Glafkos Charalambous

28 exploits Active since Jun 2007
EIP-2026-119362 EXPLOITDB ruby WORKING POC
DotNetNuke DNNspot Store 3.0.0 - Arbitrary File Upload (Metasploit)
EIP-2026-119323 EXPLOITDB python WORKING POC
Xitami Web Server 2.5b4 - Remote Buffer Overflow (Egghunter)
EIP-2026-118487 EXPLOITDB python WORKING POC
EasyFTP Server 1.7.0.11 - (Authenticated) Multiple Commands Remote Buffer Overflows
CVE-2010-3128 EXPLOITDB c WORKING POC
TeamViewer < 5.0.8703 - Untrusted Search Path and DLL Hijacking via Trojan Horse dwmapi.dll
Untrusted search path vulnerability in TeamViewer 5.0.8703 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .tvs or .tvc file.
CVE-2010-3136 EXPLOITDB c WORKING POC
Skype < 4.2.0.169 - Unauthenticated Remote Code Execution via DLL Hijacking
Untrusted search path vulnerability in Skype 4.2.0.169 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32.dll that is located in the same folder as a .skype file.
EIP-2026-118033 EXPLOITDB python WORKING POC
Triologic Media Player 8 - '.m3u' Universal Unicode Local Buffer Overflow (SEH)
CVE-2010-3131 EXPLOITDB c WORKING POC
Mozilla Firefox < & Thunderbird < & SeaMonkey <3.5.12-3.6.9 <3.0.7-3.1.3 - DLL Hijacking
Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 on Windows XP allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .htm, .html, .jtx, .mfp, or .eml file.
EIP-2026-117721 EXPLOITDB c++ WORKING POC
OpenDrive 1.3.141 - Local Password Disclosure
EIP-2026-117655 EXPLOITDB python WORKING POC
MUSE 4.9.0.006 - '.pls' Universal Local Buffer Overflow (SEH)
EIP-2026-117654 EXPLOITDB python WORKING POC
MUSE 4.9.0.006 - '.m3u' Local Buffer Overflow
EIP-2026-116961 EXPLOITDB c WORKING POC
Cisco Sourcefire User Agent 2.2 - Insecure File Permissions
CVE-2014-5507 EXPLOITDB text WORKING POC
iBackup < 10.0.0.32 - Local Privilege Escalation via Weak Service Permissions
iBackup 10.0.0.32 and earlier uses weak permissions (Everyone: Full Control) for ib_service.exe, which allows local users to gain privileges via a Trojan horse file.
CVE-2010-3151 EXPLOITDB c WORKING POC
Adobe On Location CS4 Build 315 - RCE
Untrusted search path vulnerability in Adobe On Location CS4 Build 315 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an OLPROJ file.
CVE-2010-3149 EXPLOITDB c WORKING POC
Adobe Device Central CS5 <3.0.1.0 - RCE
Untrusted search path vulnerability in Adobe Device Central CS5 3.0.0(376), 3.0.1.0 (3027), and probably other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse qtcf.dll that is located in the same folder as an ADCP file.
CVE-2010-3132 EXPLOITDB c WORKING POC
Adobe Dreamweaver CS5 11.0 build 4916 and 4909 - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Dreamweaver CS5 11.0 build 4916, build 4909, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc90loc.dll or (2) dwmapi.dll that is located in the same folder as a CSS, PHP, ASP, or other file that automatically launches Dreamweaver.
CVE-2010-3152 EXPLOITDB c WORKING POC
Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires.dll that is located in the same folder as an .ait or .eps file.
CVE-2010-3153 EXPLOITDB c WORKING POC
Adobe InDesign CS4 6.0 - Untrusted Search Path Vulnerability via Trojan Horse DLL
Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an .indl, .indp, .indt, or .inx file.
CVE-2010-3150 EXPLOITDB c WORKING POC
Adobe Premier Pro CS4 4.0.0 - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL
Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as a .pproj, .prfpset, .prexport, .prm, .prmp, .prpreset, .prproj, .prsl, .prtl, or .vpr file.
CVE-2015-2291 EXPLOITDB HIGH text WORKING POC
Intel Ethernet Diagnostics Driver IQVW32.sys and IQVW64.sys < 1.3.1.0 - Denial of Service via IOCTL Call
(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.
CVSS 7.8
CVE-2007-3137 EXPLOITDB text WRITEUP
WmsCMS <= 2.0 - Cross-Site Scripting via 4print.asp Parameters
Multiple cross-site scripting (XSS) vulnerabilities in 4print.asp in WmsCMS 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) sbl, (2) sbr, or (3) search parameter. NOTE: the original disclosure claims the pageid parameter in index.php is affected, but this is incorrect.
CVE-2008-5336 EXPLOITDB text WORKING POC
WebStudio CMS - SQL Injection via pageid Parameter
SQL injection vulnerability in index.php in WebStudio CMS allows remote attackers to execute arbitrary SQL commands via the pageid parameter.
CVE-2007-3070 EXPLOITDB text WRITEUP
BDigital Web Solutions WebStudio CMS - Cross-Site Scripting via PageID Parameter
Cross-site scripting (XSS) vulnerability in index.php in BDigital Web Solutions WebStudio allows remote attackers to inject arbitrary web script or HTML via the pageid parameter.
CVE-2007-2991 EXPLOITDB text WORKING POC
Evenzia CMS - Cross-Site Scripting via PATH_INFO in send.inc.php
Cross-site scripting (XSS) vulnerability in includes/send.inc.php in Evenzia CMS allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
EIP-2026-106612 EXPLOITDB text WORKING POC
DZcms 3.1 - SQL Injection
CVE-2013-5321 EXPLOITDB text WORKING POC
AlienVault OSSIM 4.1 - SQL Injection
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a Query action to forensics/base_qry_main.php; the (2) tcp_flags[] or (3) tcp_port[0][4] parameter to forensics/base_stat_alerts.php; the (4) ip_addr[1][8] or (5) port_type parameter to forensics/base_stat_ports.php; or the (6) sortby or (7) rvalue parameter in a search action to vulnmeter/index.php.