Salvatore Fresta aka Drosophila

56 exploits Active since Dec 2008
CVE-2009-4719 EXPLOITDB text WORKING POC
Discloser 0.0.4 rc2 - SQL Injection
SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter.
EIP-2026-105515 EXPLOITDB text WRITEUP
Blink Blog System - Authentication Bypass
CVE-2009-4386 EXPLOITDB text WRITEUP
Venalsur Booking Centre Booking System for Hotels Group - SQL Injection
SQL injection vulnerability in hotel_tiempolibre_ext.php in Venalsur Booking Centre Booking System for Hotels Group, when magic_quotes_gpc is enabled, allows remote attackers to execute arbitrary SQL commands via the NoticiaID parameter and other unspecified vectors.
CVE-2008-5751 EXPLOITDB text WRITEUP
AlstraSoft Web Email Script Enterprise - SQL Injection
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise (ESE) allows remote attackers to execute arbitrary SQL commands via the id parameter in a directory action.
EIP-2026-104111 EXPLOITDB text WRITEUP
uhttp Server 0.1.0-alpha - Directory Traversal
EIP-2026-103525 EXPLOITDB c WORKING POC
Jinais IRC Server 0.1.8 - Null Pointer (PoC)