RoAd_KiLlEr

18 exploits Active since Jul 2010
CVE-2010-4946 EXPLOITDB text WRITEUP
ALLPC 2.5 - SQL Injection
SQL injection vulnerability in product_info.php in ALLPC 2.5 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.
CVE-2010-4947 EXPLOITDB text WRITEUP
ALLPC 2.5 - XSS
Cross-site scripting (XSS) vulnerability in advanced_search_result.php in ALLPC 2.5 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.
CVE-2010-4944 EXPLOITDB text WRITEUP
Mambo/Joomla! - com_elite_experts - SQL Injection
SQL injection vulnerability in the Elite Experts (com_elite_experts) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showExpertProfileDetailed action to index.php.
EIP-2026-111493 EXPLOITDB text WRITEUP
PreProject Multi-Vendor Shopping Malls - SQL Injection / Authentication Bypass
EIP-2026-109864 EXPLOITDB text WRITEUP
NetArt Media Car Portal 2.0 - 'car' SQL Injection
CVE-2010-2845 EXPLOITDB text WRITEUP
Joomla! com_quickfaq 1.0.3 - SQL Injection
SQL injection vulnerability in the QuickFAQ (com_quickfaq) component 1.0.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a category action to index.php.
EIP-2026-108828 EXPLOITDB text WRITEUP
Joomla! Component Phoca Gallery 2.7.3 - SQL Injection
EIP-2026-108755 EXPLOITDB text WORKING POC
Joomla! Component JPodium 2.7.3 - SQL Injection
CVE-2010-3422 EXPLOITDB text WRITEUP
Joomla! com_jgen 0.9.33 - SQL Injection
SQL injection vulnerability in the JGen (com_jgen) component 0.9.33 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
EIP-2026-108325 EXPLOITDB text WRITEUP
Joomla! Component com_dateconverter 0.1 - SQL Injection
EIP-2026-108535 EXPLOITDB text WORKING POC
Joomla! Component com_seyret - Blind SQL Injection
CVE-2010-4968 EXPLOITDB text WRITEUP
Joomla! com_wmtpic <1.0 - SQL Injection
SQL injection vulnerability in the webmaster-tips.net Flash Gallery (com_wmtpic) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
CVE-2010-4993 EXPLOITDB text WRITEUP
Joomla! com_eventcal <1.6.4 - SQL Injection
SQL injection vulnerability in the eventcal (com_eventcal) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
CVE-2011-1557 EXPLOITDB text WRITEUP
ICloudCenter ICJobSite <1.1 - SQL Injection
SQL injection vulnerability in ICloudCenter ICJobSite 1.1 allows remote attackers to execute arbitrary SQL commands via the pid parameter to an unspecified component, a different vulnerability than CVE-2011-1546. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-107613 EXPLOITDB text WRITEUP
Honey Soft Web Solution - Multiple Vulnerabilities
CVE-2010-2925 EXPLOITDB text WRITEUP
Freeway CMS <1.4.3.210 - SQL Injection
SQL injection vulnerability in index.php in Freeway CMS 1.4.3.210 allows remote attackers to execute arbitrary SQL commands via the ecPath parameter.
EIP-2026-107183 EXPLOITDB text WRITEUP
Football Website Manager 1.1 - SQL Injection / Multiple HTML Injection Vulnerabilities
EIP-2026-105713 EXPLOITDB text WRITEUP
Car Portal 2.0 - Blind SQL Injection