Charalambous Glafkos

8 exploits Active since Aug 2008
EIP-2026-117696 EXPLOITDB text WORKING POC
No-IP DUC Client for Windows - Local Information Disclosure
CVE-2008-5336 EXPLOITDB text WORKING POC
WebStudio CMS - SQL Injection via pageid Parameter
SQL injection vulnerability in index.php in WebStudio CMS allows remote attackers to execute arbitrary SQL commands via the pageid parameter.
CVE-2008-6278 EXPLOITDB text WORKING POC
RakhiSoftware Shopping Cart - Cross-Site Scripting via category_id and subcategory_id Parameters
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.
CVE-2008-6279 EXPLOITDB text WRITEUP
RakhiSoftware Shopping Cart - Exposure of Sensitive Information via Invalid PHPSESSID Cookie
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message.
CVE-2008-3754 EXPLOITDB WORKING POC
YourFreeWorld Stylish Text Ads Script - SQL Injection
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-100460 EXPLOITDB text WRITEUP
Ocean12 (Multiple Products) - 'Admin_ID' SQL Injection
EIP-2026-100462 EXPLOITDB text WORKING POC
Ocean12 FAQ Manager Pro - 'Keyword' Cross-Site Scripting
CVE-2008-5978 EXPLOITDB text WRITEUP
Ocean12 Mailing List Manager Gold - SQL Injection
Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote attackers to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp.