Adam Baldwin

12 exploits Active since May 2005
EIP-2026-118765 EXPLOITDB text WRITEUP
McAfee Unified Threat Management Firewall 4.0.6 - 'page' Cross-Site Scripting
EIP-2026-112384 EXPLOITDB text WORKING POC
SpiceWorks - 'query' Cross-Site Scripting
CVE-2009-2361 EXPLOITDB text WRITEUP
osTicket <1.6 RC5 - SQL Injection
SQL injection vulnerability in include/class.staff.php in osTicket before 1.6 RC5 allows remote attackers to execute arbitrary SQL commands via the staff username parameter.
EIP-2026-108089 EXPLOITDB text WRITEUP
JForum 2.1.8 - 'Username' Cross-Site Scripting
CVE-2009-1070 EXPLOITDB text WORKING POC
Expressionengine - XSS
Cross-site scripting (XSS) vulnerability in system/index.php in ExpressionEngine 1.6.4 through 1.6.6, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the avatar parameter.
EIP-2026-104292 EXPLOITDB text WRITEUP
JForum 2.1.8 BookMarks - Cross-Site Request Forgery / Cross-Site Scripting
CVE-2010-0713 EXPLOITDB text WORKING POC
Zenoss <2.5 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in Zenoss 2.3.3, and other versions before 2.5, allow remote attackers to hijack the authentication of an administrator for (1) requests that reset user passwords via zport/dmd/ZenUsers/admin, and (2) requests that change user commands, which allows for remote execution of system commands via zport/dmd/userCommands/.
EIP-2026-103999 EXPLOITDB text WORKING POC
Nagios XI - 'users.php' SQL Injection
CVE-2005-1204 EXPLOITDB text WORKING POC
Desktop Rover <3.0 - DoS
Desktop Rover 3.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a crafted packet to TCP port 61427, which causes an invalid memory access.
EIP-2026-103173 EXPLOITDB html WORKING POC
Nagios XI - Multiple Cross-Site Request Forgery Vulnerabilities
EIP-2026-103172 EXPLOITDB text WORKING POC
Nagios XI - 'login.php' Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-102487 EXPLOITDB text WRITEUP
JForum 2.1.8 - 'bookmarks' Module Multiple HTML Injection Vulnerabilities