Henry Hoggard

11 exploits Active since May 2013
EIP-2026-114022 EXPLOITDB text WORKING POC
WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting
EIP-2026-114159 EXPLOITDB text WORKING POC
WordPress Plugin User Role Editor 3.12 - Cross-Site Request Forgery
EIP-2026-112961 EXPLOITDB text WORKING POC
Vanilla Forums 2.0.18.4 - Tagging Persistent Cross-Site Scripting
EIP-2026-112962 EXPLOITDB text WRITEUP
Vanilla Forums 2.0.18.8 - Multiple Vulnerabilities
CVE-2012-6557 EXPLOITDB text WORKING POC
AboutMe plugin 1.1.1 for Vanilla Forums - Stored Cross-Site Scripting via Edit My Details Parameters
Multiple cross-site scripting (XSS) vulnerabilities in the AboutMe plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) AboutMe/RealName, (2) AboutMe/Name, (3) AboutMe/Quote, (4) AboutMe/Loc, (5) AboutMe/Emp, (6) AboutMe/JobTit, (7) AboutMe/HS, (8) AboutMe/Col, (9) AboutMe/Bio, (10) AboutMe/Inter, (11) AboutMe/Mus, (12) AboutMe/Gam, (13) AboutMe/Mov, (14) AboutMe/FTV, or (15) AboutMe/Bks parameter to the Edit My Details page. NOTE: some of these details are obtained from third party information.
CVE-2012-6556 EXPLOITDB text WRITEUP
FirstLastNames 1.1.1 - Cross-Site Scripting via User FirstName or LastName Parameter
Multiple cross-site scripting (XSS) vulnerabilities in the FirstLastNames plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) User/FirstName or (2) User/LastName parameter to the edit user page. NOTE: some of these details are obtained from third party information.
EIP-2026-112963 EXPLOITDB text WRITEUP
vanilla forums poll plugin 0.9 - Persistent Cross-Site Scripting
EIP-2026-112964 EXPLOITDB text WORKING POC
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities
EIP-2026-112965 EXPLOITDB text WORKING POC
vanilla kpoll plugin 1.2 - Persistent Cross-Site Scripting
CVE-2012-6555 EXPLOITDB text WORKING POC
LatestComment 1.1 - Cross-Site Scripting via Discussion Title
Cross-site scripting (XSS) vulnerability in the LatestComment plugin 1.1 for Vanilla Forums allows remote attackers to inject arbitrary web script or HTML via the discussion title.
EIP-2026-112958 EXPLOITDB text WRITEUP
Vanilla Forum Tagging Plugin Enchanced 1.0.1 - Persistent Cross-Site Scripting