Silent Dream

9 exploits Active since Nov 2011
EIP-2026-119451 EXPLOITDB text WORKING POC
WebcamXP and webcam 7 - Directory Traversal
CVE-2011-4273 EXPLOITDB text WORKING POC
GoAhead Webserver 2.18 - Cross-Site Scripting via Group Parameter or URL Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via (1) the group parameter to goform/AddGroup, related to addgroup.asp; (2) the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the (3) user (aka User ID) or (4) group parameter to goform/AddUser, related to adduser.asp.
CVE-2011-4273 EXPLOITDB text WORKING POC
GoAhead Webserver 2.18 - Cross-Site Scripting via Group Parameter or URL Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via (1) the group parameter to goform/AddGroup, related to addgroup.asp; (2) the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the (3) user (aka User ID) or (4) group parameter to goform/AddUser, related to adduser.asp.
CVE-2011-4273 EXPLOITDB text WORKING POC
GoAhead Webserver 2.18 - Cross-Site Scripting via Group Parameter or URL Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via (1) the group parameter to goform/AddGroup, related to addgroup.asp; (2) the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the (3) user (aka User ID) or (4) group parameter to goform/AddUser, related to adduser.asp.
EIP-2026-116039 EXPLOITDB perl STUB
Passport PC To Host - '.zws' File Memory Corruption
CVE-2011-5173 EXPLOITDB perl WORKING POC
Bugbear Entertainment FlatOut 2005 - Buffer Overflow via BED File Title Field
Buffer overflow in Bugbear Entertainment FlatOut 2005 allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field in a bed file.
EIP-2026-115001 EXPLOITDB perl WORKING POC
BlueZone Desktop - Multiple Malformed Files Local Denial of Service Vulnerabilities
EIP-2026-115000 EXPLOITDB perl WORKING POC
BlueZone Desktop - '.zap' file Local Denial of Service
CVE-2011-4836 EXPLOITDB text WRITEUP
HomeSeer HS2 2.5.0.20 - Cross-Site Scripting via Crafted URI
Cross-site scripting (XSS) vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI.