AmnPardaz

12 exploits Active since Sep 2009
CVE-2010-4894 EXPLOITDB text WRITEUP
chillyCMS 1.1.3 - SQL Injection
SQL injection vulnerability in core/showsite.php in chillyCMS 1.1.3 allows remote attackers to execute arbitrary SQL commands via the name parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-112718 EXPLOITDB text WRITEUP
Tinypug 0.9.5 - Cross-Site Request Forgery (Password Change)
EIP-2026-109302 EXPLOITDB text WORKING POC
Mambo Module MOStlyCE 2.4 Image Manager Utility - Arbitrary File Upload
CVE-2008-7213 EXPLOITDB text WORKING POC
MOStlyCE <2.4 - XSS
Cross-site scripting (XSS) vulnerability in mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/connector.php in MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to inject arbitrary web script or HTML via the Command parameter.
EIP-2026-108743 EXPLOITDB text WORKING POC
Joomla! Component joomlacontenteditor 2.0.10 - Multiple Vulnerabilities
EIP-2026-107419 EXPLOITDB html WORKING POC
GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting / Arbitrary File Upload
CVE-2010-4895 EXPLOITDB text WRITEUP
chillyCMS 1.1.3 - XSS
Cross-site scripting (XSS) vulnerability in core/showsite.php in chillyCMS 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the username field). NOTE: some of these details are obtained from third party information.
EIP-2026-105543 EXPLOITDB text WRITEUP
BloofoxCMS 0.3 - Multiple Input Validation Vulnerabilities
EIP-2026-104916 EXPLOITDB text WRITEUP
ACollab - Multiple Vulnerabilities
EIP-2026-100614 EXPLOITDB text WRITEUP
Web Wiz (Multiple Products) - Remote Information Disclosure
EIP-2026-100170 EXPLOITDB text WRITEUP
Blaze Apps - Multiple Vulnerabilities
EIP-2026-100325 EXPLOITDB text WORKING POC
Ferdows CMS Pro 1.1.0 - Multiple Vulnerabilities