K. Gudinavicius

5 exploits Active since Feb 2013
CVE-2013-1509 EXPLOITDB text WRITEUP
Oracle Fusion Middleware WebCenter Sites 7.6.2, 11.1.1.6.0, 11.1.1.6.1 - Authenticated Integrity Impact
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites.
CVE-2012-3363 EXPLOITDB CRITICAL text WRITEUP
Zend Framework 1.x < 1.11.12 and 1.12.x < 1.12.0 - XML External Entity Injection via XML-RPC Request
Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before 1.12.0 does not properly handle SimpleXMLElement classes, which allows remote attackers to read arbitrary files or create TCP connections via an external entity reference in a DOCTYPE element in an XML-RPC request, aka an XML external entity (XXE) injection attack.
CVSS 9.1
EIP-2026-113502 EXPLOITDB text WRITEUP
WordPress Core 3.1.3 - SQL Injection
EIP-2026-109240 EXPLOITDB text WRITEUP
Magento eCommerce - Local File Disclosure
EIP-2026-102008 EXPLOITDB text WORKING POC
Skybox Platform < 7.0.611 - Multiple Vulnerabilities