Hanno Boeck

6 exploits Active since Apr 2007
CVE-2007-1872 EXPLOITDB html WORKING POC
toendaCMS 1.5.3 - Cross-Site Scripting via Searchword Parameter
Cross-site scripting (XSS) vulnerability in toendaCMS 1.5.3 allows remote attackers to inject arbitrary web script or HTML via the searchword parameter in a search id.
CVE-2008-1385 EXPLOITDB text WORKING POC
Serendipity < 1.3.1 - Cross-Site Scripting via Referer HTTP Header
Cross-site scripting (XSS) vulnerability in the Top Referrers (aka referrer) plugin in Serendipity (S9Y) before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header.
CVE-2008-0125 EXPLOITDB text WRITEUP
phpstats 0.1 alpha - Cross-Site Scripting via baseDir Parameter
Cross-site scripting (XSS) vulnerability in phpstats.php in Michael Wagner phpstats 0.1 alpha allows remote attackers to inject arbitrary web script or HTML via the baseDir parameter.
CVE-2007-3694 EXPLOITDB html WORKING POC
Broadcast Machine 0.9.9.9 - Cross-Site Scripting via Username Parameter
Cross-site scripting (XSS) vulnerability in login.php in Miro Project Broadcast Machine 0.9.9.9 allows remote attackers to inject arbitrary web script or HTML via the username parameter.
CVE-2007-3693 EXPLOITDB text WRITEUP
Gobi - Cross-Site Scripting via Search q Parameter
Cross-site scripting (XSS) vulnerability in Gobi as of 20070711, built on Helma, allows remote attackers to inject arbitrary web script or HTML via the q parameter to the search function.
CVE-2016-9813 EXPLOITDB MEDIUM text WORKING POC
GStreamer < 1.10.1 - Denial of Service via MPEG-TS PAT Parser
The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
CVSS 5.5