cyberlog

19 exploits Active since Apr 2008
CVE-2008-2883 EXPLOITDB text WRITEUP
Jamroom - Code Injection
PHP remote file inclusion vulnerability in include/plugins/jrBrowser/payment.php in Jamroom 3.3.0 through 3.3.5 allows remote attackers to execute arbitrary PHP code via a URL in the jamroom[jm_dir] parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-114389 EXPLOITDB text WRITEUP
WsCMS - Multiple SQL Injections
EIP-2026-114388 EXPLOITDB text WORKING POC
wsCMS - 'news.php' Cross-Site Scripting
EIP-2026-113338 EXPLOITDB text WRITEUP
webperformance eCommerce - SQL Injection
CVE-2010-2016 EXPLOITDB text WRITEUP
Imagetraders Iceberg Cms - SQL Injection
SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the p_id parameter.
EIP-2026-112941 EXPLOITDB text WRITEUP
v2marketplacescript Upload_images Script (-7777) - Arbitrary File Upload
EIP-2026-112749 EXPLOITDB text WORKING POC
Toronja CMS - SQL Injection
EIP-2026-112727 EXPLOITDB text WRITEUP
Tochin eCommerce - Multiple Remote s
EIP-2026-111713 EXPLOITDB text WRITEUP
Realtor WebSite System E-Commerce - SQL Injection
EIP-2026-111446 EXPLOITDB text WRITEUP
Powder Blue Design - SQL Injection
CVE-2010-2141 EXPLOITDB text WRITEUP
Nitropowered Nitro Web Gallery - SQL Injection
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action.
CVE-2008-2886 EXPLOITDB text WRITEUP
Jamroom - Code Injection
PHP remote file inclusion vulnerability in include/plugins/jrBrowser/purchase.php in Jamroom 3.3.0 through 3.3.5, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the jamroom[jm_dir] parameter.
EIP-2026-107836 EXPLOITDB text WRITEUP
infoware - SQL Injection
EIP-2026-107428 EXPLOITDB text WRITEUP
GlobalWebTek Design - SQL Injection
EIP-2026-106762 EXPLOITDB text WRITEUP
eCreo - SQL Injection
EIP-2026-105906 EXPLOITDB text WRITEUP
clickartweb Design - SQL Injection
EIP-2026-106174 EXPLOITDB text WRITEUP
Cosmos Solutions CMS - SQL Injection
CVE-2008-1858 EXPLOITDB text WRITEUP
724Networks 724CMS <4.01 - SQL Injection
SQL injection vulnerability in index.php in 724Networks 724CMS 4.01 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter.
EIP-2026-104409 EXPLOITDB text WORKING POC
ProWeb Design - SQL Injection