Sora

16 exploits Active since Dec 2009
EIP-2026-113198 EXPLOITDB text WORKING POC
WD-CMS 3.0 - Multiple Vulnerabilities
EIP-2026-112851 EXPLOITDB text WORKING POC
UCStats 1.1 - SQL Injection
EIP-2026-112870 EXPLOITDB text WRITEUP
Ulisse's Scripts 2.6.1 - 'ladder.php' SQL Injection
EIP-2026-112129 EXPLOITDB text WORKING POC
Simple PHP Blog 0.5.x - 'search.php' Cross-Site Scripting
EIP-2026-112271 EXPLOITDB text WORKING POC
Sniggabo CMS 2.21 - 'search.php' Cross-Site Scripting
EIP-2026-112131 EXPLOITDB text SUSPICIOUS
Simple PHP Guestbook - Remote Admin Access
CVE-2010-0980 EXPLOITDB text WRITEUP
Left 4 Dead (L4D) Stats 1.1 - SQL Injection
SQL injection vulnerability in player.php in Left 4 Dead (L4D) Stats 1.1 allows remote attackers to execute arbitrary SQL commands via the steamid parameter.
EIP-2026-108086 EXPLOITDB text SUSPICIOUS
Jevonweb Guestbook - Remote Admin Access
EIP-2026-108052 EXPLOITDB text WORKING POC
Jax Calendar 1.34 - Remote Admin Access
CVE-2009-4447 EXPLOITDB text WRITEUP
Jax Guestbook 3.5.0 - Auth Bypass
Jax Guestbook 3.5.0 allows remote attackers to bypass authentication and modify administrator settings via a direct request to admin/guestbook.admin.php.
EIP-2026-107600 EXPLOITDB text WORKING POC
HLstatsX Community Edition 1.6.5 - Cross-Site Scripting
CVE-2010-5017 EXPLOITDB text WORKING POC
Elite Gaming Ladders 3.0 - SQL Injection
SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to execute arbitrary SQL commands via the account parameter.
EIP-2026-106579 EXPLOITDB text WRITEUP
Drumbeat CMS 1.0 - SQL Injection
EIP-2026-106325 EXPLOITDB text WORKING POC
Cype CMS - SQL Injection
EIP-2026-105302 EXPLOITDB text WRITEUP
Aurora CMS - SQL Injection
EIP-2026-104281 EXPLOITDB text WORKING POC
ImageVue 2.0 - Remote Admin Login