Crux

7 exploits Active since Jan 2010
CVE-2010-1090 EXPLOITDB text WORKING POC
phpMySite - SQL Injection
SQL injection vulnerability in index.php in phpMySite allows remote attackers to execute arbitrary SQL commands via the action parameter.
CVE-2010-1092 EXPLOITDB text WRITEUP
ScriptsFeed Business Directory Software - SQL Injection
Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the (1) us and (2) ps parameters.
CVE-2010-1361 EXPLOITDB text WRITEUP
PHPepperShop 2.5 - XSS
Cross-site scripting (XSS) vulnerability in shop/USER_ARTIKEL_HANDLING_AUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter.
CVE-2010-1091 EXPLOITDB text WORKING POC
phpMySite - XSS
Multiple cross-site scripting (XSS) vulnerabilities in contact.php in phpMySite allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) city, (3) email, (4) state, and (5) message parameters.
CVE-2010-0321 EXPLOITDB text WORKING POC
Jamit Job Board - XSS
Cross-site scripting (XSS) vulnerability in jobs/index.php in Jamit Job Board 3.0 allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.
EIP-2026-106408 EXPLOITDB text WORKING POC
DELTAScripts PHP Links 1.0 - 'email' Cross-Site Scripting
CVE-2010-1369 EXPLOITDB text WORKING POC
Pre Classified Listings ASP - SQL Injection
SQL injection vulnerability in signup.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the email parameter.