Nahuel Grisolia

28 exploits Active since Dec 2009
CVE-2012-10059 EXPLOITDB CRITICAL text WORKING POC
Dolibarr ERP/CRM <= 3.1.1-3.2.0 - Command Injection
Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its database backup feature. The export.php script fails to sanitize the sql_compat parameter, allowing authenticated users to inject arbitrary system commands, resulting in remote code execution on the server.
CVE-2012-10059 EXPLOITDB CRITICAL ruby WORKING POC
Dolibarr ERP/CRM <= 3.1.1-3.2.0 - Command Injection
Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its database backup feature. The export.php script fails to sanitize the sql_compat parameter, allowing authenticated users to inject arbitrary system commands, resulting in remote code execution on the server.
CVE-2010-3313 EXPLOITDB text WRITEUP
EGroupware <1.6.003-9.2.20100309 - Command Injection
phpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.20100309; allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) aspell_path or (2) spellchecker_lang parameters.
CVE-2012-10059 METASPLOIT CRITICAL ruby WORKING POC
Dolibarr ERP/CRM <= 3.1.1-3.2.0 - Command Injection
Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its database backup feature. The export.php script fails to sanitize the sql_compat parameter, allowing authenticated users to inject arbitrary system commands, resulting in remote code execution on the server.
EIP-2026-118762 EXPLOITDB text WORKING POC
McAfee Email Gateway 6.7.1 - 'systemWebAdminConfig.do' Remote Security Bypass
EIP-2026-115592 EXPLOITDB text WORKING POC
McAfee Email Gateway < 6.7.2 Hotfix 2 - Multiple Vulnerabilities
EIP-2026-114795 EXPLOITDB text WRITEUP
Oracle Virtual Server Agent - Command Injection
CVE-2010-0605 EXPLOITDB text WORKING POC
osTicket < 1.6 - Authenticated SQL Injection via scp/ajax.php Input Parameter
SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter.
EIP-2026-110398 EXPLOITDB text WRITEUP
OSSIM 2.2 - Multiple Vulnerabilities
EIP-2026-110397 EXPLOITDB text WORKING POC
OSSIM 2.1.5 - Arbitrary File Upload
CVE-2009-4375 EXPLOITDB text WRITEUP
AlienVault OSSIM <2.1.5.4 - SQL Injection
SQL injection vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the id_document parameter.
CVE-2009-4372 EXPLOITDB text WORKING POC
AlienVault OSSIM < 2.1.5-4 - Remote Command Execution via UniqueID Parameter
AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary commands via shell metacharacters in the uniqueid parameter to (1) wcl.php, (2) storage_graphs.php, (3) storage_graphs2.php, (4) storage_graphs3.php, and (5) storage_graphs4.php in sem/.
CVE-2010-3314 EXPLOITDB text WRITEUP
EGroupware 1.4.001+.002 1.6.001+.002 - Cross-Site Scripting via lang Parameter
Cross-site scripting (XSS) vulnerability in login.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.20100309; allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
CVE-2010-1431 EXPLOITDB text WORKING POC
Cacti < 0.8.7e - SQL Injection via Export Item ID Parameter
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
EIP-2026-105682 EXPLOITDB text WRITEUP
Cacti 0.8.7e - OS Command Injection
EIP-2026-104910 EXPLOITDB text WRITEUP
Achievo 1.4.2 - Persistent Cross-Site Scripting
EIP-2026-104909 EXPLOITDB text WRITEUP
Achievo 1.4.2 - Arbitrary File Upload
CVE-2010-4297 EXPLOITDB text WRITEUP
VMware Workstation/Player/Fusion/ESXi/ESX Command Injection via VMware Tools Update
The VMware Tools update functionality in VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548; VMware Player 2.5.x before 2.5.5 build 328052 and 3.1.x before 3.1.2 build 301548; VMware Server 2.0.2; VMware Fusion 2.x before 2.0.8 build 328035 and 3.1.x before 3.1.2 build 332101; VMware ESXi 3.5, 4.0, and 4.1; and VMware ESX 3.0.3, 3.5, 4.0, and 4.1 allows host OS users to gain privileges on the guest OS via unspecified vectors, related to a "command injection" issue.
EIP-2026-103932 EXPLOITDB text WORKING POC
IBM Lotus Domino 7.0.2 - 'readme.nsf' Cross-Site Scripting
EIP-2026-103719 EXPLOITDB text WRITEUP
Websense Proxy - Filter Bypass
EIP-2026-102492 EXPLOITDB text WORKING POC
KnowGate hipergate 4.0.12 - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-102498 EXPLOITDB text WORKING POC
ManageEngine ServiceDesk Plus 7.6 - woID SQL Injection
EIP-2026-102482 EXPLOITDB text WRITEUP
Hipergate 4.0.12 - Multiple Vulnerabilities
EIP-2026-101841 EXPLOITDB text WRITEUP
McAfee Email Gateway (formerly IronMail) - Cross-Site Scripting
EIP-2026-101040 EXPLOITDB text WRITEUP
McAfee Email Gateway (formerly IronMail) - Denial of Service