Advanced Management For Services Sites remote add administrator exploit.

DL_Stats suffers from cross site scripting, arbitrary administrative access and remote SQL injection vulnerabilities.

Sysax Multi Server add administrator exploit.

PageDirector CMS suffers from add administrator and remote SQL injection vulnerabilities.

Web@All versions 1.1 and below remote administrative settings changing exploit.

Simple PHP Newsletter suffers from a remote administrative password changing vulnerability when the install script is left in place.

WESPA PHP Newsletter version 3.0 suffers from a remote administrative password changing vulnerability when the install script is left in place.

Izlebizi Video Script remote add administrator account exploit.

112 bytes small Win32/PerfectXp-pc1/sp3 (Tr) add administrator shellcode.

ZOHO ManageEngine ADSelfService Plus version 4.5 Build 4521 suffers from an authentication bypass vulnerability.

Weboptima CMS suffers from add administrator and remote shell upload vulnerabilities.

Traidnt Upload 3 add administrator exploit that leverages cookie manipulation.

Desktop Central versions 7 and forward suffer from an add administrator vulnerability.

SanyBee Gallery versions 0.2.9 and 0.2.10 suffer from cross site scripting and add administrator vulnerabilities.

MySQL Lite Administrator version Beta 1 suffers from multiple cross site scripting vulnerabilities.

phpLiteAdmin version 1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

JSPMySQL Administrador version 1 suffers from cross site request forgery and cross site scripting vulnerabilities.

SPIP CMS versions 2.x and 3.x suffer from unauthenticated add administrator and arbitrary file upload vulnerabilities.