Richard Brain

35 exploits Active since Oct 2002
EIP-2026-101190 EXPLOITDB text WORKING POC
Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Vulnerabilities
CVE-2008-1181 EXPLOITDB text WRITEUP
Juniper Networks Secure Access <5.5 R1 - Info Disclosure
Juniper Networks Secure Access 2000 5.5 R1 (build 11711) allows remote attackers to obtain sensitive information via a direct request for remediate.cgi without certain parameters, which reveals the path in an "Execute failed" error message.
EIP-2026-100703 EXPLOITDB text WORKING POC
Mura CMS - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-100437 EXPLOITDB text WORKING POC
Mitel Audio and Web Conferencing 4.4.3.0 - Multiple Cross-Site Scripting Vulnerabilities
CVE-2002-0879 EXPLOITDB text WRITEUP
Gafware CFXImage 1.6.6 - Info Disclosure
showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. or (2) a C: style pathname in the FILE parameter.
CVE-2010-0468 EXPLOITDB text WRITEUP
PaperThin CommonSpot Content Server - Cross-Site Scripting via URL Parameter in utilities/longproc.cfm
Cross-site scripting (XSS) vulnerability in utilities/longproc.cfm in PaperThin CommonSpot Content Server allows remote attackers to inject arbitrary web script or HTML via the url parameter.
EIP-2026-100388 EXPLOITDB text WORKING POC
Keyfax Customer Response Management 3.2.2.6 - Multiple Cross-Site Scripting Vulnerabilities
CVE-2007-4630 EXPLOITDB text WORKING POC
Absolute Poll Manager XE 4.1 - Cross-Site Scripting via msg Parameter
Cross-site scripting (XSS) vulnerability in xlaapmview.asp in Absolute Poll Manager XE 4.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
EIP-2026-100096 EXPLOITDB text WORKING POC
Activedition - '/activedition/aelogin.asp' Multiple Cross-Site Scripting Vulnerabilities
CVE-2010-4514 EXPLOITDB text WRITEUP
DotNetNuke 5.05.01 and 5.06.00 - Cross-Site Scripting via __VIEWSTATE Parameter
Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx in DotNetNuke 5.05.01 and 5.06.00 allows remote attackers to inject arbitrary web script or HTML via the __VIEWSTATE parameter. NOTE: some of these details are obtained from third party information.