Real Name | James Bercegay |
---|---|
Email address | private |
Website | www.gulftech.org |
First Active | 2003-12-23 |
Last Active | 2019-09-23 |
PHP-Calendar suffers from a file inclusion vulnerability. All versions are affected.
f24f9c929a06b9631a27ebe5f0b8b4cd5d75fdd417bed107a0930d8350e2200e
WHM AutoPilot version 2.4.6.5 and below suffer from information disclosure, cross site scripting, and file inclusion vulnerabilities.
00375b092ada0d351c45c3877bcf0495a8acc87237d495f9a48c3f095aa3943c
PsychoStats versions 2.2.4 Beta and earlier are susceptible to a cross site scripting attack.
d1114f9c993573b815a04fd554ee7d17e53e511f5372e20336cecc502a7d68a0
Kayako eSupport version 2.x suffers from cross site scripting and SQL injection flaws. Detailed exploitation given.
16c0016346d8a07709527ae1c270737a53ce7b3cf8143ee28a9e0cfae3822dc0
phpGroupWare version 0.9.16.003 is susceptible to full path disclosure, cross site scripting, and SQL injection attacks. Exploitation provided.
b5aca02740fa15bc67a01e2d44fbe0bacfe56f3e5b36c9f677008bce868ea155
dbPowerAmp Music Converter 10.0 and Player 2.0 suffer from multiple buffer overflow and denial of service vulnerabilities.
6e960aaf7dcf4d341dce48d56fc7b3987ad56e984d13fae340528a8beb88d129
Emulive Server4 Commerce Edition Build 7560 suffers from a denial of service vulnerability and allows for unauthorized administrative access due to insufficient input verification.
fc29d1775b0b44311d1616e7891e8a27cc8a0c7abb1b30ffea9932ec9f74c208
GulfTech Security Research - phpWebSite versions 0.9.3-4 and prior are susceptible to cross site scripting, SQL injection, script injection, and command execution vulnerabilities.
193d3f7bf29951ce40a35cc4e059662ef4bd62391eea6a3038761387aabb6ab1
Xedus version 1.0 is susceptible to denial of service, cross site scripting, and directory traversal vulnerabilities.
5765f6fb54a738071a957c6f76ae81ec1aa3ecf1b5832aab12c1f5e1e6293065
Keene Digital Media Server version 1.0.2 is susceptible to a directory traversal attack due to a lack of sufficient input validation.
c6b7b8ca66b7a19b5018608256d434a4b46c13eb06079a5fd72bcfa81b0bc030
GulfTech Security Exploit - Easy File Sharing webserver version 1.25 denial of service exploit that consumes 99% of the CPU.
aea01cd9eb07d991268829b7e9d3317ecce42f8c3c22780ebe13704ee0b1811d
GulfTech Security Advisory - Easy File Sharing webserver version 1.25 is susceptible to denial of service and unauthorized system access vulnerabilities.
dd5041d478afd6a443b87b296cde275f172821ea68015ab1cfa70c6beadc736a
GulfTech Security Advisory - Multiple Liveworld products suffer from cross site scripting flaws.
ebc7c3c7aae2e82bed1c14b4ed71a11fb9c443b20dfa4e4c5326466ff63aae6e
GulfTech Security Advisory - BadBlue Webserver version 2.5 is susceptible to a denial of service attack when multiple connections are made to it from a single host. Exploit provided.
9dbe4e55fe1e227f34cc5142b74962afa63e4be85ce1d38e91e344f0ef74106e
PHPX versions 3.2.6 and below have cross site scripting, path disclosure and arbitrary command execution vulnerabilities. Full exploitation given.
721b697fe7688e4f5cd82bffa98fa28968a6f5bafa7c37047140619bc081fa19
Open Bulletin Board versions 1.0.6 and below suffer from cross site scripting, SQL injection, and arbitrary command execution flaws.
e16c00b60f8ba3f4b3b6fd18ee54b24d3774e3df45e73ef6c1f8da73a3fd1158
Tiki CMS/Groupware (aka TikiWiki) versions 1.8.1 and below suffer from path disclosure, cross site scripting, SQL injection, directory traversal, and arbitrary file upload vulnerabilities.
0beea7b6fb302a52336dbb87602b0275464f82d4af7d6975982a5c965546d0c5
Invision Gallery version 1.0.1 suffers from multiple remote SQL injection vulnerabilities.
d98347f9af4bab53d06e75dd9b5f371ddf4650a1a25b680feefcfc90104fc437
Invision Power Top Site List versions 1.1 and below are susceptible to a SQL injection attack.
9c7ea4878e7254176e4bcaac6f32a59ebf68c04e43e0a4b49b0efe9f6594621c
Invision Gallery version 1.0.1 fails to properly validate user supplied input allowing for various SQL injection attacks.
8406dd6fdc8e09171b80e6595a6cdc39e2810302ba082391f91b9ca2d80ba0a7
phpBB versions 2.0.7a and below are susceptible to cross site scripting, SQL injection, and remote command execution attacks.
815693b4ce058c8188efae85234c700b507656011ddae5cb4beb547eb9a22005
The Mambo Open Source web content management system version 4.5 stable 1.0.3 and earlier suffers from multiple vulnerabilities including cross site scripting, SQL injection, and query tampering.
eb69cdd423873abc07892485078b6e9b2d11df2891ed76993754c49b73c5c23c
Jelsoft vBulletin 3.0.0 RC4 and other releases and susceptible to cross site scripting attacks.
9ba7da743e628349c8ee4a1a744b90aa09ff076bcd1c22b86689eb34a1126b4e
Cross site scripting vulnerabilities exists in Phorum versions 5.0.3 Beta and below.
5b4e2faeef8fc7c76847ad3ef1332b7b89e7e904e4fcb3dad65ce3a6d8adb457
phpBB versions 2.0.6d and below suffer from cross site scripting vulnerabilities.
0f69c90c7244bc04e1403480f08e24c47a0ed84ae9e2d13eb580f312f385f800