L0rd CrusAd3r aka VSN

70 exploits Active since Mar 2010
CVE-2010-4919 EXPLOITDB text WRITEUP
Micronetsoft RV Dealer Website 1.0 - SQL Injection
SQL injection vulnerability in detail.asp in Micronetsoft RV Dealer Website 1.0 allows remote attackers to execute arbitrary SQL commands via the vehicletypeID parameter.
CVE-2010-2338 EXPLOITDB text WRITEUP
Vunet VU Web Visitor Analyst - SQL Injection
Multiple SQL injection vulnerabilities in redir.asp in VU Web Visitor Analyst allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-100609 EXPLOITDB text WRITEUP
VU Mass Mailer - Authentication Bypass
EIP-2026-100608 EXPLOITDB text WRITEUP
VU Case Manager - Authentication Bypass
CVE-2010-5045 EXPLOITDB text WRITEUP
Smart ASP Survey - XSS
Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attackers to inject arbitrary web script or HTML via the catid parameter.
CVE-2010-4635 EXPLOITDB text WRITEUP
Site2nite Vacation Rental Listings - SQL Injection
SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
CVE-2010-4636 EXPLOITDB text WRITEUP
Site2nite Business E-listings - SQL Injection
SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
EIP-2026-100538 EXPLOITDB text WRITEUP
SAS Hotel Management System - 'notfound' SQL Injection
EIP-2026-100526 EXPLOITDB text WRITEUP
Restaurant Listing with Online Ordering - SQL Injection
EIP-2026-100162 EXPLOITDB text WRITEUP
BDSMIS TraX with Payroll - SQL Injection
CVE-2010-4921 EXPLOITDB text WRITEUP
DMXReady Polling Booth Manager - SQL Injection
SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady Polling Booth Manager allows remote attackers to execute arbitrary SQL commands via the QuestionID parameter in a results action.
EIP-2026-100265 EXPLOITDB text WRITEUP
DMXReady Members Area Manager - Persistent Cross-Site Scripting
CVE-2010-5021 EXPLOITDB text WRITEUP
Digital Interchange Document Library <5.8.5 - SQL Injection
SQL injection vulnerability in view_group.asp in Digital Interchange Document Library 5.8.5 allows remote attackers to execute arbitrary SQL commands via the intGroupID parameter.
CVE-2010-5023 EXPLOITDB text WRITEUP
Digital Interchange Calendar <5.8.5 - SQL Injection
SQL injection vulnerability in index.asp in Digital Interchange Calendar 5.8.5 allows remote attackers to execute arbitrary SQL commands via the intDivisionID parameter.
EIP-2026-100241 EXPLOITDB text WRITEUP
Digger Solutions NewsLetter Open Source - SQL Injection
EIP-2026-100229 EXPLOITDB text WRITEUP
Comrie Software Pay Roll Time Sheet & Punch Card - Authentication Bypass
EIP-2026-100180 EXPLOITDB text WRITEUP
Business Classified Listing - SQL Injection
CVE-2010-5008 EXPLOITDB text WRITEUP
BrightSuite Groupware 5.4 - SQL Injection
SQL injection vulnerability in pages/contact_list_mail_form.asp in BrightSuite Groupware 5.4 allows remote attackers to execute arbitrary SQL commands via the ContactID parameter.
EIP-2026-100100 EXPLOITDB text WRITEUP
Acuity CMS 2.7.1 - SQL Injection
EIP-2026-100105 EXPLOITDB text WRITEUP
Ananda Image Gallery - SQL Injection