Antu Sanadi

12 exploits Active since Apr 2011
CVE-2012-1006 EXPLOITDB WORKING POC
Apache Struts 2.0.14-2.2.3 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.0.14 and 2.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) lastName parameter to struts2-showcase/person/editPerson.action, or the (3) clientName parameter to struts2-rest-showcase/orders.
EIP-2026-118361 EXPLOITDB python WORKING POC
CiscoKits 1.0 - TFTP Server Directory Traversal
EIP-2026-116028 EXPLOITDB text WRITEUP
Oxide WebServer 2.0.4 - Denial of Service
EIP-2026-114942 EXPLOITDB python WORKING POC
AT-TFTP Server 1.8 - 'Read' Request Remote Denial of Service
EIP-2026-114410 EXPLOITDB text WORKING POC
Xataface WebAuction and Xataface Librarian DB - Multiple Vulnerabilities
EIP-2026-110535 EXPLOITDB text WORKING POC
pecio CMS 2.0.5 - 'target' Cross-Site Scripting
EIP-2026-107709 EXPLOITDB text WRITEUP
iBoutique 4.0 - 'key' SQL Injection
CVE-2011-1668 EXPLOITDB text WRITEUP
AR Web Content Manager <2.3 - XSS
Cross-site scripting (XSS) vulnerability in search.php in AR Web Content Manager (AWCM) 2.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the search parameter.
EIP-2026-105247 EXPLOITDB text WRITEUP
ArticleSetup - Multiple Persistence Cross-Site Scripting / SQL Injections
EIP-2026-105209 EXPLOITDB text WRITEUP
appRain Quick Start Edition Core Edition Multiple 0.1.4-Alpha - Cross-Site Scripting
CVE-2012-1007 EXPLOITDB text WORKING POC
Apache Struts 1.3.10 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 1.3.10 allow remote attackers to inject arbitrary web script or HTML via (1) the name parameter to struts-examples/upload/upload-submit.do, or the message parameter to (2) struts-cookbook/processSimple.do or (3) struts-cookbook/processDyna.do.
CVE-2013-2299 EXPLOITDB text WRITEUP
Advantech Webaccess < 7.0 - XSS
Cross-site scripting (XSS) vulnerability in Advantech WebAccess (formerly BroadWin WebAccess) before 7.1 2013.05.30 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.