James Sibley (absane)

3 exploits Active since Apr 2014
CVE-2014-1665 EXPLOITDB MEDIUM text WORKING POC
owncloud < 6.0.1 - Authenticated Stored Cross-Site Scripting via Uploaded Filename
Cross-site scripting (XSS) vulnerability in ownCloud before 6.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an uploaded file.
CVSS 5.4
CVE-2014-2341 EXPLOITDB text WORKING POC
CubeCart < 5.2.9 - Session Fixation via PHPSESSID Parameter
Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers to hijack web sessions via the PHPSESSID parameter.
EIP-2026-102116 EXPLOITDB text WORKING POC
Western Digital My Cloud 04.01.03-421/04.01.04-422 - Command Injection