Danny Moules

6 exploits Active since Jan 2009
CVE-2011-2944 EXPLOITDB ruby WORKING POC
The Uploader < 2.0.4 - SQL Injection via Username Parameter
SQL injection vulnerability in login.php in MegaLab The Uploader before 2.0.5 allows remote attackers to execute arbitrary SQL commands via the username parameter.
EIP-2026-111688 EXPLOITDB text WRITEUP
RCBlog 1.03 - Authentication Bypass
EIP-2026-112042 EXPLOITDB php WORKING POC
Silentum Uploader 1.4.0 - Remote File Deletion
EIP-2026-110918 EXPLOITDB text WRITEUP
phpads 2.0 - Multiple Vulnerabilities
EIP-2026-109937 EXPLOITDB text WORKING POC
Ninja Blog 4.8 - Cross-Site Request Forgery/HTML Injection
CVE-2009-0325 EXPLOITDB text WORKING POC
Ninja Blog 4.8 - Path Traversal via Cat Parameter
Directory traversal vulnerability in entries/index.php in Ninja Blog 4.8, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the cat parameter.