Real Name | Lostmon Lords |
---|---|
Email address | private |
Website | lostmon.blogspot.com |
First Active | 2004-12-11 |
Last Active | 2013-12-16 |
Google's custom search engine suffers from a cross site scripting vulnerability.
f055badf6c13861932c4e808371522508f461a1dff85f24b1da694f6a17d4485
ifoto version 1.0 suffers from a directory traversal vulnerability.
515f80aeae4c062e76087e67bcaf8da27e538714cd8b5c87bb1ab74a17b91c67
Vikingboard version 0.1.2 suffers from multiple cross site scripting vulnerabilities.
4152f6d418d3657569e6f20922d2c74245012db460756216c446753cdd84ecee
Vikingboard may disclose sensitive information via the debug variable.
d8ec1b54380cdc906a660ece72c26a22cdd39b072675e97aa92cad332dc7e9d8
A number of cross site scripting and SQL injection vulnerabilities affect various products from AlstraSoft including Video Share Enterprise, Text Ads Enterprise, SMS Text Messaging Enterprise, Affiliate Network Pro, Article Manager Pro, and AskMe Pro.
dc6daac339055624b32c31104884c5c2c701f74e23323cec7c2aa98c2ad180d5
The NetFlow Analyzer version 5 and the OpManager version 7 suffer from cross site scripting vulnerabilities.
903687236cd10c8ffd7a15e78746a174fb05988d7562c1a2d88dab24ab95b07e
Safari version 3.0.1 for Windows appears to suffer from a denial of service condition in corefoundation.dll.
3eb10776e8d0480314e59dc2a8e510c996109a6b09fea84edeceb51250f9432f
Explorer.exe version 6.00.2900.2180 suffers from a buffer overflow vulnerability.
0ef909240a80f33f33969d55670911c0b5c3a8e387c86025576087057b4d4972
Microsoft Internet Explorer contains a flaw that may allow a malicious user to cause IE7 to enter a loop in which IE7 become unresponsive resulting in a recoverable denial of service issue.
256971975add3b951de70cc573186c1d338f04c0aeee83d44f1c21fc71a2ca5e
aBitWhizzy suffers from local file traversal and cross site scripting vulnerabilities.
2093267fb24692dc542d6efe5cb6a6a50d030538517dbacd92e5ac71fc166602
@Mail suffers from cross site scripting flaws in search.pl.
cdf13de4e84068e74d685d8467c21e617c726c0f6d643e8f86bb79615577b91d
PHP icalendar versions 2.23rc1 and below are susceptible to multiple cross site scripting vulnerabilities.
697621b4cd8f230c79e1da41eff9540a3b79265fc5704584705ecaf8bfaea5e2
osCommerce version 3.0a3 is susceptible to classic directory traversal and cross site scripting attacks.
484093f7afe8c6176059be9cf82155df749e2cc729ce8921593d03e75431650d
osCommerce contains a flaw in the admin section that allows a remote cross site scripting attack.
9dd57fe31faf9453447a5f66dddee562bd6b473276ce0b63430fd638f9e4f477
PHPRunner suffers from a database credential disclosure vulnerability.
cfee31d0f2a39eed570dd22fdd280cdbad110a27392dfb40c9df1fb77db8caac
GOOP Gallery versions prior to 2.0.3 suffer from a flaw that can allow cross site scripting attacks
a6dd6f0e60b3902048981724a29d35cd4d55349f9d854d574f891ce8e8d1386c
osCommerce contains a flaw that allows a remote cross site scripting attack.This flaw exists because the application does not validate 'page' param upon submission to multiple scripts in /admin folder.This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
e784c526382627be9844d4f29fd4a4705c81c062f03f08b832c9eeae8976a0de
Panda ActiveScan contains a flaw that allows for remote cross site scripting attacks. This flaw exists because the application does not validate the 'email' variable upon submission to the ascan_6.asp script. Version 5.53.00 is affected.
6e7b374424deab1b989a2fabfcd70e556494fabb3257e2737e4cc890128d79c7
Spymac WOS V is susceptible to multiple cross site scripting flaws.
1d37ec6d926fe9255f317bcdeffa9eb829783c5b33b7aeacd0774e7b8a4ce248
CubeCart version 3.0.7-p11 is susceptible to multiple cross site scripting flaws.
be85d0b836d9400f1e9c7f64f1dc26e0cd12128f5a1aeaf27239cd70d4ef9f3d
PHPNuke EV 7.7 is susceptible to SQL injection attacks via the query variable in the search module.
dddeb2bb1f206c19946cb86a6a3b7a1be6827d38c277d90223382560458ded36
Google's GMailSite script is susceptible to cross site scripting attacks. Details provided. Versions 1.0.4 and below are affected.
80412f5ef921ebe774f0f42ee55259a8ea6dab306befcacfa67e350729d833b3
Nuke ET version 3.2 is susceptible to a remote SQL injection vulnerability. Exploit details provided.
6e87a2b4b8c3d665df6e02aeb92a7b4544566df507f4204295d374396fedcca9
Revize(r) CMS is susceptible to SQL injection and cross site scripting attacks. Exploitation details provided.
dd1ed25f98fe01cfca72917e5e732ba9d6ca3112d046e105c1601701928ccbb6
Spymac Web OS 4.0 is susceptible to multiple cross site scripting vulnerabilities. Full exploitation details provided.
244a313132b1eb86d6630a5e3c39dd3c83967f090e772d86ba20a2868b1928af