS v5.5.0 Multiple XSS POST Injection Vulnerabilities

Summary Artiphp is a content management system CMS open and free to create and manage your website. Description Artiphp CMS suffers from multiple cross-site scripting vulnerabilities via several parameters thru POST method. Attackers can exploit these weaknesses to execute arbitrary HTML and scri...

Andromeda Streaming MP3 Server v1.9.3.6 (s param) Remote XSS Vulnerability

Summary Turn your MP3 collection into an MP3 server. Simply add a single PHP or ASP script to any folder within your site. Now you can browse and play the contents of that folder - over the Web, or over your local network. Description Andromeda is prone to a cross-site scripting vulnerability. Th...

Baby Gekko CMS v1.1.5c Multiple Stored Cross-Site Scripting Vulnerabilities

Summary BabyGekko strives to deliver high quality websites and other web content fast and easy for all end users. It is a lightweight, extensible content management system platform for publishing websites, intranets, or blogs. Description Baby Gekko CMS suffers from multiple stored post-auth XSS...

Anchor CMS v0.6 Multiple Persistent XSS Vulnerabilities

Summary Anchor is a content management system, written in PHP5, built for art-directed posts. Description Anchor CMS suffers from multiple stored and reflected XSS vulnerabilities when parsing user input to several parameters via GET and POST method. Attackers can exploit this weakness to execute...

BGS CMS v2.2.1 Multiple Stored Cross-Site Scripting Vulnerabilities

Summary BGS CMS is powerful Content Management System used to easily publish, manage and organize wide variety of content on the website. Description BGS CMS suffers from multiple stored and reflected XSS vulnerabilities when parsing user input to several parameters via GET and POST method...

Zend Optimizer 3.3.3 (Windows) Insecure Permissions

Summary Zend Optimizer is a free application that runs the files encoded using Zend Guard and enhances the overall performance of your PHP applications. Description The Zend Optimizer package for Windows is vulnerable to an elevation of privileges vulnerability which can be used by a simple user...

Spotify 0.8.2.610 (search func) Memory Exhaustion Exploit

Summary Think of Spotify as your new music collection. Your library. Only this time your collection is vast: millions of tracks and counting. Spotify comes in all shapes and sizes, available for your PC, Mac, home audio system and mobile phone. Wherever you go, your music follows you. Description...

phpList 2.10.17 Remote SQL Injection and XSS Vulnerability

Summary phplist is the world's most popular open source email campaign manager. phplist is free to download, install and use, and is easy to integrate with any website. phplist is downloaded more than 10,000 times per month. Description Input passed via the parameter 'sortby' is not properly...

Oreans WinLicense v2.1.8.0 XML File Handling Unspecified Memory Corruption

Summary WinLicense combines the same protection-level as Themida with the power of advanced license control, offering the most powerful and flexible technology that allows developers to securely distribute trial and registered versions of their applications. Description WinLicense is prone to an...

Oreans Themida v2.1.8.0 TMD File Handling Buffer Overflow Vulnerability

Summary Advanced Windows software protection system, developed for software developers who wish to protect their applications against advanced reverse engineering and software cracking. Description The vulnerability is caused due to a boundary error in the processing of a project file, which can ...

Zend Server 5.6.0 Multiple Remote Script Insertion Vulnerabilities

Summary Zend Server is a complete, enterprise-ready Web Application Server for running and managing PHP applications. Description Zend Server and its components suffers from a cross-site scripting vulnerability. The persistent stored XSS issues are triggered when input passed via several paramete...

Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities

Summary WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplify RAID storage management. WebPAM is specifically designed for Promise HBA. WebPAM can configure, manage or monitor Promise RAID products remotely from a web browser from anywhere in the world...

Fork CMS 3.2.7 Multiple HTML Code Injection Vulnerabilities

Summary Fork is an open source cms that will rock your world. Description Fork CMS suffers from multiple XSS vulnerabilities when parsing user input to several parameters in different scripts, via POST and GET methods. Attackers can exploit these weaknesses to execute arbitrary HTML and script co...

webgrind 1.0 (file param) Local File Inclusion Vulnerability

Summary Webgrind is an Xdebug profiling web frontend in PHP5. Description webgrind suffers from a file inclusion vulnerability LFI when input passed thru the 'file' parameter to index.php is not properly verified before being used to include files. This can be exploited to include files from loca...

webgrind 1.0 (dataFile) Remote Reflected XSS Vulnerability

Summary Webgrind is an Xdebug profiling web frontend in PHP5. Description webgrind suffers from a XSS vulnerability when parsing user input to the 'dataFile' parameter via GET method in the index.php script. Attackers can exploit this weakness to execute arbitrary HTML and script code in a user's...

SQL Buddy 1.3.3 (GET/POST) Multiple Remote Cross-Site Scripting Vulnerabilities

Summary SQL Buddy is an open source web based MySQL administration application. Description SQL Buddy suffers from a XSS vulnerability when parsing user input to the 'DATABASE', 'HOST' and 'USER' parameters via POST method in 'login.php', and the 'db' parameter in 'dboverview.php' via GET method...

WampServer <= 2.2c (lang) Remote Cross-Site Scripting Vulnerability

Summary WampServer is a Windows web development environment. It allows you to create web applications with Apache2, PHP and a MySQL database. Description WampServer is vulnerable to cross-site scripting vulnerability. This issue is due to the application's failure to properly sanitize user-suppli...

SciTools Understand 2.6 (wintab32.dll) DLL Loading Arbitrary Code Execution

Summary Understand is a static analysis tool for maintaining, measuring, and analyzing critical or large code bases. Description The vulnerability is caused due to the application loading libraries wintab32.dll in an insecure manner. This can be exploited to load arbitrary libraries by tricking a...

ManageEngine ADManager Plus 5.2 Multiple XSS Vulnerabilities

Summary ADManager Plus is a simple, easy-to-use Windows Active Directory Management and Reporting Solution that helps AD Administrators and Help Desk Technicians with their day-to-day activities. Description ADManager Plus suffers from multiple XSS vulnerabilities when parsing user input to the...

EdrawSoft Office Viewer Component ActiveX 5.6 (officeviewermme.ocx) BoF PoC

Summary Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX document container for hosting Office documents including Microsoft Word, Microsoft Excel, Microsoft PowerPoint, Microsoft Project, and Microsoft Visio documents in a custom form or Web page. The...

Mindjet MindManager 2012 v10.0.493 Multiple Remote Vulnerabilities

Summary An intuitive visual framework that fosters clarity, innovative thinking & communication to improve business results. Description MindManager suffers from several vulnerabilities included into the whole package. Several OCX and DLL libraries from 3rd party software glg.ocx,...

Tracker Software pdfSaver ActiveX 3.60 (pdfxctrl.dll) Stack Buffer Overflow (SEH)

Summary PDF-Saver Technology is a unique new feature of PDF-XChange software which allows printing jobs to be combined prior to the final PDF file being generated - e.g. to join 3 pages of Excel spreadsheet, 5 slides of PowerPoint presentation and 10 pages of Word document into one PDF document...

Limny 3.0.1 (login.php) Remote URI Based Cross-Site Scripting Vulnerability

Summary Limny is a free and open-source content management framework with a focus on ease to use and develop. It can be used as a stable and powerful core for heavy and light web applications by having main features of web applications such as user management, multilingual system and multiple the...

Infoproject Biznis Heroj (login.php) Authentication Bypass Vulnerability

Summary Biznis Heroj or Business Hero is the first software on the Macedonian market that will help you manage your business processes in your company, such as accounting, production, acquisition, archiving, inventory, and the Cloud. Using the Cloud technology, Biznis Heroj allows you to access t...

Infoproject Biznis Heroj (XSS/SQLi) Multiple Remote Vulnerabilities

Summary Biznis Heroj or Business Hero is the first software on the Macedonian market that will help you manage your business processes in your company, such as accounting, production, acquisition, archiving, inventory, and the Cloud. Using the Cloud technology, Biznis Heroj allows you to access t...

SopCast 3.4.7 (Diagnose.exe) Improper Permissions

Summary SopCast is a simple, free way to broadcast video and audio or watch the video and listen to radio on the Internet. Adopting P2PPeer-to-Peer technology, It is very efficient and easy to use. SoP is the abbreviation for Streaming over P2P. Sopcast is a Streaming Direct Broadcasting System...

SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC

Summary SopCast is a simple, free way to broadcast video and audio or watch the video and listen to radio on the Internet. Adopting P2PPeer-to-Peer technology, It is very efficient and easy to use. SoP is the abbreviation for Streaming over P2P. Sopcast is a Streaming Direct Broadcasting System...

Hero Framework 3.69 Remote Reflected Cross-Site Scripting Vulnerability

Summary Hero formerly Caribou CMS is a white label, open source PHP website content management system CMS and development platform. Description Hero suffers from a XSS vulnerability when parsing user input to the 'month' parameter via GET method. Attackers can exploit this weakness to execute...

Manx cms.xml 1.0.1 (ajax_get_file_listing.php) Multiple XSS Vulnerabilities

Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input thru the GET parameters 'limit' and 'searchfolder' in 'ajaxgetfilelisting.php' are not sanitized allowing the attacker to execute HTML code into user's...

Manx cms.xml 1.0.1 (simplexml_load_file()) Directory Traversal Vulnerability

Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input passed via the 'fileName' parameter thru the simplexmlloadfile function is not properly verified in '/admin/adminblocks.php' and '/admin/adminpages.php'...

Manx cms.xml 1.0.1 Multiple HTTP Response Splitting Vulnerabilities

Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input passed to the POST parameter 'editorChoice' in 'adminblocks.php' and 'adminpages.php' and the POST parameter 'theme' in 'admincss.php', 'adminjs.php' and...

Hotaru CMS 1.4.2 SITE_NAME Parameter Stored XSS Vulnerability

Summary Hotaru CMS is an open source, PHP platform for building your own websites. With flexible plugins and themes, you can make any site you like. Description The CMS suffers from multiple XSS vulnerabilities. Input thru the POST parameters 'SITENAME' stored, 'return' reflected and the GET...

Soda PDF Professional 1.2.155 PDF/WWF File Handling Restriction of Service (RoS)

Summary Increase your efficiency with Soda PDF Professional, the smart & simple tool for opening, creating, editing, converting, and securing PDF files in a collaborative environment. Save time by using powerful automated features like batch PDF creation, professional templates & document...

11in1 CMS v1.0.1 (do.php) CRLF Injection Vulnerability

Summary Eleven in One is an open-source content management system CMS that is powered by PHP and MySQL. It does not only help you manage your personal blog but also maintain your postings at social networks. By establishing consistency among the data transmitted from and to the blog, this CMS...

XAMPP 1.7.7 Multiple URI Based Cross-Site Scripting Vulnerabilities

Summary XAMPP is an easy to install Apache distribution containing MySQL, PHP and Perl. Description XAMPP suffers from multiple XSS issues in several scripts that use the 'PHPSELF' variable. The vulnerabilities can be triggered in the 'xamppsecurity.php', 'cds.php' and 'perlinfo.pl' because there...

SetSeed CMS 5.8.20 (loggedInUser) Remote SQL Injection Vulnerability

Summary SetSeed is a self-hosted CMS which lets you rapidly build and deploy complete websites and online stores for your clients. Description SetSeed CMS is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the vulnerable script using the cookie input...

vtiger CRM 5.2.1 Multiple Remote Cross-Site Scripting Vulnerabilities

Summary vtiger CRM is a free, full-featured, 100% Open Source CRM software ideal for small and medium businesses, with low-cost product support available to production users that need reliable support. Description vtiger CRM suffers from a XSS vulnerability when parsing user input to the...

Cotonti CMS v0.9.4 Multiple Remote Vulnerabilities

Summary Cotonti is a powerful open-source web development framework and content manager with a focus on security, speed and flexibility. Description Input passed via the parameters 'redirect.php' in 'message.php' and 'w' and 'id' in 'index.php' script are not properly sanitised before being...

Ashampoo Burning Studio Elements 10.0.9 (.ashprj) Heap Overflow Vulnerability

Summary Ashampoo Burning Studio Elements offers you everything you need to burn movies, music and data - fast and effectively. The software with the intuitive user interface focuses on the core competencies of burning software and offers you compact functions to tackle all tasks relating to your...

Adobe Photoshop Elements 8.0 Multiple Arbitrary Code Execution Vulnerabilities

Summary Adobe Photoshop Elements - the No.1 consumer photo editing software that helps you turn everyday memories into sensational photos you'll cherish forever. Easily edit photos and make photo creations using automated options, share photos with your social network, and view photos virtually...

Toko Lite CMS 1.5.2 (edit.php) HTTP Response Splitting Vulnerability

Summary Toko Web Content Editor cms is a compact, multi language, open source web editor and content management system CMS. It is advanced easy to use yet fully featured program that can be integrated with any existing site. It takes 2 minuets to install even for non technical users. Description...

Toko Lite CMS 1.5.2 (EditNavBar.php) Multiple Parameters XSS POST Injection

Summary Toko Web Content Editor cms is a compact, multi language, open source web editor and content management system CMS. It is advanced easy to use yet fully featured program that can be integrated with any existing site. It takes 2 minuets to install even for non technical users. Description...

iBrowser Plugin v1.4.1 (dir) Remote Cross-Site Scripting Vulnerability

Summary iBrowser is an image browser plugin for WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor developed by net4visions. It allows image browsing, resizing on upload, directory management and more with the integration of the phpThumb image library. Description iBrowser suffers...

iManager Plugin v1.2.8 (dir) Remote Cross-Site Scripting Vulnerability

Summary With iManager you can manage your files/images on your webserver, and it provides user interface to most of the phpThumb functions. It works either stand-alone or as a plugin to WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor. Description iManager suffers from a XSS...

iGallery Plugin v1.0.0 (dir) Remote Cross-Site Scripting Vulnerability

Summary iGallery uses MooTools - image resizing done dynamically using phpThumb - resized images are cached. Description iGallery suffers from a XSS vulnerability when parsing user input to the 'dir' parameter via GET method in '/scripts/pthumb/demo/phpThumb.demo.random.php'. Attackers can exploi...