Salvatore Fresta

87 exploits Active since Dec 2008
CVE-2009-0852 EXPLOITDB text WORKING POC
Stewart Howe Celerbb - Information Disclosure
showme.php in CelerBB 0.0.2 allows remote attackers to obtain "reserved information" via the user parameter.
CVE-2009-0851 EXPLOITDB text WORKING POC
Stewart Howe Celerbb - SQL Injection
Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewforum.php and (2) viewtopic.php.
CVE-2010-2847 EXPLOITDB text WRITEUP
InterJoomla ArtForms 2.1b7.2 RC2 - SQL Injection
Multiple SQL injection vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter in a (1) ferforms or (2) tferforms action to index.php, and the (3) id parameter in a vferforms action to index.php.
CVE-2010-2846 EXPLOITDB text WRITEUP
InterJoomla ArtForms 2.1b7.2 - XSS
Cross-site scripting (XSS) vulnerability in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the afmsg parameter to index.php.
CVE-2010-4794 EXPLOITDB text WRITEUP
JoomlaSeller JS Calendar 1.5.1-1.5.4 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the JoomlaSeller JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in a jscalendar action to index.php. NOTE: some of these details are obtained from third party information.
CVE-2009-4885 EXPLOITDB text WORKING POC
Bernhard Frohlich Phpcom - XSS
Cross-site scripting (XSS) vulnerability in templates/1/login.php in phpCommunity 2 2.1.8 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
CVE-2009-4884 EXPLOITDB text WORKING POC
Bernhard Frohlich Phpcom - SQL Injection
Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter in a forum action to index.php, (2) the topic_id parameter in a forum action to index.php, (3) the wert parameter in an id search action to index.php, (4) the wert parameter in a nick search action to index.php, or (5) the wert parameter in a forum search action to index.php, related to class_forum.php and class_search.php.
CVE-2009-4801 EXPLOITDB text WORKING POC
Will Kraft Ez-blog - Authentication Bypass
EZ-Blog Beta 1 does not require authentication, which allows remote attackers to create or delete arbitrary posts via requests to PHP scripts.
CVE-2009-3665 EXPLOITDB text WRITEUP
Nullam Blog - SQL Injection
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the (1) i parameter or (2) v parameters in a register action.
CVE-2009-3664 EXPLOITDB text WRITEUP
Nullam Blog - Path Traversal
Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. (dot dot) in the (1) p and (2) s parameters.
EIP-2026-118935 EXPLOITDB c WORKING POC
MX Simulator Server - Remote Buffer Overflow
EIP-2026-114596 EXPLOITDB text WRITEUP
Zen Cart 1.3.9h - Local File Inclusion
CVE-2009-4351 EXPLOITDB text WRITEUP
WSCreator 1.1 - SQL Injection
SQL injection vulnerability in ADMIN/loginaction.php in WSCreator 1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the Email (aka username) parameter.
EIP-2026-113438 EXPLOITDB text WORKING POC
Wili-CMS 0.4.0 - Local File Inclusion / Remote File Inclusion / Authentication Bypass
CVE-2009-1222 EXPLOITDB text WORKING POC
Webedition - Path Traversal
Directory traversal vulnerability in index.php in webEdition 6.0.0.4 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the WE_LANGUAGE parameter.
EIP-2026-113402 EXPLOITDB text WRITEUP
WhiteBoard 0.1.30 - Multiple Blind SQL Injections
CVE-2009-1453 EXPLOITDB text WRITEUP
Anoochit Chalothorn Tiny Blogr - SQL Injection
SQL injection vulnerability in class.eport.php in Tiny Blogr 1.0.0 rc4, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the txtUsername parameter (aka the Username field). NOTE: some of these details are obtained from third party information.
CVE-2009-3494 EXPLOITDB text WRITEUP
Todor Lazarov T-htb Manager - SQL Injection
Multiple SQL injection vulnerabilities in index.php in T-HTB Manager 0.5, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in a delete_category action, (2) the name parameter in an update_category action, and other vectors.
EIP-2026-112408 EXPLOITDB text WRITEUP
Squirrelcart PRO 3.0.0 - Blind SQL Injection
EIP-2026-111781 EXPLOITDB text WRITEUP
ritsblog 0.4.2 - Authentication Bypass / Cross-Site Scripting
EIP-2026-111887 EXPLOITDB text WRITEUP
sandbox 2.0.3 - Multiple Vulnerabilities
CVE-2009-1480 EXPLOITDB text WORKING POC
Pragyan Cms - SQL Injection
SQL injection vulnerability in index.php Pragyan CMS 2.6.4 allows remote attackers to execute arbitrary SQL commands via the fileget parameter in a view action and other unspecified vectors.
CVE-2009-4886 EXPLOITDB text WORKING POC
Bernhard Frohlich Phpcom - Path Traversal
Multiple directory traversal vulnerabilities in phpCommunity 2 2.1.8 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) file parameter to module/admin/files/show_file.php and the (2) path parameter to module/admin/files/show_source.php.
CVE-2010-4143 EXPLOITDB text WRITEUP
Phpcheckz - SQL Injection
SQL injection vulnerability in chart.php in phpCheckZ 1.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-111023 EXPLOITDB text WORKING POC
phpCollegeExchange 0.1.5c - Multiple SQL Injections