ByEge

10 exploits Active since Jan 2015
CVE-2014-100029 EXPLOITDB WORKING POC
Ganesha Digital Library - Path Traversal
Multiple directory traversal vulnerabilities in class/session.php in Ganesha Digital Library (GDL) 4.2 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) newlang or (2) newtheme parameter.
CVE-2014-100030 EXPLOITDB WORKING POC
Ganesha Digital Library - XSS
Cross-site scripting (XSS) vulnerability in module/search/function.php in Ganesha Digital Library (GDL) 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action.
EIP-2026-114252 EXPLOITDB text WORKING POC
WordPress Plugin wp-FileManager - 'path' Arbitrary File Download
EIP-2026-114253 EXPLOITDB text WORKING POC
WordPress Plugin wp-FileManager - Arbitrary File Download
EIP-2026-113328 EXPLOITDB text WRITEUP
Webloader 8 - SQL Injection
EIP-2026-113327 EXPLOITDB text WORKING POC
Webloader 7 < 8 - 'vid' SQL Injection
EIP-2026-108519 EXPLOITDB text WORKING POC
Joomla! Component com_rsfiles - 'cid' SQL Injection
EIP-2026-108429 EXPLOITDB text WRITEUP
Joomla! Component com_lead - SQL Injection
EIP-2026-108321 EXPLOITDB text WORKING POC
Joomla! Component com_crowdsource - SQL Injection
CVE-2014-100031 EXPLOITDB text WORKING POC
Ismail Fahmi Ganesha Digital Library - SQL Injection
Multiple SQL injection vulnerabilities in Ganesha Digital Library (GDL) 4.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) download.php or (2) main.php.