Sammy FORGIT

73 exploits Active since Jun 2012
EIP-2026-113961 EXPLOITDB text WORKING POC
WordPress Plugin PICA Photo Gallery 1.0 - Remote File Disclosure
EIP-2026-113964 EXPLOITDB php WORKING POC
WordPress Plugin Picturesurf Gallery - 'upload.php' Arbitrary File Upload
EIP-2026-113977 EXPLOITDB php WORKING POC
WordPress Plugin Post Recommendations - 'abspath' Remote File Inclusion
CVE-2012-3575 EXPLOITDB php WORKING POC
Rbx Gallery - Access Control
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider.
CVE-2012-3577 EXPLOITDB php WORKING POC
Nmedia Member Conversation < 1.3 - Access Control
Unrestricted file upload vulnerability in doupload.php in the Nmedia Member Conversation plugin before 1.4 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in wp-content/uploads/user_uploads.
EIP-2026-113627 EXPLOITDB text WRITEUP
WordPress Plugin church_admin - 'id' Cross-Site Scripting
EIP-2026-113654 EXPLOITDB php WORKING POC
WordPress Plugin Contus Video Gallery - 'upload1.php' Arbitrary File Upload
EIP-2026-113677 EXPLOITDB text WORKING POC
WordPress Plugin custom tables - 'key' Cross-Site Scripting
EIP-2026-113709 EXPLOITDB text WORKING POC
WordPress Plugin Easy Contact Forms Export 1.1.0 - Information Disclosure
EIP-2026-113718 EXPLOITDB text WORKING POC
WordPress Plugin Email NewsLetter 8.0 - 'option' Information Disclosure
EIP-2026-113722 EXPLOITDB php WORKING POC
WordPress Plugin Evarisk - 'uploadPhotoApres.php' Arbitrary File Upload
EIP-2026-113737 EXPLOITDB text WORKING POC
WordPress Plugin Fancy Gallery 1.2.4 - Arbitrary File Upload
CVE-2012-3578 EXPLOITDB php WORKING POC
Wordpress Fcchat Widget < 2.2.13.1 - Access Control
Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in html/images.
EIP-2026-113759 EXPLOITDB text WORKING POC
WordPress Plugin Flip Book - 'PHP.php' Arbitrary File Upload
CVE-2012-3814 EXPLOITDB php WORKING POC
Pippin Williamson Font Uploader - Access Control
Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.2.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf extension, then accessing it via a direct request to the file in font-uploader/fonts.
EIP-2026-113766 EXPLOITDB ruby WORKING POC
WordPress Plugin Foxypress - 'Uploadify.php' Arbitrary Code Execution (Metasploit)
EIP-2026-113767 EXPLOITDB ruby WORKING POC
WordPress Plugin Foxypress - 'Uploadify.php' Arbitrary Code Execution (Metasploit)
EIP-2026-113768 EXPLOITDB php WORKING POC
WordPress Plugin Foxypress 0.4.1.1 < 0.4.2.1 - Arbitrary File Upload
EIP-2026-113779 EXPLOITDB php WORKING POC
WordPress Plugin Gallery 3.06 - Arbitrary File Upload
EIP-2026-113796 EXPLOITDB php WORKING POC
WordPress Plugin Google Maps via Store Locator 2.7.1 < 3.0.1 - Multiple Vulnerabilities
EIP-2026-113806 EXPLOITDB php WORKING POC
WordPress Plugin HD FLV Player - 'uploadVideo.php' Arbitrary File Upload
EIP-2026-113812 EXPLOITDB php WORKING POC
WordPress Plugin HTML5 AV Manager 0.2.7 - Arbitrary File Upload
EIP-2026-113838 EXPLOITDB php WORKING POC
WordPress Plugin Invit0r - 'ofc_upload_image.php' Arbitrary File Upload
EIP-2026-113856 EXPLOITDB text WORKING POC
WordPress Plugin Knews Multilingual Newsletters - Cross-Site Scripting
EIP-2026-113860 EXPLOITDB php WORKING POC
WordPress Plugin LB Mixed Slideshow - 'upload.php' Arbitrary File Upload