cyberlog

19 exploits Active since Apr 2008
CVE-2008-2883 EXPLOITDB text WRITEUP
Jamroom 3.3.0-3.3.5 - Remote Code Execution via jamroom[jm_dir] Parameter
PHP remote file inclusion vulnerability in include/plugins/jrBrowser/payment.php in Jamroom 3.3.0 through 3.3.5 allows remote attackers to execute arbitrary PHP code via a URL in the jamroom[jm_dir] parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-114389 EXPLOITDB text WRITEUP
WsCMS - Multiple SQL Injections
EIP-2026-114388 EXPLOITDB text WORKING POC
wsCMS - 'news.php' Cross-Site Scripting
EIP-2026-113338 EXPLOITDB text WRITEUP
webperformance eCommerce - SQL Injection
CVE-2010-2016 EXPLOITDB text WRITEUP
Iceberg CMS - SQL Injection via p_id Parameter
SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the p_id parameter.
EIP-2026-112941 EXPLOITDB text WRITEUP
v2marketplacescript Upload_images Script (-7777) - Arbitrary File Upload
EIP-2026-112749 EXPLOITDB text WORKING POC
Toronja CMS - SQL Injection
EIP-2026-112727 EXPLOITDB text WRITEUP
Tochin eCommerce - Multiple Remote s
EIP-2026-111713 EXPLOITDB text WRITEUP
Realtor WebSite System E-Commerce - SQL Injection
EIP-2026-111446 EXPLOITDB text WRITEUP
Powder Blue Design - SQL Injection
CVE-2010-2141 EXPLOITDB text WRITEUP
nitro_web_gallery - SQL Injection via PictureId Parameter
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action.
CVE-2008-2886 EXPLOITDB text WRITEUP
Jamroom 3.3.0-3.3.5 - Remote Code Execution via jamroom[jm_dir] Parameter
PHP remote file inclusion vulnerability in include/plugins/jrBrowser/purchase.php in Jamroom 3.3.0 through 3.3.5, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the jamroom[jm_dir] parameter.
EIP-2026-107836 EXPLOITDB text WRITEUP
infoware - SQL Injection
EIP-2026-107428 EXPLOITDB text WRITEUP
GlobalWebTek Design - SQL Injection
EIP-2026-106762 EXPLOITDB text WRITEUP
eCreo - SQL Injection
EIP-2026-105906 EXPLOITDB text WRITEUP
clickartweb Design - SQL Injection
EIP-2026-106174 EXPLOITDB text WRITEUP
Cosmos Solutions CMS - SQL Injection
CVE-2008-1858 EXPLOITDB text WRITEUP
724Networks 724CMS <4.01 - SQL Injection
SQL injection vulnerability in index.php in 724Networks 724CMS 4.01 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter.
EIP-2026-104409 EXPLOITDB text WORKING POC
ProWeb Design - SQL Injection