| squidGuard 1.4 - Remote Denial of Service - POC 2012-08-29 |
| Squirrelcart Cart Shop v3.3.4 - Multiple Web Vulnerabilities 2012-06-14 |
| Squiz CMS Multiple Vulnerabilities - Security Advisory - SOS-12-007 2012-06-18 |
| Squiz Matrix - Cross-Site Scripting Vulnerability 2011-06-06 |
| SSH host key fingerprint - through HTTPS 2014-09-01 |
| SSO Authentication Bypass and Website Takeover in DOKEOS 2016-02-17 |
| Staff FTP v3.04 Software - DLL Hijacking Vulnerability 2015-05-19 |
| Staff FTP v3.04 Software - DLL Hijacking Vulnerability 2015-05-20 |
| Stanford University - Multiple SQL Injection Vulnerabilities 2016-05-10 |
| Stash v1.0.3 CMS - SQL Injection Vulnerability 2016-08-15 |
| Static Analysis Tool Exposition (SATE) - Call for Participation 2011-07-11 |
| Steam Weak File Permissions Privilege Escalation 2015-11-23 |
| Stefan Kanthak (stefan kanthak nexgo de) |
| Stored Cross-Site Scripting vulnerability in Count per Day WordPress Plugin 2016-08-04 |
| Stored Cross-Site Scripting vulnerability in Easy Testimonials WordPress Plugin 2016-07-31 |
| Stored XSS in Terillion Reviews Wordpress Plugin 2013-03-08 |
| Stored XSS in WP Photo Album Plus WordPress Plugin 2015-05-20 |
| Stored XSS Vulnerability in F5 BIG-IP Application Security Manager 2015-01-12 |
| Strength and Weakness of Methods to Confirm SSH Host Key 2014-09-22 |
| Struts2 Prefixed Parameters OGNL Injection Vulnerability 2013-08-13 |
| Struts2 Prefixed Parameters Open Redirect Vulnerability 2013-08-13 |
| Struts2 Security Challenge 2012-03-14 |
| struts2 xsltResult Local code execution vulnerability 2012-03-22 |
| Studio Linea (prodotto.php?id) Remote SQL injection Vulnerability 2011-09-01 |
| StudioLine Photo Basic 3 ActiveX control Insecure Method 2011-08-17 |
| Stunnel CVE-2014-0016 PRNG Initialization Weakness |
| Subject mail: CVE-2015-7320 - Multiple Reflective XSS in Appointment Booking Calendar 1.1.7 WordPress plugin 2015-09-26 |
| submit cxsec org |
| Subrion v4.0.5 CMS - SQL Injection Vulnerability 2016-08-05 |
| Subverting BIND's SRTT Algorithm: Derandomizing NS Selection 2013-08-14 |
| Summer of Pwnage (lists securify nl) |
| Sun iPlanet Error Page Link Injection 2012-06-30 |
| Superuser "su --daemon" vulnerability on Android >= 4.3 2013-11-13 |
| Superuser unsanitized environment vulnerability on Android <= 4.2.x 2013-11-13 |
| Support Incident Tracker <= 3.65 (translate.php) Remote Code Execution Vulnerability 2011-11-19 |
| SurgeFtp Server BufferOverflow Vulnerability 2013-07-22 |
| Swagger Editor v2.9.9 "description" Key DOM-based Cross-Site Scripting 2016-05-03 |
| Switch v4.68 - Code Execution Vulnerability 2015-12-22 |
| Switchvox Asterisk v5.1.2 - Multiple Web Vulnerabilities 2012-10-01 |
| Syhunt: Google V8 - Server-Side JS Injection in vulnerable web apps 2012-02-25 |
| Syhunt: Time-Based Blind NoSQL Injection 2011-12-19 |
| Symantec EP 12.1.4013 Disabling Vulnerability 2015-07-08 |
| Symantec EP DOS 2016-01-08 |
| Symantec VIP Access Desktop Arbitrary DLL Execution 2016-12-09 |
| Symantec Workspace Virtualization 6.4.1895.0 Local Kernel Mode Privilege Escalation Exploit 2013-07-18 |
| Symfony2 Local File Disclosure - Security Advisory - SOS-12-002 2012-03-05 |
| Symphony CMS 2.6.2 2015-06-06 |
| Symphony CMS multiple vulnerabilities 2016-02-08 |
| Symphony CMS XSS Vulnerability 2015-06-08 |
| SynConnect PMS SQL Injection Vulnerability 2013-03-25 |
| Synchrony Infotech (product_details.php?id) Remote SQL injection Vulnerability 2011-08-06 |
| Synology Photo Station 5 - Reflected Cross-Site Scripting 2012-03-10 |
| Synology Photo Station multiple Cross-Site Scripting vulnerabilities 2015-05-25 |
| Synology Video Station command injection and multiple SQL injection vulnerabilities 2015-09-09 |
| sysadmin privilege in EMC Documentum Content Server 2015-08-17 |
| Syslog Watcher Pro 'Date' Parameter Cross Site Scripting Vulnerability 2013-04-30 |
| SYSS-2015-033: Missing Function Level Access Control (CWE-935) in Page2Flip Premium App 2.5 2015-08-24 |
| SYSS-2015-061 Wirecard Checkout Page - Improper Validation of Integrity Check Value 2015-11-13 |
| t2'12: Call for Papers 2012 (Helsinki / Finland) 2012-05-11 |
| t2'13: Call for Papers 2013 (Helsinki / Finland) 2013-06-11 |
| t2'14: Call for Papers 2014 (Helsinki / Finland) 2014-05-19 |
| t2â?²11 Challenge to be released 2011-09-10 10:00 EEST 2011-09-04 |
| tallison apache org |
| Taser Axon Dock (Body-Worn Camera Docking Station) v3.1 - Authentication Bypass 2016-08-15 |
| TCExam Edit Cross-Site Scripting 2012-08-13 |
| TCExam Edit SQL Injection 2012-08-14 |
| TconZERO (prodotto.php?idprodotto) Remote SQL injection Vulnerability 2011-08-26 |
| TCPing 2.1.0 Buffer Overflow 2015-11-01 |
| TC-SA-2011-01: Multiple vulnerabilities in OmniTouch Instant Communication Suite 2011-10-24 |
| TC-SA-2011-02: Multiple web-vulnerabilities in iTop version 1.1.181 2011-11-21 |
| TC-SA-2012-01: Multiple web-vulnerabilities in ownCloud 3.0.0 2012-04-18 |
| TC-SA-2013-01: Reflected Cross-Site-Scripting (XSS) vulnerability in e107 CMS v1.0.2 2013-04-03 |
| TeamSHATTER Security Advisory: Buffer Overflow in Oracle Database (CTXSYS.DRVDISP.TABLEFUNC_ASOWN function) 2011-10-21 |
| TeamSHATTER Security Advisory: Cross-site scripting in Oracle EM (advReplicationAdmin) (CVE-2013-0355) 2013-02-21 |
| TeamSHATTER Security Advisory: Database Vault Account Management Vulnerabilites 2011-10-21 |
| TeamSHATTER Security Advisory: HTTP Response Splitting in Oracle EM (policyViewSettings) (CVE-2013-0354) 2013-02-21 |
| TeamSHATTER Security Advisory: Oracle EM Segment Advisor Arbitrary URL redirection/phishing (CVE-2012-3219) 2013-02-21 |
| TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (metricDetail$type page) 2011-07-27 |
| TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (notifRuleInfo$mode page) 2011-07-27 |
| TeamSHATTER Security Advisory: Oracle Enterprise Manager vulnerable to XSS (sitemap page) 2011-07-27 |
| TeamSHATTER Security Advisory: Privilege escalation via internal sql injection in RESTORE DATABASE command 2012-04-11 |
| TeamSHATTER Security Advisory: SQL Injection in Oracle EM (advReplicationAdmin) (CVE-2013-0372) 2013-02-21 |
| TeamSHATTER Security Advisory: SQL Injection in Oracle EM (dBClone) (CVE-2013-0374) 2013-02-21 |
| TeamSHATTER Security Advisory: SQL Injection in Oracle EM (Resource Manager) (CVE-2013-0358) 2013-02-21 |
| TeamSHATTER Security Advisory: SQL Injection in Oracle EM (streams queue) (CVE-2013-0373) 2013-02-21 |
| TeamSHATTER Security Advisory: SQL Injection Vulnerability in Oracle DROP INDEX for spatial datatypes 2011-10-21 |
| TeamSpeak Client <= 3.0.18.1 RFI, Directory Traversal to RCE 2015-10-22 |
| TeempIp XSS Cookie Theft 2016-10-03 |
| Techsoft Web Solutions CMS 2016 Q2 - SQL Injection Web Vulnerability 2016-04-04 |
| Techsoft WS CMS (2016 Q2) - SQL Injection Web Vulnerability 2016-04-07 |
| tekno.Portal 0.1b - SQLi Vulnerability in "anket.php" 2012-07-26 |
| Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability 2012-08-01 |
| Telegram (API) - Cross Site Request Forgery Vulnerabilities 2016-01-27 |
| Telisca IPS Lock 2 Vulnerability 2016-04-25 |
| Telus Actiontec T2200H Modem Input Validation Flaw Allows Elevated Shell Access 2016-08-18 |
| TELUS Security Labs VR - Oracle Java Web Start Command Argument Injection Remote Code Execution 2012-02-15 |
| TEMENOS T24 R07.03 Authentication Bypass 2012-07-30 |
| TEMENOS T24 R07.03 Reflected Cross-Site Scripting 2012-07-30 |
| TestLink 1.9.14 CSRF Vulnerability 2015-11-08 |
| TestLink 1.9.14 Persistent XSS 2015-11-08 |
| TestLink Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-7391 2015-10-07 |
| TestLink Security Advisory - SQL Injection Vulnerability - CVE-2015-7390 2015-10-07 |
| Tftpd32 DHCP Server Denial Of Service Vulnerability 2012-05-21 |
| Tftpd32 DNS Server Denial Of Service Vulnerability 2012-05-26 |
| ThaiWeb CMS 2015Q3 - SQL Injection Web Vulnerability 2015-07-23 |
| The history of a -probably- 13 years old Oracle bug: TNS Poison 2012-04-18 |
| The LAD Melbourne Cms Sql Injection Vulnerability 2011-08-15 |
| The story of the Linux kernel 3.x... 2012-05-15 |
| THE STUDIO (prod.php?id) Remote SQL injection Vulnerability 2011-08-06 |
| the week of silly PoCs continues: data://www.mybank.com/ 2011-12-09 |
| Thijs Kinkhorst (thijs debian org) |
| things you can do with downloads 2012-05-30 |
| This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 180 day deadline. 2012-08-22 |
| Thomson Reuters FATCA - Arbitrary File Upload 2015-08-07 |
| Thomson TWG850 Wireless Router Multiple Vulnerabilities 2016-03-09 |
| ThreeDify Designer ActiveX control Insecure Method 2011-08-03 |
| ThreeDify Designer ActiveX control multiple buffer overflow vulnerabilities 2011-08-03 |
| Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability 2015-05-27 |
| TigerCom My Assistant v1.1 iOS - File Include Vulnerability 2014-06-03 |
| Tiki Wiki CMS Groupware <= 8.2 (snarf_ajax.php) Remote PHP Code Injection 2011-12-23 |
| Tiki Wiki CMS Groupware Multiple XSS vulnerabilities 2011-11-17 |
| Tiki Wiki CMS Groupware Stored Cross-Site-Scripting 2011-12-20 |
| Tim Schughart (t schughart prosec-networks com) |
| TimeClock - Multiple SQL Injections 2016-02-02 |
| Timesheet Next Gen 1.5.2 Multiple SQLi 2012-03-02 |
| Tinyguestbook XSS 2012-01-03 |
| TLS/SSL Compatibility Report 2011 2011-09-22 |
| T-Mobile Internet Manager - DLL Hijacking (mfc71enu.dll) 2015-02-11 |
| TomatoCart 1.x | Unrestricted File Creation 2013-01-04 |
| ToorCamp 2012: The American Hacker Camp 2012-04-25 |
| ToorCon 13 Call For Papers 2011-08-18 |
| ToorCon 16 Call For Papers! 2014-08-20 |
| Tor Browser Bundle for Linux (2.2.35-8) "EVIL bug" 2012-03-19 |
| Torque Server Buffer Overflow Vulnerability 2011-07-13 |
| Toshiba ConfigFree CF7 File Remote Command Execution 2012-09-21 |
| Toshiba ConfigFree CF7 File Stack Buffer Overflow (Comment Field 2012-09-21 |
| Toshiba ConfigFree CF7 File Stack Buffer Overflow (ProfileName) 2012-09-21 |
| Total Quality Machines (productdetail.php) SQL Injection Vulnerabilities 2012-04-14 |
| Total Shop UK eCommerce Generic Cross-Site Scripting 2012-08-13 |
| Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability 2016-04-25 |
| TP Link Gateway v3.12.4 - Multiple Web Vulnerabilities 2012-07-11 |
| TPTI-11-06: Oracle Java ICC Profile rcs2 Tag Parsing Remote Code Execution Vulnerability 2011-06-15 |
| TPTI-11-07: Adobe Shockwave iml32.dll CSWV Chunk Parsing Remote Code Execution Vulnerability 2011-06-15 |
| TPTI-11-08: Adobe Shockwave iml32.dll DEMX Chunk GIF Parsing Remote Code Execution Vulnerability 2011-06-15 |
| TPTI-11-10: Adobe Shockwave dirapi.dll rcsL Chunk Parsing Remote Code Execution Vulnerability 2011-06-15 |
| TPTI-11-11: Adobe Shockwave Lnam Chunk Parsing Remote Code Execution Vulnerability 2011-06-15 |
| TPTI-11-12: McAfee SaaS MyAsUtil5.2.0.603.dll SecureObjectFactory Instantiation Design Flaw Remote Code Execution Vulnerability 2011-08-08 |
| TPTI-11-13: McAfee SaaS myCIOScn.dll Scan Method Script Injection Remote Code Execution Vulnerability 2011-08-08 |
| TPTI-12-01 : Oracle Java True Type Font IDEF Opcode Parsing Remote Code Execution Vulnerability 2012-02-22 |
| Traffic amplification via Quake 3-based servers 2012-03-26 |
| Training : Advanced Android & iOS Hands-on Exploitation at Toorcon San Diego [16th-17th Oct,2013] 2013-10-15 |
| Trend Micro (Account) - Email Spoofing Web Vulnerability 2016-04-26 |
| Trend Micro (SSO) - (Backend) SSO Redirect & Session Vulnerability 2016-03-31 |
| Trend Micro Deep Discovery Authentication Bypass 2015-08-19 |
| Trend Micro Deep Discovery XSS 2015-08-19 |
| Trend Micro Direct Pass - Filter Bypass & Cross Site Scripting Vulnerability 2016-05-10 |
| Trend Micro Direct Pass - Filter Bypass & Persistent Web Vulnerability 2016-01-28 |
| Trend Micro DirectPass 1.5.0.1060 - Multiple Vulnerabilities 2013-05-21 |
| TrendMicro DDI Cross Site Request Forgerys 2016-03-26 |
| TRENDnet SecurView TV-IP121WN Wireless Internet Camera UltraMJCam ActiveX Control OpenFileDlg WideCharToMultiByte Remote Stack Buffer Overflow 2012-03-28 |
| Trigerring Java code from a SVG image 2012-05-15 |
| Trimble® Infrastructure GNSS Series Receivers Cross Site Scripting (XSS) vulnerability 2013-01-15 |
| Trusteer Rapport and anti-keylogging 2011-09-21 |
| TTW (ricetta.php?id) Remote SQL injection Vulnerability 2011-09-04 |
| Tugux CMS 1.2 Multiple vulnerability (BLIND sql & xss) 2011-07-12 |
| Tweet-wheel XSS Vulnerability 2016-04-23 |
| TWiki Security Advisory - XSS Vulnerability - CVE-2014-9325 2014-12-19 |
| TWiki Security Advisory - XSS Vulnerability - CVE-2014-9367 2014-12-19 |
| Twitter App 5.0 vulnerable to eavesdropping 2012-11-20 |
| Two Cross-Site Scripting (XSS) Vulnerabilities in Seo Panel 2014-05-16 |
| Two Instagram Android App Security Vulnerabilities 2013-08-28 |
| Two Reflected Cross-Site Scripting (XSS) Vulnerabilities in Forma Lms 2014-11-05 |
| Two Reflected XSS Vulnerabilities in Calls to Action WordPress plugin 2015-12-02 |
| Two Reflected XSS Vulnerabilities in Easing Slider WordPress Plugin 2015-02-11 |
| Two Remote Code Execution Vulnerabilities in Internet Explorer 2011-10-12 |
| Two security issues fixed in ioQuake3 engine 2011-07-28 |
| Two Vulnerabilities in NetworkMiner : DLL Hijacking + Directory Traversal 2013-08-07 |
| Two XSS in Contact Form DB WordPress plugin 2014-10-08 |
| Two XSS vulnerabilities in Simple Security WordPress Plugin 2015-01-14 |
| Two XSS Vulnerabilities in SupportCenter Plus 2015-01-28 |
| TWSL2011-006: IBM Web Application Firewall Bypass 2011-06-21 |
| TWSL2011-007: iOS SSL Implementation Does Not Validate Certificate Chain 2011-07-25 |
| TWSL2011-008: Focus Stealing Vulnerability in Android 2011-08-08 |
| TWSL2011-013: Multiple Vulnerabilities in IceWarp Mail Server 2011-09-23 |
| TWSL2011-014: Vulnerability in Pantech Web Browser SSL Implementation 2011-09-23 |
| TWSL2011-017: Multiple Vulnerabilities in Merethis Centreon 2011-11-07 |
| TWSL2011-018: Authentication Bypass Vulnerability in IBM TS3100/TS3200 Web User Interface 2011-12-20 |
| TWSL2011-019: Cross-Site Scripting Vulnerability in phpMyAdmin 2011-12-22 |
| TWSL2012-001: Cross-Site Scripting Vulnerability in Textpattern Content Management System 2012-01-04 |
| TWSL2012-002: Multiple Vulnerabilities in WordPress 2012-01-24 |
| TWSL2012-003: Cross-Site Scripting Vulnerability in Movable Type Publishing Platform 2012-02-24 |
| TWSL2012-008: Multiple Vulnerabilities in Scrutinizer NetFlow & sFlow Analyzer 2012-04-12 |
| TWSL2013-004: Group Name Enumeration Vulnerability in Cisco IKE Implementation 2013-04-18 |
| Typesettercms v5.0.1 - (Delete Files) CSRF Vulnerability 2016-08-05 |
| TYPO3 RemoveXSS.php vulnerability versions 6.2.19 and 7.6.4 2016-05-19 |
| UAC Bypass Vulnerability on "Windows 7" in Windows Script Host 2015-08-27 |
| Ubiquiti Networks Bug Bounty #9 - Invoice Persistent Vulnerabilities 2016-02-22 |
| UBNT Bug Bounty #1 - Client Side Cross Site Scripting Vulnerability 2015-08-20 |
| UBNT Bug Bounty #2 - XML External Entity Vulnerability 2016-04-25 |
| UBNT Bug Bounty #3 - Persistent Filename Vulnerability 2015-08-20 |
| Ubuntu, Linux Mint, and the Guest Account 2012-05-05 |
| Ubuntu: reseed(8), random.org, and HTTP request 2011-07-06 |
| UDID v1.0 iOS - Persistent Mail Encode Vulnerability 2015-09-22 |
| UDID+ v2.5 iOS - Mail Command Inject Vulnerability 2015-07-17 |
| Ultimate PHP Board (UPB) 2.2.7 Cross Site Scripting Vulnerability 2015-03-05 |
| Ultra Electronics / AEP Networks - SSL VPN (Netilla / Series A / Ultra Protect) Vulnerabilities 2014-10-02 |
| UltraEdit v22.20 - Buffer Overflow Vulnerability 2015-09-23 |
| Unauthenticated Arbitrary Directory Dump in BMC BladeLogic Server Automation 2016-09-04 |
| Unauthenticated command execution on Netgear DGN devices 2013-05-31 |
| Unauthenticated Reflected XSS vulnarbility in Asus RT-N10 Plus router 2015-01-29 |
| Unauthenticated remote access to D-Link DCS cameras 2013-01-28 |
| Unauthenticated remote code execution on D-Link ShareCenter products 2012-02-08 |
| Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla 2016-09-21 |
| Unauthorized console access on Satechi travel router v1.5 2013-11-22 |
| Unchecked Buffer in Microchip TCP/IP Stack Could Allow Remote Code Execution 2013-04-30 |
| Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change) 2013-10-30 |
| UNIT4 Prosoft HRMS XSS Vulnerability 2015-02-13 |
| Universal Reader Filename Denial Of Service Vulnerability 2012-05-12 |
| Unlimited Pop-Ups WordPress Plugin XSS Vulnerability 2016-04-23 |
| unlimitsec gmail com |
| Unpatched IIS Vulnerabilities / Microsoft July Security Bulletin 2012-07-16 |
| Untrusted Pointer Dereference Vulnerability in Corel WordPerfect X6 2013-03-07 |
| Update: CVE-2014-0053 Information Disclosure when using Grails 2014-02-27 |
| Update: Linksys EA2700, EA3500, E4200v2, EA4500 Unspecified unauthenticated remote access 2013-08-15 |
| Updated - CA20121018-01: Security Notice for CA ARCserve Backup 2013-01-14 |
| Upload directory traversal in Novell ZenWorks Handheld Management 7.0.2 2011-06-27 |
| URL Redirection Vulnerability In Verint Impact 360 2016-11-08 |
| US DoD's Dc3dd v7.2.6 suffers from a Buffer Overflow vulnerability - Advanced Information Security Corporation - Zero Day Research 2015-10-14 |
| US-CERT Alert TA13-088A: DNS Amplification Attacks 2013-03-29 |
| Use-After-Free in PHP 2015-06-10 |
| Useless OpenSSH resources exhausion bug via GSSAPI 2011-08-04 |
| UTA EDU University ENG - SQL Injection Vulnerability 2013-08-29 |
| Valid tiny-erp <= 1.6 SQL Injection Vulnerability 2011-11-19 |
| Validation Bypass in C2Box application : CVE - 2015-4626 2016-03-28 |
| ValtNet (photogallery.html?id_categoria) Remote SQL injection Vulnerability 2011-08-19 |
| VaM Shop v1.69 - Multiple Web Vulnerabilities 2012-10-30 |
| VamCart v0.9 CMS - Multiple Web Vulnerabilities 2012-07-15 |
| Vanctech File Commander 1.1 iOS - Multiple Vulnerabilities 2014-03-31 |
| Vbulletin (blog_plugin_useradmin) v4.1.12 Sql Injection Vulnerability 2012-09-18 |
| vBulletin <= 5.2.2 Preauth Server Side Request Forgery (SSRF) 2016-08-08 |
| Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability 2011-07-21 |
| vBulletin 4.1.10 Sql Injection Vulnerabilitiy 2012-04-04 |
| Vbulletin Cms (Sendmessage.php Page) 0Day Exploit 2016-04-13 |
| Veeam Backup & Replication Local Privilege Escalation Vulnerability 2015-10-08 |
| Vega beta release: a new open-source web-application security assessment platform 2011-07-01 |
| Vegetav (news_item.php?id) Remote SQL injection Vulnerability 2011-07-29 |
| Verax NMS Hardcoded Private Key (CVE-2013-1352) 2013-03-06 |
| Verax NMS Password Disclosure (CVE-2013-1631) 2013-03-06 |
| Verax NMS Password Replay Attack (CVE-2013-1351) 2013-03-06 |
| VertrigoServ 2.25 Cross-Site-Scripting vulnerability 2012-01-05 |
| viagra generic singapore 2015-07-30 |
| Vicon Network Cameras - Authentication Bypass 2016-07-28 |
| Video WiFi Transfer 1.01 - Directory Traversal Vulnerability 2014-08-04 |
| VideoCharge Studio v2.12.3.685 cc.dll CHTTPResponse::GetHttpResponse() Buffer Overflow Remote Code Execution 2014-02-19 |
| VideoLAN VLC Media Player <= 2.0.4 Crash Bug 2012-11-05 |
| vincent ruijter kpn com |
| Virtual Freer v1.58 - Client Side Cross Site Scripting Vulnerability 2016-04-07 |
| Virtualismi (prodotto.php?id) Cross Site Scripting Vulnerabilities 2011-09-02 |
| Visual Tools DVR multiple vulnerabilities 2012-10-15 |
| Vivint Sky Control Panel Unauthenticated Access Vulnerability 2016-03-01 |
| VLC media player v1.1.11 (.amr) Local Crash PoC 2012-01-04 |
| VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update) 2012-10-10 |
| VMSA-2011-0011 VMware hosted products address remote code execution vulnerability 2011-10-05 |
| VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console 2011-10-13 |
| VMSA-2011-0013 VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX 2011-10-28 |
| VMSA-2011-0014 VMware vCenter Update Manager fix for Jetty Web server addresses directory traversal vulnerability 2011-11-18 |
| VMSA-2012-0001 VMware ESXi and ESX updates to third party library and ESX Service Console 2012-01-31 |
| VMSA-2012-0002 VMware vCenter Chargeback Manager Information Leak and Denial of Service 2012-03-09 |
| VMSA-2012-0003 VMware VirtualCenter Update and ESX 3.5 patch update JRE 2012-03-09 |
| VMSA-2012-0004 VMware View privilege escalation and cross-site scripting 2012-03-16 |
| VMSA-2012-0005 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues 2012-03-16 |
| VMSA-2012-0007 VMware hosted products and ESXi/ESX patches address privilege escalation 2012-04-13 |
| VMSA-2012-0008 VMware ESX updates to ESX Service Console 2012-04-27 |
| VMSA-2012-0009 VMware Workstation, Player, ESXi and ESX patches address critical security issues 2012-05-03 |
| VMSA-2012-0011 VMware hosted products and ESXi and ESX patches address security issues 2012-06-14 |
| VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries 2012-08-31 |
| VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates 2012-10-10 |
| VMware Backdoor ghi.guest.trashFolder.state Uninitialized Memory Potential VM Break 2012-05-04 |
| VMware Backdoor Response Uninitialized Memory Potential VM Break 2012-05-03 |
| VMware High-Bandwidth Backdoor ROM Overwrite Privilege Elevation 2012-03-30 |
| VMware Security Response Center (security vmware com) |
| VMware Tools Multiple Vulnerabilities 2011-06-03 |
| VMWare Tools susceptible to binary planting by hijack 2012-09-04 |
| VMWare Zimbra Mailer |Â DKIM longterm Mail Replay vulnerability 2016-01-30 |
| Voice Logger astTECS - bypass login & arbitrary file download 2013-07-16 |
| VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability 2016-04-26 |
| vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities 2012-10-10 |
| VP2016-001: Remote Command Execution in File Replication Pro 2016-02-10 |
| vTiger CRM 5.2.x <= Blind SQL Injection Vulnerability 2011-10-05 |
| vTiger CRM 5.2.x <= Multiple Cross Site Scripting Vulnerabilities 2011-10-04 |
| vTiger CRM 5.2.x <= Remote Code Execution Vulnerability 2011-10-05 |
| Vtiger CRM Authenticated Remote Code Execution (CVE-2015-6000) 2015-09-28 |
| Vulnerabilities in 3S CoDeSys 3.4 SP4 Patch 2 2011-11-29 |
| Vulnerabilities in Apache Solr < 4.6.0 2013-12-09 |
| Vulnerabilities in BroadWin WebAccess Client 1.0.0.10 2011-09-02 |
| Vulnerabilities in Cytel Studio 9 2011-10-03 |
| Vulnerabilities in EViews 7.2 2011-09-28 |
| Vulnerabilities in Facebook and Facebook Messenger for Android [STIC-2014-0529] 2014-07-29 |
| Vulnerabilities in GenStat 14.1.0.5943 2011-10-03 |
| Vulnerabilities in PcVue 10 (SCADA) 2011-09-28 |
| vulnerabilities in Samsung Epic 4G Touch with 2.3.6 and probably other Samsung Galaxies 2012-08-16 |
| Vulnerabilities in Samsung TV (remote controller protocol) 2012-04-19 |
| Vulnerabilities in Serv-U 11.1.0.3 2011-12-04 |
| Vulnerabilities in Siemens Automation License Manager 2011-11-28 |
| Vulnerabilities in Siemens SIMATIC WinCC flexible 2008 SP2 2011-11-28 |
| Vulnerabilities in Sunway ForceControl 6.1 sp3 (SCADA) 2011-09-23 |
| Vulnerabilities in trading and SCADA softwares 2011-09-13 |
| Vulnerabilities in Winlog 2.07.16 2012-06-28 |
| Vulnerabilities within Mura CMS / Sitecore MCS / SmarterMail 2014-01-28 |
| Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. 2012-02-20 |
| Vulnerability found in Flynax Classifieds products 2011-09-26 |
| Vulnerability in "Fujitsu Desktop Update" (for Windows) 2013-05-08 |
| Vulnerability in Microsoft Security Essentials <v4.2 2013-05-04 |
| Vulnerability in Pydio/AjaXplorer < = 5.0.3 2013-11-10 |
| Vulnerability in Pydio/AjaXplorer <= 5.0.3 2013-11-10 |
| vulnerability issue for DB2 express 2013-11-11 |
| Vulnerability Lab (research vulnerability-lab com) |
| Vulnerability Report on AWCM 2.2 2012-11-08 |
| VULNERABLE and COMPLETELY outdated 3rd-party libraries/components used in 3CX Phone 6 2013-05-06 |
| Vulnerable Microsoft VC++ 2005 RTM runtime libraries installed with "Microsoft Security Essentials" (and numerous other Microsoft products) 2013-06-03 |
| Vulnerable Microsoft VC++ 2005 runtime libraries in "Microsoft Live Meeting 2007 Client" installed in private location 2012-07-03 |
| Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by eM client 2012-11-02 |
| Vulnerable MSVC++ 2008 runtime libraries distributed with and installed by Ogg DirectShow filters 2012-10-03 |
| Vulnerable, superfluous/outdated/deprecated/superseded 3rd party OCXs and DLLs distributed by and installed with Dataram RamDisk 4.0.0 2012-11-06 |
| VUPEN - Adobe Flash Player "Matrix3D" Integer Overflow Code Execution (APSB12-19) 2012-09-11 |
| VUPEN - Microsoft Windows Common Controls MSCOMCTL.OCX Use-after-free (CVE-2012-1856 / MS12-060) 2012-09-11 |
| VUPEN - Mozilla Firefox "nsHTMLEditRules" Remote Use-after-free (CVE-2012-3958 / MFSA 2012-58) 2012-09-11 |
| VUPEN Security Research - Adobe Acrobat & Reader XI-X "AcroBroker" Sandbox Bypass (Pwn2Own) 2014-06-02 |
| VUPEN Security Research - Adobe Acrobat & Reader XI-X Barcode Heap Overflow (Pwn2Own) 2014-05-26 |
| VUPEN Security Research - Adobe Acrobat and Reader BMP Dimensions Heap Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Acrobat and Reader IFF Processing Heap Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Acrobat and Reader Image Processing Integer Overflow (APSB12-01) 2012-01-11 |
| VUPEN Security Research - Adobe Acrobat and Reader PCX Processing Heap Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Acrobat and Reader Picture Dimensions Heap Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Acrobat and Reader Picture Processing Stack Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Acrobat and Reader TIFF BitsPerSample Heap Overflow Vulnerability 2011-09-14 |
| VUPEN Security Research - Adobe Flash ExternalInterface Use-After-Free Code Execution (Pwn2Own) 2014-04-14 |
| VUPEN Security Research - Adobe Flash Player "Matrix3D" Remote Memory Corruption (CVE-2012-0768) 2012-03-19 |
| VUPEN Security Research - Adobe Flash Player "SAlign" Memory Corruption Vulnerability (CVE-2011-2459) 2011-12-16 |
| VUPEN Security Research - Adobe Flash Player ActionScript FileReference Buffer Overflow (APSB11-21) 2011-08-11 |
| VUPEN Security Research - Adobe Flash Player NetStream Remote Code Execution Vulnerability (APSB12-07 / CVE-2012-0773) 2012-04-19 |
| VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion (CVE-2013-2555) 2013-04-18 |
| VUPEN Security Research - Adobe Shockwave rcsL Record Array Indexing Vulnerability (APSB11-19) 2011-08-11 |
| VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability 2011-10-07 |
| VUPEN Security Research - Google Chrome WebKit Engine Ruby Tag Stale Pointer Vulnerability 2011-10-07 |
| VUPEN Security Research - Microsoft Internet Explorer "Col" Element Remote Heap Overflow (MS12-037 / CVE-2012-1876) 2012-06-19 |
| VUPEN Security Research - Microsoft Internet Explorer "CollectionCache" Remote Use-after-free (MS12-037) 2012-06-19 |
| VUPEN Security Research - Microsoft Internet Explorer "GetAtomTable" Remote Use-after-free (MS12-037 / CVE-2012-1875) 2012-06-19 |
| VUPEN Security Research - Microsoft Internet Explorer "OnMove" Use-After-Free Vulnerability (MS12-063) 2012-10-23 |
| VUPEN Security Research - Microsoft Internet Explorer "ReplaceAdjacentText" Use-after-free (MS13-059) 2013-08-30 |
| VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass (Pwn2Own 2014) 2014-07-16 |
| VUPEN Security Research - Microsoft Internet Explorer "scrollIntoView" Use-After-Free Vulnerability (MS12-063) 2012-10-23 |
| VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog()" Sandbox Bypass (Pwn2Own 2014) 2014-07-16 |
| VUPEN Security Research - Microsoft Internet Explorer "X-UA-COMPATIBLE" Use-after-free Vulnerability 2011-10-21 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9 Object Confusion Sandbox Bypass (MS13-037 / Pwn2Own) 2013-05-21 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "CDisplayPointer" Use-after-free (MS13-028) 2013-05-03 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "OnMove" Use-after-free (MS13-021 / CVE-2013-0087) 2013-03-19 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "OnResize" Use-after-free (MS13-021 / CVE-2013-0087) 2013-03-19 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 "Scroll" Use-after-free (MS13-028) 2013-05-03 |
| VUPEN Security Research - Microsoft Internet Explorer 10-9-8-7-6 VML Remote Integer Overflow (MS13-037 / Pwn2Own) 2013-05-21 |
| VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption (Pwn2Own 2014) 2014-07-16 |
| VUPEN Security Research - Microsoft Internet Explorer Protected Mode Sandbox Bypass (Pwn2Own 2013 / MS13-059) 2013-08-30 |
| VUPEN Security Research - Microsoft Internet Explorer VML Remote Code Execution (MS12-023 / CVE-2012-0172) 2012-04-17 |
| VUPEN Security Research - Microsoft Office Excel Formula Record Heap Corruption Vulnerability 2011-09-19 |
| VUPEN Security Research - Microsoft Windows "datime.dll" Remote Code Execution Vulnerability (MS11-090) 2011-12-16 |
| VUPEN Security Research - Microsoft Windows "DirectShow" Privilege Escalation Vulnerability (Pwn2Own 2014) 2014-07-16 |
| VUPEN Security Research - Microsoft Windows "LdrHotPatchRoutine" Remote ASLR Bypass (Pwn2Own 2013 / MS13-063) 2013-08-30 |
| VUPEN Security Research - Microsoft Windows Media Player DVR-MS Buffer Overflow Vulnerability (MS11-092) 2011-12-16 |
| VUPEN Security Research - Microsoft Windows OLE Automation Integer Underflow Vulnerability (MS11-038) 2011-06-17 |
| VUPEN Security Research - Microsoft Windows Time Behaviour Remote Use-after-free Vulnerability (MS11-090) 2011-12-16 |
| VUPEN Security Research - Mozilla Firefox "BumpChunk" Object Processing Use-after-free (Pwn2Own) 2014-03-26 |
| VUPEN Security Research - Mozilla Firefox "DocumentViewerImpl" Class Remote Use-After-Free Vulnerability 2012-11-23 |
| VUPEN Security Research - Mozilla Firefox "imgRequestProxy" Remote Use-After-Free Vulnerability 2012-11-29 |
| VUPEN Security Research - Mozilla Firefox "nsHTMLEditRules" Use-After-Free (MFSA-2013-29 / CVE-2013-0787) 2013-03-19 |
| VUPEN Security Research - Novell GroupWise "BYWEEKNO" Remote Memory Corruption Vulnerability 2011-09-28 |
| VUPEN Security Research - Novell GroupWise "integerList" Remote Buffer Overflow Vulnerability 2011-09-28 |
| VUPEN Security Research - Novell GroupWise "RRULE" Remote Buffer Overflow Vulnerability 2011-09-28 |
| VUPEN Security Research - Novell GroupWise "TZNAME" Remote Buffer Overflow Vulnerability 2011-09-28 |
| VUPEN Security Research - Oracle Java Font Processing "maxPointCount" Heap Overflow Vulnerability 2012-10-23 |
| VUPEN Security Research - Oracle Java Font Processing Glyph Element Memory Corruption Vulnerability 2012-10-23 |
| VUPEN Security Research - Oracle Java ICC Profile "bfd" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java ICC Profile "clrt" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java ICC Profile "mluc" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java ICC Profile "ncl2" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java ICC Profile "pseq" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java ICC Profile "scrn" Tag Integer Overflow Code Execution Vulnerability 2011-06-09 |
| VUPEN Security Research - Oracle Java JavaFX Video Frame Decoding Remote Heap Overflow (Pwn2Own 2013) 2013-04-18 |
| VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability 2016-07-27 |
| VUPlayer 2.49 - (.wax) Buffer Overflow Vulnerability 2016-07-27 |
| W150D Wireless N 150 ADSL2 Modem Router - Cross Site Request Forgery Vulnerability 2015-10-09 |
| Warah Agencia (productos.php?categoria_id) Remote SQL injection Vulnerability 2011-08-23 |
| WASC Announcement: Static Analysis Technologies Evaluation Criteria Published 2013-05-10 |
| Weak authentication in EMC Secure Remote Services Virtual Edition Web Portal 2015-08-17 |
| Weak firmware encryption and predictable WPA key on Sitecom routers 2014-04-24 |
| Weak Local Database Credentials in Infoblox Network Automation 2014-07-09 |
| Weak password encryption on Huawei products 2012-11-13 |
| Web Art Studio (prodotto.php?lang) Remote SQL injection Vulnerability 2011-08-26 |
| Web Design Sydney (news-item.php?id) (news-item.php?newsid) Remote SQL injection Vulnerability 2011-08-07 |
| Web Encryption Extension security update 2014-07-25 |
| Web Fusion Nepal (find.php?id) Remote SQL injection Vulnerability 2011-07-28 |
| Web Fusion Nepal (tour.php?category) XSS Vulnerability 2011-07-28 |
| Web Login Bruteforce in Symantec Endpoint Protection Manager 12.1.4023.4080 2014-07-22 |
| Web Progetto (prodotti.php?idcategoria) Remote SQL injection Vulnerability 2011-08-26 |
| Web vulnerabilities in Siemens S7-300/S7-400/CP343-1/CP443-1 2016-11-21 |
| WebAssist PowerCMS PHP - Multiple Web Vulnerabilities 2013-10-03 |
| WebBoutiques Cms Cross-Site Scripting Vulnerability 2015-12-07 |
| WebCalendar <= 1.2.4 Two Security Vulnerabilities 2012-04-23 |
| Webcalendar 1.2.4 'location' XSS 2012-01-20 |
| WebComIndia CMS 2015Q4 - Auth Bypass Vulnerability 2015-10-09 |
| Webdesigns-studio (sysMsg.php?errMsg) Cross Site Scripting Vulnerabilities 2011-08-06 |
| WebDrive Buffer OverFlow PoC 2015-06-01 |
| Webgrind XSS vulnerability 2015-05-21 |
| WeBid 1.1.1 Unrestricted File Upload Exploit 2015-03-04 |
| Webify Product Series - Multiple Web Vulnerabilities 2012-06-15 |
| WebKitGTK+ Security Advisory WSA-2015-0001 2015-01-26 |
| WebKitGTK+ Security Advisory WSA-2015-0002 2015-12-28 |
| WebKitGTK+ Security Advisory WSA-2016-0001 2016-02-01 |
| WebKitGTK+ Security Advisory WSA-2016-0002 2016-03-11 |
| WebKitGTK+ Security Advisory WSA-2016-0003 2016-03-31 |
| WebKitGTK+ Security Advisory WSA-2016-0005 2016-08-25 |
| Webline CMS (2016Q2) - SQL Injection Vulnerability 2016-04-13 |
| WebMartIndia CMS 2016 Q1 - SQL Injection Vulnerability 2016-01-27 |
| WebRising (dettaglio.asp?id) Remote SQL injection Vulnerability 2011-08-17 |
| Webroot SecureAnywhere Mobile Protection - MITM SSL Certificate Vulnerability 2015-09-04 |
| WebsiteBaker 2.8.1 <= Arbitrary File Upload Vulnerability 2011-08-13 |
| WebsiteBaker 2.8.1 <= Cross Site Request Forgery (CSRF) Vulnerability 2011-08-13 |
| WebsiteBaker 2.8.2 SP2 HTTP-Referer XSS vulnerability 2012-02-18 |
| WebSolutions India Design CMS - SQL Injection Vulnerability 2015-08-20 |
| WebSurgery v1.1 released (Web application security testing suite) 2013-11-11 |
| WebSVN 2.3.2 Unproper Metacharacters Escaping exec() Remote Commands Injection Vulnerability 2011-06-03 |
| Webutler CMS 3.2 - Cross-Site Request Forgery 2016-04-21 |
| webyuss (prodotto.php?id) (quadri.php?id) Remote SQL injection Vulnerability 2011-08-30 |
| Western Union CN Bug Bounty #6 - Client Side Cross Site Scripting Web Vulnerability 2015-12-22 |
| WHM Panel Mail Delivery Reports crash database Vulnerability 2016-11-12 |
| WHM Panel Mail Delivery Reports crash database Vulnerability 2016-11-13 |
| Wickr Desktop v2.2.1 Windows - Denial of Service Vulnerability 2014-12-25 |
| Wifi Album v1.47 iOS - Command Injection Vulnerability 2013-05-12 |
| WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability 2015-09-23 |
| WiFi File Browser Pro v2.0.8 - Code Execution Vulnerability 2015-01-16 |
| WiFi HD v7.3.0 iOS - Multiple Web Vulnerabilities 2014-07-29 |
| Wifi Photo Transfer 2.1 & 1.1 PRO - Multiple Vulnerabilities 2013-05-12 |
| WiFly 1.0 Pro iOS - Multiple Web Vulnerabilities 2013-07-17 |
| Wikidforum 2.10 Multiple security vulnerabilities 2012-03-10 |
| WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities 2011-11-30 |
| WikyBlog 1.7.3RC2 XSS vulnerability 2012-03-15 |
| WinaXe v7.7 FTP 'Server Ready' CMD Remote Buffer Overflow 2016-11-05 |
| wincvs-2.0.2.4 Privilege Escalation 2016-10-25 |
| Windows 7/8 admin account installation password stored in the clear in LSA Secrets 2013-07-11 |
| Windows Authentication UI DLL side loading vulnerability 2015-12-12 |
| Windows Embedded POSReady 2009: cruft, not craft 2013-08-21 |
| Windows server 2008 R1 local DoS 2011-09-06 |
| WingFTP Server Denial of Service Vulnerability 2012-10-09 |
| WININET CHttpHeaderParser::ParseStatusLine out-of-bounds read details 2016-11-10 |
| Winn Guestbook v2.4.8c Stored XSS 2011-12-29 |
| Winni Neessen (winni insecure so) |
| WinRadius Server Denial Of Service Vulnerability 2012-05-27 |
| WinRAR SFX v5.21 - Remote Code Execution Vulnerability 2015-09-28 |
| WinSaber - Unquoted Service Path Privilege Escalation 2016-08-02 |
| Wireless Disk PRO v2.3 iOS - Multiple Web Vulnerabilities 2013-05-12 |
| Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities 2014-03-27 |
| Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities 2015-02-26 |
| Wireless N ADSL 2/2+ Modem Router - DT5130 - Xss / URL Redirect / Command Injection 2014-12-03 |
| Wireless Photo Access 1.0.10 iOS - Multiple Vulnerabilities 2013-05-12 |
| Wireless Photo Transfer v3.0 iOS - File Include Vulnerability 2015-05-18 |
| Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities 2013-12-05 |
| Wireshark 1.4.0 Malformed IKE Packet Denial of Service 2011-07-11 |
| Wireshark 1.6.1 Malformed IKE Packet Denial of Service 2011-07-28 |
| Wisecracker 1.0 - A high performance distributed cryptanalysis framework 2012-11-05 |
| WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability 2015-05-19 |
| WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability 2015-05-20 |
| WOC Consulting (search_result.php?cid) Remote SQL injection Vulnerability 2011-07-28 |
| Wolf CMS v0.7.5 - Multiple Web Vulnerabilities 2012-02-27 |
| Woltlab Burning Board 3.9.1 pl1 - Persistent Web Vulnerability & Editor Reverse Encoding Issue 2014-04-11 |
| Wonderware Information Server CVE-2014-2381 Weak Encryption Security Weakness |
| Word 2003 SP2 .doc fork bomb on WinXP SP3 2013-11-08 |
| Wordpress (editormonkey) Arbitrary File Upload Vulnerability 2012-07-04 |
| Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability 2012-07-21 |
| WordPress <=4.0 Denial of Service Exploit (CVE-2014-9034) 2014-11-29 |
| WordPress <=v4.4 Username Exists Information Disclosure 2015-12-10 |
| Wordpress 1-jquery-photo-gallery-slideshow-flash plugin Cross-Site Scripting Vulnerabilities 2011-11-30 |
| WordPress 3 persistent script injection 2014-11-20 |
| Wordpress adminimize Plugin Vulnerabilities 2011-11-21 |
| Wordpress advanced-text-widget Plugin Vulnerabilities 2011-11-21 |
| Wordpress alert-before-your-post Plugin Cross-Site Scripting Vulnerabilities 2011-11-21 |
| Wordpress Booking System (Booking Calendar) plugin SQL Injection 2014-05-21 |
| WordPress Bulk Delete Plugin [Privilege Escalation] 2016-03-03 |
| Wordpress bulletproof-security <=.51 multiple vulnerabilities 2014-11-05 |
| Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-11 |
| Wordpress Cart66 Plugin 1.5.1.14 Multiple Vulnerabilities 2013-10-12 |
| Wordpress clickdesk-live-support-chat plugin Cross-Site Scripting Vulnerabilities 2011-11-23 |
| Wordpress Content Text Slider on Post 6.8 - Persistent Vulnerability 2015-12-22 |
| Wordpress Developer Formatter CSRF Vulnerability 2013-01-22 |
| Wordpress Download Monitor - Download Page Cross-Site Scripting 2012-09-09 |
| Wordpress enable-latex plugin Remote File Include Vulnerabilities 2011-11-23 |
| Wordpress Facebook Survey v1 - SQL Injection Vulnerability 2012-11-20 |
| Wordpress fckeditor Arbitrary File Upload Vulnerability 2012-08-26 |
| Wordpress featurific-for-wordpress plugin Cross-Site Scripting Vulnerabilities 2011-11-23 |
| Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-21 |
| Wordpress fgallery_plus Plugin Xss vulnerabilities 2013-09-22 |
| WordPress Fixes Multiple Vulnerabilities With 3.6.1 Release 2013-09-13 |
| Wordpress flash-album-gallery plugin Cross-Site Scripting Vulnerabilities 2011-11-30 |
| WordPress flash-album-gallery Plugin 'flagshow.php' Cross Site Scripting Vulnerability 2011-12-12 |
| wordpress Flexible Custom Post Type plugin Xss Vulnerabilities 2011-11-16 |
| Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability 2013-01-10 |
| wordpress jigoshop Plugin path disclosure vulnerabilities 2013-11-05 |
| Wordpress Kish Guest Posting Plugin 1.0 (uploadify.php) Unrestricted File Upload Vulnerability 2012-01-23 |
| wordpress Lanoba Social Plugin Xss Vulnerabilities 2011-11-19 |
| Wordpress Media Cleaner Plugin - XSS Vulnerability 2015-02-27 |
| Wordpress meenews 5.1 plugin Cross-Site Scripting Vulnerabilities 2011-11-23 |
| WordPress Plugin BackWPUp 2.1.4 - Security Advisory - SOS-11-012 2011-10-17 |
| Wordpress plugin Buddypress <= 1.9.1 privilege escalation vulnerability 2014-02-13 |
| Wordpress plugin Buddypress <= 1.9.1 stored xss vulnerability 2014-02-13 |
| Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability 2013-09-18 |
| WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities 2012-07-16 |
| WordPress Plugin event-registration 6.02.02: SQL-Injection and persistent XSS 2016-05-09 |
| WordPress plugin GravityForms Cross-site Scripting vulnerability 2016-03-01 |
| WordPress Plugin 'Quick Post Widget' 1.9.1 Multiple Cross-site scripting vulnerabilities 2012-08-10 |
| Wordpress Plugin Simple Gmail Login Stack Trace Vulnerability 2012-11-29 |
| WordPress plugin wp-ultimate-exporter SQL injection vulnerability 2016-02-25 |
| WordPress Plugin: Advanced XML Reader v0.3.4 XXE Vulnerability 2013-05-02 |
| WordPress podPress Plugin XSS in SWF 2013-03-28 |
| Wordpress post-gallery Plugin Xss vulnerabilities 2013-08-24 |
| Wordpress pretty-link.1.5.2 plugin Cross-Site Scripting Vulnerabilities 2011-12-04 |
| Wordpress Robo Gallery v2.0.14 - Code Execution Vulnerability 2016-04-12 |
| Wordpress Scoreme Theme - Client Side Cross Site Scripting Web Vulnerability 2016-04-04 |
| Wordpress skysa-official plugin Cross-Site Scripting Vulnerabilities 2011-11-27 |
| WordPress Slideshow Gallery 1.4.6 Shell Upload Vulnerability (CVE-2014-5460) 2014-08-30 |
| WordPress SolveMedia 1.1.0 CSRF Vulnerability 2013-01-24 |
| Wordpress taggator plugin Sql Injection Vulnerabilities 2012-04-05 |
| WordPress thecotton Themes Remote File Upload Vulnerability 2014-03-01 |
| Wordpress the-welcomizer plugin Cross-Site Scripting Vulnerabilities 2011-12-13 |
| Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability 2016-04-29 |
| Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability 2016-05-10 |
| WordPress User Meta Manager Plugin [Blind SQLI] 2016-02-04 |
| WordPress User Meta Manager Plugin [Information Disclosure] 2016-02-08 |
| WordPress User Meta Manager Plugin [Privilege Escalation] 2016-02-04 |
| WordPress User Submitted Posts Plugin [Persistent XSS] 2016-02-24 |
| WordPress Users Ultra Plugin [Blind SQL injection] - Update 2015-12-08 |
| WordPress Users Ultra Plugin [Blind SQL injection] 2015-12-02 |
| WordPress Users Ultra Plugin [Persistence XSS] 2015-12-02 |
| WordPress Users Ultra Plugin [Unrestricted File Upload] 2015-11-17 |
| Wordpress Valums Uploader - File Upload Vulnerability 2013-01-22 |
| Wordpress videowhisper-live-streaming-integration Plugin Xss vulnerabilities 2013-08-23 |
| WordPress WooCommerce - Store Toolkit Plugin [Privilege Escalation] 2016-02-08 |
| WordPress Wordfence Firewall 5.1.2 Cross Site Scripting 2014-11-05 |
| WordPress WP User Frontend Plugin [Unrestricted File Upload] 2016-02-08 |
| Wordpress WPsc-MijnPress plugin Cross-Site Scripting Vulnerabilities 2012-04-30 |
| Wordpress Zingiri Web Shop Plugin <= 2.2.3 Remote Code Execution Vulnerability 2011-11-13 |
| Working Remote Root Exploit for OpenSSH 3.4p1 (FreeBSD) 2011-07-01 |
| Workshop Proposal/Paper Submission Deadlines 2013-03-27 |
| WorldCIST 2015 - 3rd World Conference on Information Systems and Technologies 2014-09-27 |
| WorldCIST'14 - Submission deadline: December 7 2013-12-01 |
| WorldCIST'17 - Call for Workshops Proposals; Deadline: September 5 2016-08-03 |
| WorldCIST'17 - Submission deadline: November 27 2016-11-24 |
| WorldCIST'2016 - Brazil: Call for Workshops Proposals - Best Papers published by ISI/SCI Journals 2015-07-21 |
| WorldCIST'2017 - Submission deadline: November 30 2016-11-26 |
| WowzaMediaServer SecureToken bypass (and worse) 2013-04-30 |
| WowzaMediaServer StorageDir escape (regression) 2013-04-30 |
| WP Advanced Importer XSS Vulnerability 2016-02-24 |
| WP Easy Gallery v4.1.4 Stored XSS Vulnerability 2016-01-26 |
| WP External Links v1.80 - Cross Site Scripting Web Vulnerabilities 2016-03-31 |
| WP Good News Themes - Client Side Cross Site Scripting Web Vulnerability 2016-02-29 |
| WP Symposium Pro Social Network Plugin XSS and Critical CSRF Vulnerability 2016-01-08 |
| WP Ultimate Exporter XSS Vulnerability 2016-02-24 |
| WP-Comment-Rating XSS Vulnerability 2016-01-30 |
| WPN-XM Serverstack v0.8.6 CSRF - MySQL / PHP.INI Hijacking 2016-04-09 |
| WPN-XM Serverstack v0.8.6 XSS 2016-04-09 |
| WP-Ultimate CSV Importer XSS Vulnerability 2016-01-26 |
| WSO2 CARBON v4.4.5 PERSISTENT XSS COOKIE THEFT 2016-08-13 |
| WSO2 SOA Enablement Server - Reflected Cross-Site Scripting 2016-05-17 |
| WSO2-CARBON v4.4.5 CSRF / DOS 2016-08-13 |
| WSTAFF Remote SQL injection Vulnerability 2011-09-03 |
| WWW File Share Pro v7.0 - Denial of Service Vulnerability 2014-09-01 |
| XADV-2013003 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow 2013-11-09 |
| XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability 2013-11-04 |
| XADV-2013003 Linux Kernel fbdev Driver arcfb_write() Overflow 2013-11-19 |
| XADV-2013005 FreeBSD 10 <= nand Driver IOCTL Kernel Memory Leak Bug 2013-11-16 |
| XADV-2013006 FreeBSD <= 10 kernel qlxge/qlxgbe Driver IOCTL Multiple Kernel Memory Leak Bugs 2013-11-16 |
| XADV-2013007 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow 2013-11-19 |
| XADV-2013008 Linux Kernel 3.11.7 <= sk_attach_filter Kernel Heap Corruption 2013-11-19 |
| XAMPP 1.8.1 Local Write Access Vulnerability 2013-09-26 |
| XAMPP Control Panel Memory Corruption Denial Of Service 2016-12-24 |
| XCloner Wordpress/Joomla! backup Plugin v3.1.1 (Wordpress) v3.5.1 (Joomla!) Vulnerabilities 2014-11-06 |
| XCon 2012 XFocus Information Security Conference Call for Paper 2012-03-07 |
| XEE vulnerabilities in SharePoint (MS11-074) and DotNetNuke 2011-09-15 |
| Xmas 2011 Security Puzzle 2011-12-23 |
| XMB - eXtreme Message Board v1.9.11.13 Weak Crypto 2016-01-23 |
| XnView JLS File Decompression Heap Overflow 2012-10-03 |
| Xoops 2.5.7.2 CSRF - Arbitrary User Deletions 2016-03-18 |
| Xoops 2.5.7.2 Directory Traversal Bypass 2016-03-18 |
| Xplace Company (dettaglio.asp?id) (alloggi-dett.asp?id) (eventi.asp?id) Remote SQL injection Vulnerability 2011-08-17 |
| Xpra memory disclosure 2012-01-18 |
| XSS (Cross Site Scripting) in Social CRM & Community Solutions powered by Lithium in Knowledge base section 2016-03-24 |
| XSS and Blind SQL Injection Vulnerabilities in Banana Dance CMS 2012-08-22 |
| XSS and Blind SQL Injection Vulnerabilities in ExponentCMS 2012-04-23 |
| XSS and CSRF Horde Groupware Web mail Edition 2013-11-03 |
| XSS and SQL Injection Vulnerabilities in Jara 2012-08-22 |
| XSS and SQL Injection Vulnerabilities in OrderSys 2012-08-22 |
| XSS and SQL Injection Vulnerabilities on Symphony CMS 2.2.3 2011-11-01 |
| XSS and SQLi in huge IT gallery v1.1.5 for Joomla 2016-07-25 |
| XSS Ebuddy (responsible disclosure) 2011-09-02 |
| XSS in answer my question plugin 2012-11-04 |
| XSS in dokeos 2.1.1 2012-10-30 |
| XSS in Elgg 1.8.12, 1.7.16 (core module "Twitter widget") 2013-01-29 |
| XSS in Fast Secure Contact Form wordpress plugin 2011-08-17 |
| XSS in FlatPress 2011-06-28 |
| XSS in IBM Open Admin Tool 2011-08-30 |
| XSS in Kaseya version 6.2.0.0 web interface 2012-04-20 |
| XSS in OneOrZero AIMS 2012-01-18 |
| XSS in OSSEC wui 0.3 2012-09-27 |
| XSS in Redirection wordpress plugin 2011-08-31 |
| XSS in Tiki Wiki CMS Groupware 2011-07-20 |
| XSS in tooltip plugin of Zurb Foundation 5 2016-11-29 |
| XSS in WP e-Commerce 2011-08-03 |
| XSS in Zikula 2011-09-07 |
| XSS on Juniper JUNOS 11.4 Embedthis Appweb 3.2.3 2013-11-11 |
| XSS phpLDAPadmin: 1.2.0.5 (Debian package) and 1.2.2 (sourceforge) 2012-01-31 |
| XSS Vulnerabilities in ClipBucket 2012-10-19 |
| XSS Vulnerabilities in CMSMini 2012-10-19 |
| XSS Vulnerabilities in eFront 2011-11-01 |
| XSS Vulnerabilities in LabWiki 2012-08-22 |
| XSS Vulnerabilities in OpenCms 2013-07-17 |
| XSS Vulnerabilities in phpFreeChat 2012-10-02 |
| XSS Vulnerabilities in TaskFreak 2012-10-19 |
| XSS Vulnerabilities in TWiki < 5.1.0 2011-09-22 |
| XSS vulnerability in FortiMail Messaging Security Appliance 2011-09-13 |
| XSS vulnerability in Intellect Core banking software - Polaris 2015-12-09 |
| XSS vulnerability in Joomla 1.6.3 2011-11-10 |
| XSS vulnerability in OFBiz forms 2015-07-15 |
| XSS Vulnerability in Simple Slider Wordpress Plugin 2012-11-21 |
| XSS Vulnerability in Synnefo Client for Synnefo IMS 2015 - CVE-2015-8247 2015-12-12 |
| XSS, Code Execution, DOS, Password Leak, Weak Authentication in GetSimpleCMS 3.3.5 2015-07-15 |
| XSSer v1.6 -beta- aka "Grey Swarm!" released. 2011-11-30 |
| XWeavers (page.asp?id) Remote SQL injection Vulnerability 2011-08-07 |
| XWeavers (sysMsg.php?errMsg) Cross Site Scripting Vulnerabilities 2011-08-06 |
| Xymon: Critical security issues in all versions prior to 4.3.25 2016-02-14 |
| Yahoo Bug Bounty #32 - Cross Site Request Forgery bulkImport Web Vulnerability 2015-09-11 |
| Yahoo Bug Bounty #37 - Sender Spoofing Vulnerability 2016-03-14 |
| Yahoo! Bug Bounty #25 Flickr API - Persistent Service Vulnerability 2014-07-07 |
| Yahoo! Bug Bounty #29 YM - Filter Bypass & Persistent Web Vulnerability 2014-07-10 |
| Yahoo! Bug Bounty #30 YM - Application-Side Mail Encoding (File Attachment) Vulnerability 2014-07-10 |
| Yahoo! Messenger v11.5 - Buffer Overflow Vulnerability 2012-02-11 |
| Yarubo #1: Arbitrary SQL Execution in Participants Database for Wordpress 2014-06-01 |
| YaTFTPSvr TFTP Server Directory Traversal Vulnerability 2011-10-30 |
| Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability [CVE-2012-1417] 2012-03-13 |
| Yet Another CMS 1.0 SQL Injection & XSS vulnerabilities 2011-10-19 |
| Yves-Alexis Perez (corsac debian org) |
| YVS Image Gallery Sql injection 2012-02-23 |
| ZAPms v1.42 CMS - Client Side Cross Site Scripting Web Vulnerability 2013-10-15 |
| ZDI-11-171: Sybase OneBridge Mobile Data Suite Format String Remore Code Execution Vulnerability 2011-06-03 |
| ZDI-11-172: Novell iPrint nipplib.dll uri Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-173: Novell iPrint nipplib.dll profile-time Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-174: Novell iPrint nipplib.dll profile-name Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-175: Novell iPrint nipplib.dll file-date-time Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-176: Novell iPrint nipplib.dll driver-version Remote Code Vulnerability 2011-06-06 |
| ZDI-11-177: Novell iPrint nipplib.dll core-package Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-178: Novell iPrint nipplib.dll client-file-name Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-179: Novell iPrint nipplib.dll iprint-client-config-info Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-180: Novell iPrint op-printer-list-all-jobs cookie Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-181: Novell iPrint op-printer-list-all-jobs url Remote Code Execution Vulnerability 2011-06-06 |
| ZDI-11-182: Oracle Java IE Browser Plugin Corrupted Window Procedure Hook Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-183: Oracle Java ICC Profile MultiLanguage 'mluc' Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-184: Oracle Java ICC Profile Sequence Description 'pseq' Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-185: Oracle Java ICC Profile 'bfd ' Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-186: Oracle Java ICC Profile Multi-Language 'curv' Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-187: Oracle Java ICC Profile clrt Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-188: Oracle Java ICC Profile ncl2 Count Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-189: Oracle Java ICC Profile ncl2 DevCoords Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-190: Oracle Java ICC Profile 'crdi' Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-191: Oracle Java ICC Screening Tag Parsing Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-192: Oracle Java Web Start Command Argument Injection Remote Code Execution Vulnerability 2011-06-08 |
| ZDI-11-193: Microsoft Internet Explorer DOM Modification Race Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-194: Microsoft Internet Explorer layout-grid-char style Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-195: Microsoft Internet Explorer selection.empty Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-196: Microsoft Internet Explorer HTTP 302 Redirect Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-197: Microsoft Internet Explorer vgx.dll imagedata Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-198: (Pwn2Own) Microsoft Internet Explorer Uninitialized Variable Information Leak Vulnerability 2011-06-14 |
| ZDI-11-199: Oracle Java Soundbank Decompression Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-200: Adobe Shockwave AudioMixer Structure Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-201: Adobe Shockwave Cursor Structure Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-202: Adobe Shockwave rcsL String Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-203: Adobe Shockwave xtcL Chunk Parsing Integer Overflow Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-204: Adobe Shockwave TextXtra Text Element Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-205: Adobe Shockwave Missing Lctx Chunk Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-206: Adobe Shockwave GIF Decompression Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-207: Adobe Shockwave tSAC Chunk String Termination Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-208: Adobe Shockwave rcsL Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-209: Adobe Shockwave rcsL Substructure Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-210: Adobe Shockwave rcsL Chunk Parsing Misallocation Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-211: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk 0xFFFFFF49 Field Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-212: Adobe Shockwave KEY* Chunk Invalid Size Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-213: Adobe Shockwave rcsL Trusted Offset Chunk Processing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-214: Adobe Shockwave CASt Chunk Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-215: Adobe Shockwave DEMX Chunk Multiple Field Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-216: Adobe Shockwave rcsL Chunk 16-bit Field Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-217: Adobe Shockwave Font Structure Parsing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-218: Adobe Acrobat Reader tesselate.x3d Multimedia Playing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-219: Adobe Acrobat Reader 3difr.x3d Multimedia Playing Remote Code Execution Vulnerability 2011-06-14 |
| ZDI-11-220: Adobe Shockwave Director File rcsL Chunk Multiple Opcode Parsing Remote Code Execution Vulnerability 2011-06-15 |
| ZDI-11-221: Adobe Shockwave Shockwave 3d Asset.x32 DEMX 0xFFFFFF45 Field Parsing Remote Code Execution Vulnerability 2011-06-15 |
| ZDI-11-222: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk Substructure Count Remote Code Execution Vulnerability 2011-06-15 |
| ZDI-11-223: Mozilla Firefox SVGPathSegList.replaceItem Remote Code Execution Vulnerability 2011-06-21 |
| ZDI-11-224: Mozilla Firefox SVGPointList.appendItem Remote Code Execution Vulnerability 2011-06-21 |
| ZDI-11-225: Mozilla Firefox nsXULCommandDispatcher Remote Code Execution Vulnerability 2011-06-21 |
| ZDI-11-226: Citrix EdgeSight Launcher Service Remote Code Execution Vulnerability 2011-06-27 |
| ZDI-11-227: Novell File Reporter Engine RECORD Tag Parsing Remote Code Execution Vulnerability 2011-06-27 |
| ZDI-11-228: Apple ColorSync ICC Profile ncl2 Parsing Remote Code Execution Vulnerability 2011-06-29 |
| ZDI-11-229: Apple QuickTime RIFF fmt Chunk Parsing Remote Code Execution Vulnerability 2011-06-29 |
| ZDI-11-230: Apple Quicktime Apple Lossless Audio Codec Parsing Remote Code Execution Vulnerability 2011-06-29 |
| ZDI-11-231: Apple QuickTime Pict File Matrix Parsing Remote Code Execution Vulnerability 2011-06-29 |
| ZDI-11-232: HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability 2011-07-01 |
| ZDI-11-233: Symantec Web Gateway forget.php SQL Injection Vulnerability 2011-07-07 |
| ZDI-11-234: Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability 2011-07-11 |
| ZDI-11-235: TrendMicro Control Manager CASProcessor.exe BLOB Remote Code Execution Vulnerability 2011-07-12 |
| ZDI-11-236: EMC Documentum eRoom Indexing Server OpenText HummingBird Connector Remote Code Execution Vulnerability 2011-07-18 |
| ZDI-11-237: CA Total Defense Suite Gateway Security Malformed HTTP Packet Remote Code Execution Vulnerability 2011-07-20 |
| ZDI-11-238: Oracle Secure Backup validate_login Command Injection Remote Code Execution Vulnerability 2011-07-21 |
| ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution Vulnerability 2011-07-27 |
| ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability 2011-07-27 |
| ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution Vulnerability 2011-07-27 |
| ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability 2011-07-27 |
| ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability 2011-07-27 |
| ZDI-11-244: (0day) FlexNet License Server Manager lmadmin Remote Code Execution Vulnerability 2011-07-28 |
| ZDI-11-245: Sybase Adaptive Server Backup and Monitor Server Translation Array Remote Code Execution Vulnerability 2011-07-29 |
| ZDI-11-246: Sybase Adaptive Server Backup and Monitor Server NULL Write Remote Code Execution Vulnerability 2011-07-29 |
| ZDI-11-247: Microsoft Internet Explorer XSLT SetViewSlave Remote Code Execution Vulnerability 2011-08-09 |
| ZDI-11-248: Microsoft Internet Explorer 9 STYLE Object Parsing Remote Code Execution Vulnerability 2011-08-09 |
| ZDI-11-249: (Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability 2011-08-09 |
| ZDI-11-250: Apple QuickTime STTS atom Remote Code Execution Vulnerability 2011-08-09 |
| ZDI-11-251: Apple QuickTime STSS atom Parsing Remote Code Execution Vulnerability 2011-08-09 |
| ZDI-11-252: Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability 2011-08-12 |
| ZDI-11-253: Adobe Flash Player BitmapData.scroll Integer Overflow Remote Code Execution Vulnerability 2011-08-12 |
| ZDI-11-254: Apple QuickTime 'trun' atom sampleCount Integer Overflow Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-255: Apple QuickTime Player H.264 Reference Picture List Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-256: Apple QuickTime Media Link src Parameter Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-257: Apple QuickTime Player H.264 Slice Header Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-258: Apple QuickTime STSC atom Parsing Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-259: Apple QuickTime STSZ atom Parsing Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-260: Nortel Media Application Server cstore.exe cs_anams Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-261: HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-262: Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-265: RealNetworks Realplayer QCP Parsing Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-266: RealNetworks RealPlayer Advanced Audio Coding Element Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-267: RealNetworks Realplayer MP3 ID3 tags Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-268: RealNetworks RealPlayer SWF DefineFont Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-269: RealNetworks RealPlayer Cross-Zone Scripting Remote Code Execution Vulnerability 2011-08-16 |
| ZDI-11-270: Mozilla Firefox SVGTextElement.getCharNumAtPosition Remote Code Execution Vulnerability 2011-08-17 |
| ZDI-11-271: Mozilla Firefox appendChild DOM Tree Inconsistency Remote Code Execution Vulnerability 2011-08-17 |
| ZDI-11-272: (0day) FlexNet License Server Manager Remote Code Execution Vulnerability 2011-08-17 |
| ZDI-11-273: EMC Autostart Domain Name Logging Remote Code Execution Vulnerability 2011-08-23 |
| ZDI-11-274: EMC Autostart ftAgent Opcode 0x140 Parsing Remote Code Execution Vulnerability 2011-08-23 |
| ZDI-11-275: EMC Autostart ftAgent Opcode 0x11 Parsing Remote Code Execution Vulnerability 2011-08-23 |
| ZDI-11-276: Adobe Flash Player MP4 sequenceParameterSetNALUnit Remote Code Execution Vulnerability 2011-08-23 |
| ZDI-11-277: Apple QuickTime 3g2 'mp4v' atom size Remote Code Execution Vulnerability 2011-08-31 |
| ZDI-11-278: Novell Cloud Manager Insufficient Framework User Validation Vulnerability 2011-09-02 |
| ZDI-11-279: (0day) Witness Systems eQuality Unify Remote Code Execution Vulnerability 2011-09-02 |
| ZDI-11-287 : Internet Explorer Select Element Cache Remote Code Execution Vulnerability 2011-10-15 |
| ZDI-11-288 : Microsoft Internet Explorer Select Element Insufficient,Type Checking Remote Code Execution Vulnerability 2011-10-17 |
| ZDI-11-289 : Microsoft Internet Explorer swapNode Handling Remote Code,Execution Vulnerability 2011-10-17 |
| ZDI-11-290 : Microsoft Internet Explorer SetExpandedClipRect Remote,Code Execution Vulnerability 2011-10-17 |
| ZDI-11-295 : Apple QuickTime FlashPix JPEG Tables Selector Remote Code Execution Vulnerability 2011-10-18 |
| ZDI-11-296 : Adobe Reader BMP Image RLE Decoding Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-297 : Adobe Reader U3D PCX Parsing Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-298 : Adobe Reader U3D IFF RGBA Parsing Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-299 : Adobe Reader PICT Parsing Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-300 : Adobe Reader U3D PICT 10h Encoding Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-301 : Adobe Reader U3D PICT 0Eh Encoding Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-302 : Adobe Reader U3D TIFF Resource Buffer Overflow Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-303 : Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-304 : Apple Quicktime Advanced Audio Codec Frame Parsing Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-305 : Oracle Java Applet Rhino Script Engine Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-306 : Oracle Java IIOP Deserialization Type Confusion Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-307 : Oracle Java MixerSequencer.nAddControllerEventCallback Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-308 : Cisco WebEx Player ATAS32.DLL linesProcessed Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-309 : Novell iPrint Client nipplib.dll GetDriverSettings Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-310 : Adobe Reader Compound Glyph Index Sign Extension Remote Code Execution Vulnerability 2011-10-26 |
| ZDI-11-311 : Apple Quicktime Empty URL Data Handler Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-312 : Apple QuickTime Atom Hierarachy Argument Size Mismatch Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-313 : Apple QuickTime FLC RLE Packet Count Decompression Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-314 : Apple Quicktime PnPixPat PatType 3 Parsing Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-316 : Apple QuickTime H264 Matrix Conversion Remote Code Execution Vulnerability 2011-10-27 |
| ZDI-11-329 : InduSoft WebStudio CEServer Operation 0x15 Remote Code Execution Vulnerability 2011-11-16 |
| ZDI-11-330 : InduSoft WebStudio Unauthenticated Remote Operations Remote Code Execution Vulnerability 2011-11-16 |
| ZDI-11-331 : RealNetwork RealPlayer MPG Width Integer Underflow Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-332 : RealNetworks RealPlayer Malformed AAC File Parsing Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-333 : RealNetworks RealPlayer ATRC Code Data Parsing Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-334 : RealNetworks RealPlayer genr Sample Size Parsing Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-335 : RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-336 : RealNetworks RealPlayer Invalid Codec Name Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-337 : RealNetworks RealPlayer RV30 Uninitialized Index Value Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-338 : RealNetworks RealPlayer IVR MLTI Chunk Length Parsing Remote Code Execution Vulnerability 2011-11-28 |
| ZDI-11-340 : Apple Quicktime Font Table Signed Length Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-341 : Cisco WebEx Player WRF Type 0 Parsing Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-342 : Novell ZENworks Asset Management Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-343 : RealNetworks RealPlayer mp4arender esds channel count Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-344 : RealNetworks RealPlayer RV20 Decoding Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-345 : TrendMicro Control Manager CmdProcessor.exe AddTask Remote Code Execution Vulnerability 2011-12-07 |
| ZDI-11-346 : Microsoft Office 2007 Office Art Shape Record Hierarchy Parsing Remote Code Execution Vulnerability 2011-12-13 |
| ZDI-11-347 : Microsoft Office Word Hidden Border Remote Code Execution Vulnerability 2011-12-13 |
| ZDI-11-348 : HP OpenView NNM nnmRptConfig.exe nameParams Remote Code Execution Vulnerability 2011-12-13 |
| ZDI-11-350 : Enterasys NetSight nssyslogd PRI Remote Code Execution Vulnerability 2011-12-19 |
| ZDI-11-351 : WellinTech KingView HistoryServer.exe Opcode 3 Parsing Remote Code Execution Vulnerability 2011-12-22 |
| ZDI-11-352 : HP Managed Printing Administration jobAcct Multiple Vulnerabilities 2011-12-22 |
| ZDI-11-353 : HP Managed Printing Administration MPAUploader.dll Remote Code Execution Vulnerability 2011-12-22 |
| ZDI-11-354 : HP Managed Printing Administration jobDelivery Multiple Vulnerabilities 2011-12-22 |
| ZDI-12-001 : HP Managed Printing Administration img_id Multiple Vulnerabilities 2012-01-05 |
| ZDI-12-002 : HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-003 : HP OpenView NNM webappmon.exe parameter Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-004 : Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-005 : Apple Quicktime RLE BGRA Decoding Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-007 : Novell Netware XNFS.NLM STAT Notify Remote Code Execution Vulnerability 2012-01-05 |
| ZDI-12-008 : Citrix Provisioning Services streamprocess.exe vDisk Name Parsing Remote Code Execution Vulnerability 2012-01-10 |
| ZDI-12-009 : Citrix Provisioning Services Stream Service 0x40020000 Remote Code Execution Vulnerability 2012-01-10 |
| ZDI-12-010 : Citrix Provisioning Services Stream Service 0x40020006 Remote Code Execution Vulnerability 2012-01-10 |
| ZDI-12-011 : Novell Netware XNFS caller_name xdrDecodeString Remote Code Execution Vulnerability 2012-01-10 |
| ZDI-12-012 : (0Day) McAfee SaaS myCIOScn.dll ShowReport Method Remote Command Execution 2012-01-12 |
| ZDI-12-013 : HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution Vulnerability 2012-01-12 |
| ZDI-12-014 : HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution Vulnerability 2012-01-12 |
| ZDI-12-015 : (0Day) HP StorageWorks P2000 G3 Directory Traversal and Default Account Vulnerabilities 2012-01-12 |
| ZDI-12-016 : (0Day) HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability 2012-01-12 |
| ZDI-12-017 : Oracle Outside In OOXML Relationship Tag Parsing Remote Code Execution Vulnerability 2012-01-20 |
| ZDI-12-018 : Symantec PCAnywhere awhost32 Remote Code Execution Vulnerability 2012-01-25 |
| ZDI-12-019 : IBM SPSS mraboutb.dll ActiveX Control SetLicenseInfoEx Method Remote Code Execution Vulnerability 2012-01-30 |
| ZDI-12-021 : Adobe Reader BMP Resource Signedness Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-022 : Total Defense Suite UNC Management Console ExportReport SQL Injection Vulnerability 2012-02-08 |
| ZDI-12-023 : Total Defense Suite UNC Management Web Service Database Credentials Disclosure Vulnerability 2012-02-08 |
| ZDI-12-024 : Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Injection Vulnerability 2012-02-08 |
| ZDI-12-025 : EMC Networker indexd.exe Opcode 0x01 Parsing Remote Code Execution 2012-02-08 |
| ZDI-12-026 : IBM SPSS ExportHTML.dll ActiveX Control Render Method Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-027 : IBM SPSS VsVIEW6.ocx ActiveX Control SaveDoc Method Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-028 : IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control Multiple Remote Code Execution Vulnerabilities 2012-02-08 |
| ZDI-12-029 : IBM Rational Rhapsody BBFlashBack.Recorder.1 InsertMarker Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-030 : IBM Rational Rhapsody BBFlashBack.Recorder.1 TestCompatibilityRecordMode Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-031 : Novell iPrint Server attributes-natural-language Remote Code Execution Vulnerability 2012-02-08 |
| ZDI-12-032 : Oracle Java Runtime Environment readMabCurveData Integer Overflow Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-034 : Microsoft Windows Media Player ASX Meta-File Parsing Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-035 : Microsoft Internet Explorer CDispNode t:MEDIA Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-036 : Microsoft Internet Explorer VML CDispScroller Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-037 : Oracle Java Web Start JNLP Double Quote Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-038 : Oracle Java JavaFX Arbitrary Argument Remote Code Execution Vulnerability 2012-02-22 |
| ZDI-12-039 : Oracle Java Web Start java-vm-args Command Argument Injection Remote Code Execution 2012-02-22 |
| ZDI-12-075 : Apple Quicktime RLE Sample Decoding Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-076 : Apple QuickTime MPEG Stream Padding Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-077 : Apple QuickTime QTVR QTVRStringAtom Parsing Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-078 : Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution 2012-06-06 |
| ZDI-12-079 : Apple QuickTime H264 Picture Width Parsing Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-080 : Adobe Flash Player MP4 Stream Decoding Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-081 : Oracle Java GlueGen Arbitrary Native Library Loading Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-083 : Oracle Java OpenAL Library Pointer Manipulation Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-084 : RealNetworks RealPlayer RV10 Encoded Height/Width Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-085 : RealNetworks RealPlayer dmp4 esds Width Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-086 : RealNetworks RealPlayer rvrender RMFF Flags Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-087 : RealNetworks RealPlayer raac.dll stsz Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-089 : HP DataDirect OpenAccess GIOP Parsing Remote Code Execution Vulnerability 2012-06-06 |
| ZDI-12-090 : Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability 2012-06-08 |
| ZDI-12-091 : Symantec Web Gateway upload_file Remote Code Execution Vulnerability 2012-06-08 |
| ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability 2012-06-08 |
| ZDI-12-093 : (Pwn2Own) Microsoft Internet Explorer Fixed Table Colspan Remote Code Execution Vulnerability 2012-06-12 |
| ZDI-12-094 : RealNetworks Helix Server rn5auth Credential Parsing Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-095 : Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-096 : HP Data Protector Express Opcode 0x330 Parsing Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-097 : HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-098 : AOL Products dnUpdater ActiveX Uninitialized Pointer Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-099 : DataDirect OpenAccess oaagent.exe GIOP Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability 2012-06-21 |
| ZDI-12-101 : IBM Cognos tm1admsd.exe Multiple Operations Remote Code Execution Vulnerabilities 2012-06-27 |
| ZDI-12-102 : Novell iPrint Client nipplib.dll GetDriverSettings realm Remote Code Execution Vulnerability 2012-06-27 |
| ZDI-12-103 : Apple Quicktime Dataref URI Buffer Remote Code Execution 2012-06-27 |
| ZDI-12-104 : SAP Netweaver ABAP msg_server.exe Parameter Value Remote Code Execution Vulnerability 2012-06-27 |
| ZDI-12-105 : Apple Quicktime Text Track Descriptor Parsing Remote Code Execution 2012-06-27 |
| ZDI-12-106 : Avaya IP Office Customer Call Reporter ImageUpload Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-107 : Apple Quicktime TeXML Style Element Parsing Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-108 : Apple Quicktime TeXML sampleData Element Parsing Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-109 : Apple Quicktime TeXML Karaoke Element Parsing Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-110 : Mozilla Firefox AttributeChildRemoved Use-After-Free Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-111 : SAP Netweaver ABAP msg_server.exe Opcode 0x43 Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-112 : SAP Netweaver ABAP msg_server.exe Parameter Name Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-113 : IBM Rational ClearQuest CQOle ActiveX Control Remote Code Execution Vulnerability 2012-06-28 |
| ZDI-12-114 : HP OpenView Performance Agent coda.exe Opcode 0x34 Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-115 : HP OpenView Performance Agent coda.exe Opcode 0x8C Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-116 : EMC AutoStart ftAgent Opcode 50 Subcode 04 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-117 : EMC AutoStart ftAgent Opcode 50 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-118: EMC AutoStart ftAgent Opcode 0x03 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-119: EMC AutoStart ftAgent Opcode 0x41 Subcode 0x00 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-120: EMC AutoStart ftAgent Opcode 85 Subcode 22 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-121: EMC AutoStart ftAgent Opcode 85 Subcode 01 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-122: EMC AutoStart ftAgent Opcode 65 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-123: EMC AutoStart ftAgent Opcode 50 Subcode 60 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-124: EMC AutoStart ftAgent Opcode 50 Subcode 42 Parsing Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-125: Apple Quicktime QTPlugin SetLanguage Remote Code Execution Vulnerability 2012-07-12 |
| ZDI-12-126 : (0 day) HP StorageWorks File Migration Agent RsaCIFS.dll Remote Code Execution Vulnerability 2012-07-18 |
| ZDI-12-127 : (0Day) HP StorageWorks File Migration Agent RsaFTP.dll Remote Code Execution Vulnerability 2012-07-18 |
| ZDI-12-136 : Apple QuickTime Invalid Public Movie Atom Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-137 : Apple Mac OS X libsecurity_cdsa_plugin Malloc Integer Truncation Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-138 : SAP Business Objects Financial Consolidation CtAppReg.dll username Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-139 : SAP Crystal Reports crystalras.exe OBUnmarshal Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-140 : McAfee SmartFilter Administration Server SFAdminSrv.exe JBoss RMI Remote Code Execution Vulnerabilty 2012-08-17 |
| ZDI-12-141 : Microsoft .NET Framework Clipboard Unsafe Memory Access Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-142 : Oracle Java WebStart Browser Argument Injection Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-143 : Microsoft Visio DWGDP MTEXT Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-144 : EMC AutoStart ftAgent Opcode 0x4B Subcode 0x1D4C Parsing Remote Code Execution Vulnerability 2012-08-17 |
| ZDI-12-145 : Symantec Endpoint Protection SemSvc.exe AgentServlet Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-146 : Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-147 : WebKit ContentEditable swapInNode Use-After-Free Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-148 : GE Proficy Real-Time Information Portal Remote Interface Service Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-149 : Cisco AnyConnect VPN Client Verification Bypass Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-150 : Oracle Outside In XPM Processing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-151 : Oracle Outside In Excel File TxO Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-152 : Oracle Outside In Excel MergeCells Record Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-153 : Apple QuickTime sean Atom Size Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-155 : InduSoft Thin Client ISSymbol InternationalOrder Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-156 : Cisco AnyConnect VPN Client Arbitrary Program Instantiation Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-157 : Microsoft Excel Series Record Parsing Type Mismatch Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-158 : Microsoft Internet Explorer MSADO CacheSize Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-160 : EMC AutoStart ftAgent Opcode 0x14 Subcode 0x7F8 Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-161 : EMC AutoStart ftAgent Opcode 0x2d Subcode 0x1194 Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-164 : (0Day) HP Intelligent Management Center img.exe Integer Wrap Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-165 : (0Day) HP Operations Agent for NonStop Server HEALTH Packet Parsing Remote Code Execution Vulnerability 2012-08-22 |
| ZDI-12-167 : (0Day) Novell File Reporter NFRAgent.exe VOL Tag Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-168 : InduSoft Thin Client ISSymbol InternationalSeparator Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-169 : GE Proficy Historian KeyHelp ActiveX LaunchTriPane Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-170 : (0Day) HP Application Lifecycle Management XGO.ocx ActiveX Control Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-171 : (0Day) Hewlett-Packard Intelligent Management Center UAM sprintf Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-172 : (0Day) HP Operations Orchestration RSScheduler Service JDBC Connector Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-173 : (0Day) HP SiteScope SOAP Call getSiteScopeConfiguration Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-174 : (0Day) HP SiteScope UploadFilesHandler Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-175 : (0Day) HP SiteScope SOAP Call create Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-176 : (0Day) HP SiteScope SOAP Call getFileInternal Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-177 : (0Day) HP SiteScope SOAP Call loadFileContent Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-178 : (0Day) HP SiteScope SOAP Call update Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-179 : EMC ApplicationXtender Desktop Viewer AEXView ActiveX AnnoSave Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-180 : Novell ZENWorks AdminStudio ISGrid.dll ActiveX Remote Code Execution Vulnerability 2012-08-29 |
| ZDI-12-182 : EMC AppXtender WxSuperCtrl650.ocx ActiveX Control Remote Code Execution Vulnerability 2012-08-29 |
| ZendStudio IDE v13.5.1 Privilege Escalation 2016-10-12 |
| Zenphoto 1.4.10 Local File Inclusion 2015-12-02 |
| Zenphoto 1.4.10 XSS Vulnerability 2015-12-01 |
| zFtp Server <= 2011-04-13 | "STAT,CWD" Remote Denial of Service Vulnerability 2011-10-25 |
| zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal 2011-12-10 |
| Zhone ADSL2+ 4P Bridge & Router (Broadcom) - Multiple Vulnerabilities 2015-09-03 |
| Zimbra Collaboration Suite (ZCS) Session Replay Vulnerability 2013-09-13 |
| Zimbra Cross-Site Scripting vulnerabilities 2016-02-25 |
| ZMS v3.2 CMS - Multiple Client Side Cross Site Scripting Web Vulnerabilities 2016-07-29 |
| ZOHO ManageEngine ADSelfService Plus Administrative Access 2011-10-11 |
| Zoll ePCR v2.6.4 iOS - Multiple Persistent Vulnerabilities 2016-08-02 |
| Zoll Checklist v1.2.2 iOS - Multiple Persistent Vulnerabilities 2016-07-28 |
| Zoner Photo Studio v15 b3 - Buffer Overflow Vulnerabilities 2012-11-13 |
| Zones Web Solution (index.php?manufacturers_id) Remote SQL injection Vulnerability 2011-07-26 |
| Zones Web Solution (status.asp?print) (search_result.php?loc_id) Remote SQL injection Vulnerabilities 2011-07-28 |
| Zones Web Solution (StoneDetails.php?stone) XSS Vulnerability 2011-07-28 |
| Zope Management Interface CSRF vulnerabilities 2015-10-07 |
| Zortam Media Studio 20.60 - Buffer Overflow Vulnerability 2016-07-28 |
| ZTE 831CII Multiple Vulnerablities 2014-11-06 |
| ZTE Datacard MF19 0V1.0.0B PCW - Multiple Vulnerabilities 2015-01-06 |
| ZTE Datacard PCW(Telecom MF180) - Multiple Software Vulnerabilities 2015-01-12 |
| ZTE GPON F427 and possibly F460/F600 - authorization bypass and cleartext password storage 2015-10-02 |
| ZTE Ucell 3G Modem App - Privilege Escalation Vulnerability 2014-12-25 |
| ZTE ZXDSL 831 Multiple Cross Site Scripting 2014-11-06 |
| ZTE ZXDSL 831CII Direct Object Reference 2014-11-06 |
| ZyXel WAP3205 v1 Multiple XSS 2016-01-23 |