Jose Luis Gongora Fernandez

5 exploits Active since Nov 2007
CVE-2007-6135 EXPLOITDB text WORKING POC
PHPSlideShow 0.9.9.2 - XSS
Cross-site scripting (XSS) vulnerability in phpslideshow.php in PHPSlideShow 0.9.9.2, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the directory parameter. NOTE: this issue was originally reported for toonchapter8.php, but this is probably a site-specific name, since the PHPSlideShow distribution does not contain that file.
CVE-2007-5954 EXPLOITDB MEDIUM text WRITEUP
JLMForo System - XSS
Cross-site scripting (XSS) vulnerability in buscador.php in JLMForo System allows remote attackers to inject arbitrary web script or HTML via the clave parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS 6.1
EIP-2026-107468 EXPLOITDB text WRITEUP
gr blog 1.1.4 - Arbitrary File Upload / Authentication Bypass
EIP-2026-102767 EXPLOITDB text WORKING POC
xwine 1.0.1 - '.exe' Local Crash (PoC)
EIP-2026-100343 EXPLOITDB text WORKING POC
GR Note 0.94 Beta - (Authentication Bypass) Remote Database Backup