Deepak Rathore - Security Researcher - Exploit Intelligence Platform

CVE-2006-6199 METASPLOIT ruby WORKING POC

BlazeVideo BlazeDVD Standard and Professional 5.0 - Stack-based Buffer Overflow via PLF Playlist Filename

Stack-based buffer overflow in BlazeVideo BlazeDVD Standard and Professional 5.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long filename in a PLF playlist.

View Code

EIP-2026-116902 EXPLOITDB perl WORKING POC

BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP

View Code

CVE-2014-3992 EXPLOITDB text WORKING POC

Dolibarr ERP/CRM <3.5.3 - SQL Injection

Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) entity parameter in an update action to user/fiche.php or (2) sortorder parameter to user/group/index.php.

View Code

CVE-2014-3247 EXPLOITDB text WORKING POC

Collabtive 1.2 - Authenticated Cross-Site Scripting via Admin Project Description Parameter

Cross-site scripting (XSS) vulnerability in Collabtive 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the desc parameter in an Add project (addpro) action to admin.php.

View Code

CVE-2014-3246 EXPLOITDB text WRITEUP

Collabtive 1.2 - Authenticated SQL Injection via Folder Parameter

SQL injection vulnerability in Collabtive 1.2 allows remote authenticated users to execute arbitrary SQL commands via the folder parameter in a fileview_list action to manageajax.php.

View Code