L0rd CrusAd3r aka VSN

70 exploits Active since Mar 2010
CVE-2010-2462 EXPLOITDB text WRITEUP
OroHYIP - SQL Injection via withdraw_money.php id Parameter
SQL injection vulnerability in withdraw_money.php in Toma Cero OroHYIP allows remote attackers to execute arbitrary SQL commands via the id parameter in a cancel action.
CVE-2010-2461 EXPLOITDB text WRITEUP
JCE-Tech Overstock 1 - SQL Injection via Store Parameter
SQL injection vulnerability in storecat.php in JCE-Tech Overstock 1 allows remote attackers to execute arbitrary SQL commands via the store parameter.
EIP-2026-110069 EXPLOITDB text WRITEUP
Online Classified System Script - SQL Injection / Cross-Site Scripting
CVE-2010-4985 EXPLOITDB text WRITEUP
My Kazaam Notes Management System - XSS
Cross-site scripting (XSS) vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to inject arbitrary web script or HTML via vectors involving the "Enter Reference Number Below" text box.
EIP-2026-109491 EXPLOITDB text WRITEUP
Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection
EIP-2026-109049 EXPLOITDB text WORKING POC
KubeLance 1.7.6 - 'profile.php' SQL Injection
CVE-2010-4365 EXPLOITDB text WRITEUP
Harmistechnology Com Jeajaxeventcalendar - SQL Injection
SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an alleventlist_more action to index.php.
CVE-2010-5020 EXPLOITDB text WRITEUP
NetArt Media iBoutique 4.0 - SQL Injection
SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.
EIP-2026-107641 EXPLOITDB text SUSPICIOUS
Hot or Not Picture Rating Script - SQL Injection
EIP-2026-107643 EXPLOITDB text WRITEUP
Hotel / Resort Site Script with OnLine Reservation System - SQL Injection
CVE-2010-2609 EXPLOITDB text WRITEUP
2daybiz Job Search Engine Script - SQL Injection via show_search_result.php keyword parameter
SQL injection vulnerability in show_search_result.php in 2daybiz Job Search Engine Script allows remote attackers to execute arbitrary SQL commands via the keyword parameter.
EIP-2026-108103 EXPLOITDB text WRITEUP
Job Search Script - SQL Injection
EIP-2026-107497 EXPLOITDB text WORKING POC
GREEZLE - Global Real Estate Agent Site Auth SQL Injection
EIP-2026-106853 EXPLOITDB text WRITEUP
EMO Realty Manager - SQL Injection
CVE-2010-2700 EXPLOITDB text WRITEUP
Edge PHP Clickbank Affiliate Marketplace Script - XSS
Cross-site scripting (XSS) vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to inject arbitrary web script or HTML via the search parameter.
CVE-2010-5001 EXPLOITDB text WRITEUP
Esoftpro Online Contact Manager 3.0 - SQL Injection
SQL injection vulnerability in view.php in esoftpro Online Contact Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2010-4999 EXPLOITDB text WRITEUP
esoftpro Online Photo Pro 2.0 - SQL Injection
SQL injection vulnerability in index.php in esoftpro Online Photo Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the section parameter.
CVE-2010-4996 EXPLOITDB text WRITEUP
Esoftpro Online Guestbook Pro 5.1 - SQL Injection
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.
EIP-2026-106701 EXPLOITDB text WRITEUP
Easy Travel Portal - SQL Injection
EIP-2026-105893 EXPLOITDB text WRITEUP
Classifieds Script - 'rate' SQL Injection
CVE-2010-4981 EXPLOITDB text WRITEUP
YourFreeWorld Banner Management - SQL Injection
SQL injection vulnerability in trackads.php in YourFreeWorld Banner Management allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-100522 EXPLOITDB text WRITEUP
Real-time ASP Calendar - SQL Injection
CVE-2010-4186 EXPLOITDB text WRITEUP
OnlineTechTools OWOS Professional Edition 2.10 - SQL Injection via Password Parameter
SQL injection vulnerability in process.asp in OnlineTechTools Online Work Order System (OWOS) Professional Edition 2.10 allows remote attackers to execute arbitrary SQL commands via the password parameter. NOTE: some of these details are obtained from third party information.
CVE-2010-2342 EXPLOITDB text WRITEUP
DMXReady Online Notebook Manager 1.0 - SQL Injection via ItemID Parameter
SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
CVE-2010-4920 EXPLOITDB text WRITEUP
Micronetsoft Rental Property Mgmt <1.0 - SQL Injection
SQL injection vulnerability in detail.asp in Micronetsoft Rental Property Management Website 1.0 allows remote attackers to execute arbitrary SQL commands via the ad_ID parameter.