ByEge

10 exploits Active since Jan 2015
CVE-2014-100029 EXPLOITDB WORKING POC
Ganesha Digital Library 4.2 - Path Traversal via Newlang or Newtheme Parameter
Multiple directory traversal vulnerabilities in class/session.php in Ganesha Digital Library (GDL) 4.2 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) newlang or (2) newtheme parameter.
CVE-2014-100030 EXPLOITDB WORKING POC
Ganesha Digital Library 4.2 - Cross-Site Scripting via Search Module Keyword Parameter
Cross-site scripting (XSS) vulnerability in module/search/function.php in Ganesha Digital Library (GDL) 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action.
EIP-2026-114252 EXPLOITDB text WORKING POC
WordPress Plugin wp-FileManager - 'path' Arbitrary File Download
EIP-2026-114253 EXPLOITDB text WORKING POC
WordPress Plugin wp-FileManager - Arbitrary File Download
EIP-2026-113328 EXPLOITDB text WRITEUP
Webloader 8 - SQL Injection
EIP-2026-113327 EXPLOITDB text WORKING POC
Webloader 7 < 8 - 'vid' SQL Injection
EIP-2026-108519 EXPLOITDB text WORKING POC
Joomla! Component com_rsfiles - 'cid' SQL Injection
EIP-2026-108429 EXPLOITDB text WRITEUP
Joomla! Component com_lead - SQL Injection
EIP-2026-108321 EXPLOITDB text WORKING POC
Joomla! Component com_crowdsource - SQL Injection
CVE-2014-100031 EXPLOITDB text WORKING POC
Ganesha Digital Library 4.2 - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in Ganesha Digital Library (GDL) 4.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) download.php or (2) main.php.