Abysssec

89 exploits Active since Feb 2009
EIP-2026-100513 EXPLOITDB text WRITEUP
rainbowportal - Multiple Vulnerabilities
EIP-2026-100482 EXPLOITDB text WRITEUP
Personal.Net Portal - Multiple Vulnerabilities
EIP-2026-100453 EXPLOITDB text WRITEUP
ndCMS - SQL Injection
CVE-2010-3603 EXPLOITDB text WRITEUP
Sourcetreesolutions Mojoportal - CSRF
Cross-site request forgery (CSRF) vulnerability in the file manager service (Services/FileService.ashx) in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of administrators for requests that rename arbitrary files, as demonstrated by causing the user.config file to be moved, leading to a denial of service (service stop) and possibly the exposure of sensitive information.
EIP-2026-100400 EXPLOITDB text WRITEUP
Luftguitar CMS - Upload Arbitrary File
EIP-2026-100381 EXPLOITDB text WRITEUP
jmd-cms - Multiple Vulnerabilities
EIP-2026-100370 EXPLOITDB text WRITEUP
ifnuke - Multiple Vulnerabilities
EIP-2026-100331 EXPLOITDB text WRITEUP
freediscussionforums 1.0 - Multiple Vulnerabilities
EIP-2026-100119 EXPLOITDB text WRITEUP
ASP Nuke - SQL Injection
CVE-2010-3404 EXPLOITDB text WRITEUP
eshtery CMS - SQL Injection
Multiple SQL injection vulnerabilities in eshtery CMS (aka eshtery.com) allow remote attackers to execute arbitrary SQL commands via the (1) Criteria field in an unspecified form related to catlgsearch.aspx or (2) user name to an unspecified form related to adminlogin.aspx.
EIP-2026-100237 EXPLOITDB python WORKING POC
Dana Portal - Remote Change Admin Password
EIP-2026-100153 EXPLOITDB text WRITEUP
AtomatiCMS - Upload Arbitrary File
EIP-2026-100135 EXPLOITDB text WORKING POC
ASPMass Shopping Cart - Arbitrary File Upload / Cross-Site Request Forgery
EIP-2026-100109 EXPLOITDB text WRITEUP
aradblog - Multiple Vulnerabilities