Ashiyane Digital Security Team

78 exploits Active since Jun 2005
CVE-2012-6653 EXPLOITDB text WORKING POC
All Video Gallery <1.2.0 - Info Disclosure
Unspecified vulnerability in the All Video Gallery (all-video-gallery) plugin before 1.2.0 for WordPress has unspecified impact and attack vectors.
EIP-2026-113570 EXPLOITDB text WORKING POC
WordPress Plugin aspose-doc-exporter 1.0 - Arbitrary File Download
EIP-2026-113633 EXPLOITDB php WORKING POC
WordPress Plugin cnhk-Slideshow - Arbitrary File Upload
CVE-2014-9119 EXPLOITDB text WORKING POC
DB Backup plugin <4.5 - Path Traversal
Directory traversal vulnerability in download.php in the DB Backup plugin 4.5 and earlier for Wordpress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
EIP-2026-113714 EXPLOITDB text WRITEUP
WordPress Plugin Eco-annu - 'eid' SQL Injection
EIP-2026-113753 EXPLOITDB text WORKING POC
WordPress Plugin FireStorm Professional Real Estate 2.06.01 - SQL Injection
EIP-2026-113760 EXPLOITDB text WORKING POC
WordPress Plugin FLV Player - 'id' SQL Injection
EIP-2026-113791 EXPLOITDB text WORKING POC
WordPress Plugin Global Flash Gallery - 'swfupload.php' Arbitrary File Upload
CVE-2013-5961 EXPLOITDB text WRITEUP
Lazy SEO 1.1.9 - Unauthenticated Arbitrary File Upload and Remote Code Execution via lazyseo.php
Unrestricted file upload vulnerability in lazyseo.php in the Lazy SEO plugin 1.1.9 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in lazy-seo/.
EIP-2026-113910 EXPLOITDB text WRITEUP
WordPress Plugin mukioplayer4wp - 'cid' SQL Injection
EIP-2026-113945 EXPLOITDB php WORKING POC
WordPress Plugin page-flip-image-gallery - Arbitrary File Upload
EIP-2026-113955 EXPLOITDB php WORKING POC
WordPress Plugin PhotoSmash Galleries - 'bwbps-uploader.php' Arbitrary File Upload
EIP-2026-113957 EXPLOITDB text WRITEUP
WordPress Plugin PHP Event Calendar - 'cid' SQL Injection
EIP-2026-113989 EXPLOITDB text WORKING POC
WordPress Plugin ProPlayer 4.7.9.1 - SQL Injection
CVE-2013-6873 EXPLOITDB text WORKING POC
Testa Online Test Management System 2.0.0.2 - SQL Injection via test_id Parameter
SQL injection vulnerability in Testa Online Test Management System (OTMS) 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the test_id parameter.
EIP-2026-112598 EXPLOITDB text WORKING POC
Tequila File Hosting 1.5 - Multiple Vulnerabilities
EIP-2026-112552 EXPLOITDB text WRITEUP
Tainos - Multiple Vulnerabilities
EIP-2026-112611 EXPLOITDB text WRITEUP
TextAds 2.08 Script - Cross-Site Scripting
EIP-2026-112508 EXPLOITDB text WORKING POC
SweetRice 1.5.1 - Backup Disclosure
EIP-2026-112507 EXPLOITDB python WORKING POC
SweetRice 1.5.1 - Arbitrary File Upload
EIP-2026-112506 EXPLOITDB python WORKING POC
SweetRice 1.5.1 - Arbitrary File Download
EIP-2026-112097 EXPLOITDB text WORKING POC
Simple Forum PHP 2.4 - SQL Injection
EIP-2026-112096 EXPLOITDB html WORKING POC
Simple Forum PHP 2.4 - Cross-Site Request Forgery (Edit Options)
EIP-2026-112065 EXPLOITDB text WORKING POC
Simple Blog PHP 2.0 - Multiple Vulnerabilities
EIP-2026-112066 EXPLOITDB text WORKING POC
Simple Blog PHP 2.0 - SQL Injection