Shai rod

18 exploits Active since Jan 2006
CVE-2012-3508 EXPLOITDB python WORKING POC
Roundcube Webmail 0.8.0 - Cross-Site Scripting via HTML Email Href Attribute
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
CVE-2012-10045 EXPLOITDB CRITICAL ruby WORKING POC
XODA 0.4.5 - Unauthenticated Arbitrary PHP File Upload via Multipart Form Data
XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary PHP code on the server. The flaw resides in the upload functionality, which fails to properly validate or restrict uploaded file types. By crafting a multipart/form-data POST request, an attacker can upload a .php file directly into the web-accessible files/ directory and trigger its execution via a subsequent GET request.
CVE-2012-10045 EXPLOITDB CRITICAL text WRITEUP
XODA 0.4.5 - Unauthenticated Arbitrary PHP File Upload via Multipart Form Data
XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary PHP code on the server. The flaw resides in the upload functionality, which fails to properly validate or restrict uploaded file types. By crafting a multipart/form-data POST request, an attacker can upload a .php file directly into the web-accessible files/ directory and trigger its execution via a subsequent GET request.
CVE-2012-10045 METASPLOIT CRITICAL ruby WORKING POC
XODA 0.4.5 - Unauthenticated Arbitrary PHP File Upload via Multipart Form Data
XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary PHP code on the server. The flaw resides in the upload functionality, which fails to properly validate or restrict uploaded file types. By crafting a multipart/form-data POST request, an attacker can upload a .php file directly into the web-accessible files/ directory and trigger its execution via a subsequent GET request.
CVE-2020-35476 METASPLOIT CRITICAL ruby WORKING POC
OpenTSDB 2.4.0 unauthenticated command injection
A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. (tsd/GraphHandler.java attempted to prevent command injections by blocking backticks but this is insufficient.)
CVSS 9.8
EIP-2026-114494 EXPLOITDB text WRITEUP
XWiki 4.2-milestone-2 - Multiple Persistent Cross-Site Scripting Vulnerabilities
EIP-2026-113427 EXPLOITDB text WRITEUP
Wiki Web Help 0.3.9 - Multiple Persistent Cross-Site Scripting Vulnerabilities
CVE-2012-2573 EXPLOITDB python WORKING POC
T-dah WebMail 3.2.0-2.3 - Stored Cross-Site Scripting via Email Message Body
Multiple cross-site scripting (XSS) vulnerabilities in T-dah WebMail 3.2.0-2.3 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a SCRIPT element, (2) a crafted Cascading Style Sheets (CSS) expression property, (3) a CSS expression property in the STYLE attribute of an arbitrary element, (4) an ONLOAD attribute of a BODY element, (5) a crafted SRC attribute of an IFRAME element, (6) a crafted CONTENT attribute of an HTTP-EQUIV="refresh" META element, or (7) a data: URL in the CONTENT attribute of an HTTP-EQUIV="refresh" META element.
CVE-2006-0469 EXPLOITDB python WORKING POC
uebimiau 2.7.9 - Cross-Site Scripting via IMG Tag SRC Attribute
Cross-site scripting (XSS) vulnerability in UebiMiau 2.7.9, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in the SRC attribute of an IMG tag.
CVE-2012-4668 EXPLOITDB python WORKING POC
Roundcube Webmail < 0.8.1 - Cross-Site Scripting via Email Signature
Cross-site scripting (XSS) vulnerability in Roundcube Webmail 0.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the signature in an email.
EIP-2026-110282 EXPLOITDB html WORKING POC
OpenDocMan 1.2.6.1 - Cross-Site Request Forgery (Password Change)
CVE-2012-4385 EXPLOITDB MEDIUM text WORKING POC
LetoDMS 3.3.6 - Cross-Site Request Forgery via Change Password
letodms 3.3.6 has CSRF via change password
CVSS 6.5
EIP-2026-107787 EXPLOITDB python WORKING POC
IlohaMail Webmail - Persistent Cross-Site Scripting
EIP-2026-107596 EXPLOITDB python WORKING POC
Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities
EIP-2026-107558 EXPLOITDB python WORKING POC
hastymail2 webmail 1.1 rc2 - Persistent Cross-Site Scripting
EIP-2026-107537 EXPLOITDB python WORKING POC
GWebmail 0.7.3 - Cross-Site Scripting / Local File Inclusion / Remote Code Execution
EIP-2026-105661 EXPLOITDB python WORKING POC
businesswiki 2.5rc3 - Persistent Cross-Site Scripting / Arbitrary file upload
EIP-2026-102377 EXPLOITDB python WORKING POC
hupa webmail 0.0.2 - Persistent Cross-Site Scripting