Sid3^effects

115 exploits Active since Jan 2007
EIP-2026-105624 EXPLOITDB text WRITEUP
Bs Auto_Classifieds Script - 'articlesdetails.php' SQL Injection
EIP-2026-105622 EXPLOITDB text WRITEUP
Bs Auction Script - SQL Injection
EIP-2026-105246 EXPLOITDB text WRITEUP
Articles Directory - Authentication Bypass
CVE-2010-2917 EXPLOITDB text WRITEUP
AJ Square AJ Article 3.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AJ Square AJ Article 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) emailid, (2) fname, (3) lname, (4) company, (5) address1, (6) address2, (7) city, (8) state, (9) zipcode, (10) phone, and (11) fax parameters in an update action. NOTE: some of these details are obtained from third party information.
CVE-2007-0053 EXPLOITDB text WRITEUP
ASP Siteware Autodealer < 2.0 - SQL Injection
SQL injection vulnerability in detail.asp in ASP SiteWare autoDealer 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the iPro parameter.
CVE-2010-5019 EXPLOITDB text WRITEUP
2daybiz Online Classified Script - SQL Injection
SQL injection vulnerability in view_photo.php in 2daybiz Online Classified Script allows remote attackers to execute arbitrary SQL commands via the alb parameter.
CVE-2010-1706 EXPLOITDB text WRITEUP
2daybiz Auction Script - SQL Injection
Multiple SQL injection vulnerabilities in login.php in 2daybiz Auction Script allow remote attackers to execute arbitrary SQL commands via (1) the login field (aka the username parameter), and possibly (2) the password field, to index.php. NOTE: some of these details are obtained from third party information.
CVE-2010-1704 EXPLOITDB text WRITEUP
2daybiz Polls Script - SQL Injection
Multiple SQL injection vulnerabilities in 2daybiz Polls (aka Advanced Poll) Script allow remote attackers to execute arbitrary SQL commands via (1) the password field to login.php, (2) the login field (aka email parameter) to login.php, (3) the password field (aka pass parameter) to the default URI under admin/, and possibly (4) the login field to the default URI under admin/. NOTE: some of these details are obtained from third party information.
EIP-2026-104932 EXPLOITDB text WRITEUP
Ad Network Script - Persistent Cross-Site Scripting
CVE-2010-5015 EXPLOITDB text WRITEUP
2daybiz Network Community Script - SQL Injection
SQL injection vulnerability in view_photo.php in 2daybiz Network Community Script allows remote attackers to execute arbitrary SQL commands via the alb parameter.
EIP-2026-104296 EXPLOITDB text WRITEUP
Joomla! Component Jreservation 1.5 - SQL Injection / Cross-Site Scripting
CVE-2010-5013 EXPLOITDB text WRITEUP
Mckenzie Creations VRM <3.5 - SQL Injection
SQL injection vulnerability in listing_detail.asp in Mckenzie Creations Virtual Real Estate Manager (VRM) 3.5 allows remote attackers to execute arbitrary SQL commands via the Lid parameter.
EIP-2026-100367 EXPLOITDB text WRITEUP
iClone - SQL Injection
EIP-2026-100624 EXPLOITDB text WRITEUP
Web Wiz Forums 9.68 - SQL Injection
EIP-2026-100217 EXPLOITDB text WORKING POC
Comersus 8 Shopping Cart - SQL Injection / Cross-Site Request Forgery