David Sopas

4 exploits Active since Sep 2008
EIP-2026-111497 EXPLOITDB text WORKING POC
PrestaShop 1.5.1 - Persistent Cross-Site Scripting
CVE-2008-6979 EXPLOITDB text WORKING POC
phpadultsite_cms - Cross-Site Scripting via results_per_page Parameter
Cross-site scripting (XSS) vulnerability in as_archives.php in phpAdultSite CMS, possibly 2.3.2, allows remote attackers to inject arbitrary web script or HTML via the results_per_page parameter to index.php. NOTE: some of these details are obtained from third party information. NOTE: this issue might be resultant from a separate SQL injection vulnerability.
CVE-2009-3215 EXPLOITDB text WRITEUP
ixxo_cart < 3.9.6.1 - SQL Injection via Parent Parameter
SQL injection vulnerability in IXXO Cart Standalone before 3.9.6.1, and the IXXO Cart component for Joomla! 1.0.x, allows remote attackers to execute arbitrary SQL commands via the parent parameter.
CVE-2008-4328 EXPLOITDB text WORKING POC
EasyRealtorPRO 2008 - SQL Injection via site_search.php Parameters
SQL injection vulnerability in site_search.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the (1) item, (2) search_ordermethod, and (3) search_order parameters.