David Sopas

4 exploits Active since Sep 2008
EIP-2026-111497 EXPLOITDB text WORKING POC
PrestaShop 1.5.1 - Persistent Cross-Site Scripting
CVE-2008-6979 EXPLOITDB text WORKING POC
Phpadultsite Cms - XSS
Cross-site scripting (XSS) vulnerability in as_archives.php in phpAdultSite CMS, possibly 2.3.2, allows remote attackers to inject arbitrary web script or HTML via the results_per_page parameter to index.php. NOTE: some of these details are obtained from third party information. NOTE: this issue might be resultant from a separate SQL injection vulnerability.
CVE-2009-3215 EXPLOITDB text WRITEUP
Php-shop-system Ixxo Cart < 3.9.6.0 - SQL Injection
SQL injection vulnerability in IXXO Cart Standalone before 3.9.6.1, and the IXXO Cart component for Joomla! 1.0.x, allows remote attackers to execute arbitrary SQL commands via the parent parameter.
CVE-2008-4328 EXPLOITDB text WORKING POC
Easyrealtorpro - SQL Injection
SQL injection vulnerability in site_search.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the (1) item, (2) search_ordermethod, and (3) search_order parameters.