John Leitch

89 exploits Active since Jun 2010
EIP-2026-106010 EXPLOITDB text WORKING POC
CMScout IBrowser TinyMCE Plugin 2.3.4.3 - Local File Inclusion
EIP-2026-105991 EXPLOITDB python WORKING POC
CMS Made Simple Module Download Manager 1.4.1 - Arbitrary File Upload
EIP-2026-105493 EXPLOITDB text WORKING POC
Bitweaver 2.7 - 'fImg' Cross-Site Scripting
EIP-2026-105829 EXPLOITDB python WORKING POC
ChillyCMS 2.3.4.3 - Arbitrary File Upload
EIP-2026-105486 EXPLOITDB text WORKING POC
Bit Weaver 2.7 - Local File Inclusion
CVE-2011-1556 EXPLOITDB text WORKING POC
Andy's PHP Knowledgebase 0.95.4 - SQL Injection
SQL injection vulnerability in plugins/pdfClasses/pdfgen.php in Andy's PHP Knowledgebase (Aphpkb) 0.95.4 allows remote attackers to execute arbitrary SQL commands via the pdfa parameter.
CVE-2010-4800 EXPLOITDB text WORKING POC
BaconMap 1.0 - SQL Injection
SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute arbitrary SQL commands via the type parameter.
CVE-2010-4801 EXPLOITDB text WORKING POC
BaconMap 1.0 - Path Traversal
Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the filepath parameter.
EIP-2026-105360 EXPLOITDB text WORKING POC
b2evolution 4.0.3 - Persistent Cross-Site Scripting
EIP-2026-104666 EXPLOITDB text WRITEUP
PHP 5.5.12 - Locale::parseLocale Memory Corruption
EIP-2026-103920 EXPLOITDB html WORKING POC
Helix Server 14.0.1.571 - Administration Interface Cross-Site Request Forgery
EIP-2026-103923 EXPLOITDB text WORKING POC
Home File Share Server 0.7.2 32 - Directory Traversal
EIP-2026-103876 EXPLOITDB html WORKING POC
Brekeke PBX 2.4.4.8 - 'pbx/gate' Cross-Site Request Forgery
EIP-2026-103642 EXPLOITDB text WORKING POC
Python 2.7 - 'array.fromstring' Method Use-After-Free