Kevin McGuigan VX Search 10.6.18 - 'directory' Local Buffer Overflow
dos windows

Kevin McGuigan Zortam MP3 Media Studio 23.45 - Local Buffer Overflow (SEH)
dos windows

Joseph McDonagh Actiontec C1000A Modem - Backdoor Account
remote hardware

Kevin McGuigan Ipswitch WS_FTP Professional < 12.6.0.3 - Local Buffer Overflow (SEH)
dos windows CVE-2017-16513

Kevin McGuigan PyroBatchFTP 3.17 - Buffer Overflow (SEH)
dos windows CVE-2017-15035

James McLean Bellini/Supercook Wi-Fi Yumi SC200 - Multiple Vulnerabilities
webapps hardware

Andrew McNicol Joomla! 1.5 < 3.4.6 - Object Injection 'x-forwarded-for' Header Remote Code Execution
webapps php 80.0 CVE-2015-8566;CVE-2015-8562;OSVDB-131679

Chris McCurley GoAutoDial CE 3.3-1406088000 - Authentication Bypass / Arbitrary File Upload / Command Injection
webapps php 80.0 CVE-2015-2845;CVE-2015-2844;CVE-2015-2843;CVE-2015-2842;OSVDB-121141;OSVDB-121140;OSVDB-121139

Juttikhun Khamchaiyaphum HP Data Protector 8.x - Remote Command Execution
remote hp-ux CVE-2014-2623;OSVDB-109069

Ciaran McNally Moodle 2.3.8/2.4.5 - Multiple Vulnerabilities
webapps php CVE-2013-4341;OSVDB-97355

Greg McMullin Apache Subversion - Remote Denial of Service
dos linux CVE-2013-1884;OSVDB-92092

Spencer McIntyre Jenkins CI Script Console - Command Execution (Metasploit)
remote multiple

Spencer McIntyre NetWin SurgeFTP - (Authenticated) Admin Command Injection (Metasploit)
remote multiple OSVDB-89105

tommccredie SimpleInvoices invoices Module - Customer Field Cross-Site Scripting
webapps php CVE-2012-4932;OSVDB-88330

Ciaran McNally Sockso 1.51 - Persistent Cross-Site Scripting
webapps php OSVDB-81873;CVE-2012-4267

Spencer McIntyre Liferay XSL - Command Execution (Metasploit)
webapps multiple OSVDB-73652;CVE-2011-1571