Jakub Galczyk

6 exploits Active since Jan 2013
CVE-2014-2238 METASPLOIT ruby WORKING POC
MantisBT 1.2.13-1.2.16 - Authenticated SQL Injection via filter_config_id Parameter
SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
EIP-2026-112251 EXPLOITDB php WORKING POC
SMF - '/index.php' HTML Injection / Multiple PHP Code Injection Vulnerabilities
EIP-2026-111639 EXPLOITDB text WRITEUP
Quick.CMS 4.0 - 'p' Cross-Site Scripting
EIP-2026-110356 EXPLOITDB text WORKING POC
osCommerce - Cross-Site Request Forgery
CVE-2012-6513 EXPLOITDB text WORKING POC
gpEasy CMS 2.3.3 - Cross-Site Scripting via jsoncallback Parameter
Cross-site scripting (XSS) vulnerability in index.php/Admin_Preferences in gpEasy CMS 2.3.3 allows remote attackers to inject arbitrary web script or HTML via the jsoncallback parameter.
EIP-2026-106124 EXPLOITDB text WORKING POC
Concrete5 CMS 5.5.2.1 - Information Disclosure / SQL Injection / Cross-Site Scripting