Jens Liebchen

3 exploits Active since Jun 2002
CVE-2007-1036 METASPLOIT ruby WORKING POC
JBoss Application Server - Unauthenticated Administrative Access via Default Configuration
The default configuration of JBoss does not restrict access to the (1) console and (2) web management interfaces, which allows remote attackers to bypass authentication and gain administrative access via direct requests.
CVE-2002-0319 EXPLOITDB text WORKING POC
pforum 1.14 - Stored Cross-Site Scripting via Username Field
Cross-site scripting vulnerability in edituser.php for pforum 1.14 and earlier allows remote attackers to execute script and steal cookies from other users via Javascript in a username.
CVE-2007-1036 EXPLOITDB ruby WORKING POC
JBoss Application Server - Unauthenticated Administrative Access via Default Configuration
The default configuration of JBoss does not restrict access to the (1) console and (2) web management interfaces, which allows remote attackers to bypass authentication and gain administrative access via direct requests.