Vulnerability Laboratory Research Team

91 exploits Active since Nov 2011
CVE-2012-6508 EXPLOITDB WRITEUP
NetArt Media Car Portal 3.0 - Cross-Site Request Forgery in Admin Security Module
Multiple cross-site request forgery (CSRF) vulnerabilities in NetArt Media Car Portal 3.0 allow remote attackers to hijack the authentication of administrators for requests that (1) change arbitrary user passwords via a nouveau action in the security module to cars/ADMIN/index.php; (2) create a user or (3) create a sub user via a sub_accounts action in the home module to USERS/index.php; or (4) change profile information via an edit action in the profile module to USERS/index.php.
CVE-2012-6509 EXPLOITDB WRITEUP
NetArt Media Car Portal 3.0 - Unauthenticated Arbitrary File Upload via Double Extension Bypass
Unrestricted file upload vulnerability in NetArt Media Car Portal 3.0 allows remote attackers to execute arbitrary PHP code by uploading a file a double extension, as demonstrated by .php%00.jpg.
CVE-2012-4279 EXPLOITDB text WRITEUP
Free Realty 3.1-0.6 - SQL Injection via Agent Display or Admin Edit Parameters
Multiple SQL injection vulnerabilities in Free Realty 3.1-0.6 allow remote attackers to execute arbitrary SQL commands via the (1) view parameter to agentdisplay.php or (2) edit parameter to admin/admin.php.
CVE-2012-4278 EXPLOITDB text WRITEUP
Free Realty 3.1-0.6 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Free Realty 3.1-0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) notes parameter to (a) admin/agenteditor.php; (2) title, (3) previewdesc, (4) fulldesc, or (5) notes parameter (b) to agentadmin.php or (c) in an addlisting action to agentadmin.php; or unspecified vectors to (d) admin/adminfeatures.php.
CVE-2012-4265 EXPLOITDB text WRITEUP
Proman Xpress 5.0.1 - SQL Injection via category_edit.php cid Parameter
SQL injection vulnerability in category_edit.php in Proman Xpress 5.0.1 allows remote attackers to execute arbitrary SQL commands via the cid parameter.
CVE-2012-2908 EXPLOITDB text WORKING POC
Viscacha 0.8.1.1 - SQL Injection via bbcodeexample, buttonimage, or bbcodetag Parameter
Multiple SQL injection vulnerabilities in admin/bbcodes.php in Viscacha 0.8.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) bbcodeexample, (2) buttonimage, or (3) bbcodetag parameter.
EIP-2026-119434 EXPLOITDB text WRITEUP
SonicWALL OEM Scrutinizer 9.5.2 - Multiple Vulnerabilities
EIP-2026-118721 EXPLOITDB text WRITEUP
LAN.FS Messenger 2.4 - Command Execution
EIP-2026-116378 EXPLOITDB text WRITEUP
TagScanner 5.1 - Stack Buffer Overflow (PoC)
CVE-2012-1774 EXPLOITDB text WRITEUP
Gretech GOM Media Player <2.1.39.5101 Open URL - Impact Unknown
Unspecified vulnerability in the Open URL feature in Gretech GOM Media Player before 2.1.39.5101 has unknown impact and attack vectors, a different vulnerability than CVE-2007-5779 and CVE-2012-1264.
EIP-2026-114627 EXPLOITDB text WRITEUP
Zikula CMS 1.3.5 - Multiple Vulnerabilities
EIP-2026-113556 EXPLOITDB text WORKING POC
WordPress Plugin All In One WP Security & Firewall 3.8.3 - Persistent Cross-Site Scripting
EIP-2026-113141 EXPLOITDB text WRITEUP
vOlk Botnet Framework 4.0 - Multiple Vulnerabilities
CVE-2012-2909 EXPLOITDB text WORKING POC
Viscacha 0.8.1.1 - Stored Cross-Site Scripting via Private Messages, Bad Word, Portal, or Topic Fields
Multiple cross-site scripting (XSS) vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) text field in the Private Messages System, (2) Bad Word field in Zensur, or (3) Portal or (4) Topic field in Kommentar.
CVE-2010-4980 EXPLOITDB text WRITEUP
iScripts ReserveLogic 1.0 - SQL Injection
SQL injection vulnerability in packagedetails.php in iScripts ReserveLogic 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter.
CVE-2012-4266 EXPLOITDB text WRITEUP
Proman Xpress 5.0.1 - Cross-Site Scripting via cl_comments Parameter
Cross-site scripting (XSS) vulnerability in client_details.php in Proman Xpress 5.0.1 allows remote attackers to inject arbitrary web script or HTML via the cl_comments parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-110459 EXPLOITDB text WORKING POC
Pandora FMS 5.1 SP1 - SQL Injection
EIP-2026-110334 EXPLOITDB text WRITEUP
Opial CMS 2.0 - Multiple Vulnerabilities
EIP-2026-110031 EXPLOITDB text WORKING POC
Omnistar Document Manager 8.0 - Multiple Vulnerabilities
EIP-2026-109909 EXPLOITDB text WRITEUP
News Script PHP 1.2 - Multiple Vulnerabilities
EIP-2026-107859 EXPLOITDB text WRITEUP
Inout Mobile Webmail APP - Persistent Cross-Site Scripting
EIP-2026-107517 EXPLOITDB text WRITEUP
GTX CMS 2013 Optima - SQL Injection
CVE-2012-4280 EXPLOITDB text WRITEUP
Free Realty 3.1-0.6 - Cross-Site Request Forgery in Agent Editor
Multiple cross-site request forgery (CSRF) vulnerabilities in admin/agenteditor.php in Free Realty 3.1-0.6 allow remote attackers to hijack the authentication of administrators for requests that (1) add an agent via an addagent action or (2) modify an agent.
EIP-2026-107521 EXPLOITDB text WRITEUP
Guestbook Scripts PHP 1.5 - Multiple Vulnerabilities
EIP-2026-107163 EXPLOITDB text WRITEUP
Flynax General Classifieds CMS 4.0 - Multiple Vulnerabilities