FL0RiX

53 exploits Active since Jan 2010
EIP-2026-113343 EXPLOITDB text WORKING POC
WebRCSdiff 0.9 - 'viewver.php' Remote File Inclusion
CVE-2010-4268 EXPLOITDB text WORKING POC
Pulse Infotech Flip Wall (com_flipwall) 1.1 - SQL Injection via catid Parameter
SQL injection vulnerability in the Pulse Infotech Flip Wall (com_flipwall) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
CVE-2010-4272 EXPLOITDB text WORKING POC
Pulse Infotech Sponsor Wall (com_sponsorwall) 1.1 - SQL Injection via catid Parameter
SQL injection vulnerability in the Pulse Infotech Sponsor Wall (com_sponsorwall) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
EIP-2026-108781 EXPLOITDB text WORKING POC
Joomla! Component Map Locator - 'cid' SQL Injection
EIP-2026-108241 EXPLOITDB text WORKING POC
Joomla! Component City Portal - Blind SQL Injection
CVE-2010-4864 EXPLOITDB perl WORKING POC
Club Manager (com_clubmanager) for Joomla! - SQL Injection via cm_id Parameter
SQL injection vulnerability in the Club Manager (com_clubmanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cm_id parameter in an equip presenta action to index.php.
EIP-2026-108380 EXPLOITDB text WRITEUP
Joomla! Component com_intuit - Local File Inclusion
EIP-2026-108254 EXPLOITDB text WRITEUP
Joomla! Component com_adagency - Local File Inclusion
CVE-2010-4853 EXPLOITDB text WORKING POC
chillcreations com_ccinvoices - SQL Injection via id Parameter
SQL injection vulnerability in the ccInvoices (com_ccinvoices) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewInv action to index.php.
EIP-2026-108262 EXPLOITDB text WORKING POC
Joomla! Component com_alfresco - SQL Injection
EIP-2026-108268 EXPLOITDB php WORKING POC
Joomla! Component com_aprice - Blind SQL Injection
CVE-2010-0372 EXPLOITDB text WORKING POC
com_articlemanager - SQL Injection via artid Parameter
SQL injection vulnerability in the Articlemanager (com_articlemanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the artid parameter in a display action to index.php.
CVE-2009-4576 EXPLOITDB text WORKING POC
cmstactics com_beeheard 1.x - SQL Injection via category_id Parameter
SQL injection vulnerability in the BeeHeard (com_beeheard) component 1.x for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a suggestions action to index.php.
CVE-2010-2259 EXPLOITDB text WRITEUP
com_bfsurvey_profree - Path Traversal via Controller Parameter
Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-0157 EXPLOITDB text WRITEUP
JoomlaBibleStudy com_biblestudy 6.1 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Bible Study (com_biblestudy) component 6.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter in a studieslist action to index.php.
EIP-2026-108249 EXPLOITDB text WORKING POC
Joomla! Component com_acmisc - SQL Injection
EIP-2026-108278 EXPLOITDB php WORKING POC
Joomla! Component com_bfsurvey_pro - 'catid' Blind SQL Injection
EIP-2026-108299 EXPLOITDB text WORKING POC
Joomla! Component com_carman - Cross-Site Scripting
CVE-2010-0982 EXPLOITDB text WRITEUP
CARTwebERP <1.56.75 - Path Traversal
Directory traversal vulnerability in the CARTwebERP (com_cartweberp) component 1.56.75 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108307 EXPLOITDB text WRITEUP
Joomla! Component com_clan_members - 'id' SQL Injection
EIP-2026-108319 EXPLOITDB text WORKING POC
Joomla! Component com_countries - SQL Injection
EIP-2026-108323 EXPLOITDB text WORKING POC
Joomla! Component com_dailymeals - Local File Inclusion
EIP-2026-108324 EXPLOITDB text WORKING POC
Joomla! Component com_dashboard - Directory Traversal
EIP-2026-108329 EXPLOITDB text WORKING POC
Joomla! Component com_digistore - SQL Injection
CVE-2010-2255 EXPLOITDB text WORKING POC
Tamlyncreative Com Bfsurvey Profree < 1.3.0 - SQL Injection
SQL injection vulnerability in the BF Survey Pro (com_bfsurvey_pro) component before 1.3.1, BF Survey Pro Free (com_bfsurvey_profree) component 1.2.6, and BF Survey Basic component before 1.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php. NOTE: some of these details are obtained from third party information.