Hoyt LLC Research

4 exploits Active since Sep 2010
CVE-2012-1500 EXPLOITDB MEDIUM text WORKING POC
Atlassian Greenhopper < 5.9.8 - XSS
Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8 allows an attacker to inject arbitrary script code.
CVSS 5.4
CVE-2010-3486 EXPLOITDB text WRITEUP
SmarterMail 7.1.3876 - Path Traversal
Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) %255c (double-encoded backslash) in the name parameter.
EIP-2026-100559 EXPLOITDB text WRITEUP
SmarterMail 8.0 - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-100561 EXPLOITDB text WRITEUP
SmarterStats 6.0 - Multiple Vulnerabilities