L0rd CrusAd3r aka VSN

70 exploits Active since Mar 2010
CVE-2010-4919 EXPLOITDB text WRITEUP
Micronetsoft RV Dealer Website 1.0 - SQL Injection
SQL injection vulnerability in detail.asp in Micronetsoft RV Dealer Website 1.0 allows remote attackers to execute arbitrary SQL commands via the vehicletypeID parameter.
CVE-2010-2338 EXPLOITDB text WRITEUP
VU Web Visitor Analyst - SQL Injection via redir.asp Username or Password Parameter
Multiple SQL injection vulnerabilities in redir.asp in VU Web Visitor Analyst allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-100609 EXPLOITDB text WRITEUP
VU Mass Mailer - Authentication Bypass
EIP-2026-100608 EXPLOITDB text WRITEUP
VU Case Manager - Authentication Bypass
CVE-2010-5045 EXPLOITDB text WRITEUP
Smart ASP Survey - Cross-Site Scripting via catid Parameter
Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attackers to inject arbitrary web script or HTML via the catid parameter.
CVE-2010-4635 EXPLOITDB text WRITEUP
Site2Nite Vacation Rental Listings - SQL Injection via detail.asp ID Parameter
SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
CVE-2010-4636 EXPLOITDB text WRITEUP
Site2Nite Business e-Listings - SQL Injection via ID Parameter
SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
EIP-2026-100538 EXPLOITDB text WRITEUP
SAS Hotel Management System - 'notfound' SQL Injection
EIP-2026-100526 EXPLOITDB text WRITEUP
Restaurant Listing with Online Ordering - SQL Injection
EIP-2026-100162 EXPLOITDB text WRITEUP
BDSMIS TraX with Payroll - SQL Injection
CVE-2010-4921 EXPLOITDB text WRITEUP
DMXReady Polling Booth Manager - SQL Injection
SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady Polling Booth Manager allows remote attackers to execute arbitrary SQL commands via the QuestionID parameter in a results action.
EIP-2026-100265 EXPLOITDB text WRITEUP
DMXReady Members Area Manager - Persistent Cross-Site Scripting
CVE-2010-5021 EXPLOITDB text WRITEUP
Digital Interchange Document Library <5.8.5 - SQL Injection
SQL injection vulnerability in view_group.asp in Digital Interchange Document Library 5.8.5 allows remote attackers to execute arbitrary SQL commands via the intGroupID parameter.
CVE-2010-5023 EXPLOITDB text WRITEUP
Digital Interchange Calendar <5.8.5 - SQL Injection
SQL injection vulnerability in index.asp in Digital Interchange Calendar 5.8.5 allows remote attackers to execute arbitrary SQL commands via the intDivisionID parameter.
EIP-2026-100241 EXPLOITDB text WRITEUP
Digger Solutions NewsLetter Open Source - SQL Injection
EIP-2026-100229 EXPLOITDB text WRITEUP
Comrie Software Pay Roll Time Sheet & Punch Card - Authentication Bypass
EIP-2026-100180 EXPLOITDB text WRITEUP
Business Classified Listing - SQL Injection
CVE-2010-5008 EXPLOITDB text WRITEUP
BrightSuite Groupware 5.4 - SQL Injection
SQL injection vulnerability in pages/contact_list_mail_form.asp in BrightSuite Groupware 5.4 allows remote attackers to execute arbitrary SQL commands via the ContactID parameter.
EIP-2026-100100 EXPLOITDB text WRITEUP
Acuity CMS 2.7.1 - SQL Injection
EIP-2026-100105 EXPLOITDB text WRITEUP
Ananda Image Gallery - SQL Injection