RandomStorm

6 exploits Active since Feb 2012
CVE-2012-1304 EXPLOITDB text WORKING POC
Fork CMS 3.2.4 - Local File Inclusion / Cross-Site Scripting
EIP-2026-114390 EXPLOITDB text WORKING POC
WSN Classifieds 6.2.12/6.2.18 - Multiple Vulnerabilities
CVE-2012-1208 EXPLOITDB text WORKING POC
Fork CMS 3.2.4 - Cross-Site Scripting via Report or Error Parameter
Multiple cross-site scripting (XSS) vulnerabilities in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) report parameter to blog/settings or (2) error parameter to users/index.
CVE-2012-1021 EXPLOITDB text WRITEUP
4images 1.7.10 - Cross-Site Scripting via cat_parent_id Parameter
Cross-site scripting (XSS) vulnerability in admin/categories.php in 4images 1.7.10 allows remote attackers to inject arbitrary web script or HTML via the cat_parent_id parameter in an addcat action.
CVE-2012-1022 EXPLOITDB text WRITEUP
4images 1.7.10 - SQL Injection via cat_parent_id Parameter
SQL injection vulnerability in admin/categories.php in 4images 1.7.10 remote attackers to execute arbitrary SQL commands via the cat_parent_id parameter in an addcat action.
CVE-2012-1023 EXPLOITDB text WRITEUP
4images 1.7.10 - Open Redirect via Admin Index Redirect Parameter
Open redirect vulnerability in admin/index.php in 4images 1.7.10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter.