This module exploits a vulnerability in Panda Antivirus, executing crafted files witout checking.

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys)

A Memory corruption vulnerability exists in the Windows Client DHCP service when an attacker sends specially crafted DHCP responses to a client.

XMPlay 3.8.3 allows remote attackers to execute arbitrary code via a crafted http:// URL in a .m3u file.

D-Link Central WiFiManager FTP Server is vulnerable to an unauthenticated php remote file inclusion, allowing attackers to execute arbitrary php code in the system.

CMS Made Simple is vulnerable to an authenticated php command injection, allowing attackers to execute arbitrary php code in the system.

Advantech WebAccess Node is vulnerable to an unauthenticated remote file inclusion, allowing attackers to execute arbitrary code in the system.

phpMyAdmin is vulnerable to an authenticated php local file inclusion, allowing attackers to execute arbitrary php code in the system.

This module exploits a buffer overflow vulnerability in PCMan FTP Server. This vulnerability can be exploited remotely by sending a specially crafted USER command to port TCP/21.