Gustavo Sorondo

5 exploits Active since Mar 2018
EIP-2026-111260 EXPLOITDB text WRITEUP
Phreebooks 2.0 - Directory Traversal
EIP-2026-111261 EXPLOITDB text WRITEUP
Phreebooks 2.0 - Local File Inclusion
EIP-2026-111262 EXPLOITDB text WRITEUP
Phreebooks 2.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
CVE-2017-15367 EXPLOITDB CRITICAL text WORKING POC
Bacula-web < 8.0.0-rc2 - SQL Injection
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
CVSS 9.8
CVE-2018-19877 EXPLOITDB MEDIUM text WORKING POC
Adiscon LogAnalyzer < 4.1.7 - Cross-Site Scripting via Login Button Referer Field
login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field.
CVSS 6.1