Email address | john at autosectools.com |
---|---|
Website | www.autosectools.com |
First Active | 2010-04-27 |
Last Active | 2012-04-17 |
A denial of service vulnerability can be exploited to crash Serva32 version 1.2.00 RC1.
39ab74456449c1a36d67a2e41f9ae3a631ac80cec6b2df0c2e500a2a02e7f705
A directory traversal vulnerability in Serva32 version 1.2.00 RC1 can be exploited to read files outside of the web root.
36ef686f24a435eddbe553ae5e744a2ddd3c73ecea4f76a2fabce8cbc90b03f0
TCExam version 11.1.029 suffers from a remote SQL injection vulnerability.
900162c3dfeb68ad88e2af92c699d344c1a2c090365b7b9f726135337f287e5e
A cross site request forgery vulnerability in Front Accounting version 2.3.4 can be exploited to create a new admin.
276c57c4a04414f8488f50a79caa808f3ef20c522cbb0296f61b1ba5071dd5d8
A reflected cross site scripting vulnerability in LDAP Account Manager version 3.4.0 can be exploited to execute arbitrary JavaScript.
5d743e629aefd622c38a22ab1190e577c9a0c735df0e1f9917a1ce3bc2aa2ceb
A command injection vulnerability in Time and Expense Management System can be exploited to execute arbitrary operating system commands.
51c4634c95a72dd7a3507b01554276d6e188fc95a426618f902ccee708d85bb6
An arbitrary upload vulnerability in Time and Expense Management System can be exploited to upload a PHP shell.
16b29e1a3571d25e957dea7d04207efa6fa61c470091da011080484606247e3a
A reflected cross site scripting vulnerability in Time and Expense Management System can be exploited to execute arbitrary JavaScript.
9929c1154e8449e482f364c675b0eb774cbb040a0429a1c140032178d50497c4
A reflected cross site scripting vulnerability in Tine version 2.0 can be exploited to execute arbitrary JavaScript.
974e1713b17b2547525c8eb2f602e892fd4d4398944b32b6631e56e7d166bc6b
A reflected cross site scripting vulnerability in WebAuction version 0.3.6 can be exploited to execute arbitrary JavaScript.
6fe6a65011ccf04a17d369e44a4e147b973dad4457b154b13a7713d60b983ee5
A remote SQL injection vulnerability in mySeatXT version 0.1781 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.
027c040aefe3cce4d941812b454320797ec0935118cbc79f575a7cd766c3f745
A local file inclusion vulnerability in OrangeHRM version 2.6.3 can be exploited to include arbitrary files.
904f19ed1c7d78e937be6a1e3e37907f31490b70b77fa966d4f097d84f44537c
A remote SQL injection vulnerability in phpMyChat Plus version 1.93 can be exploited to extract arbitrary data.
74db3035ec2bf971a33ef4161634f2f27af0d47df247933f63d90810de555def
A reflected cross site scripting vulnerability in phpMyChat Plus version 1.93 can be exploited to execute arbitrary JavaScript.
457aeb746421475c9817a831b496f445a2a28d1e0ecb0d84f283577bfbc3d397
A reflected cross site scripting vulnerability in TemaTres version 1.3 can be exploited to execute arbitrary JavaScript.
cca51d2fe24e65e79aa40b59ff941ac3fcde1a49e8678ad19e81ca640616f4dd
A reflected cross site scripting vulnerability in webERP version 4.03.8 can be exploited to execute arbitrary JavaScript.
319298e6d568adf1f967836d0094304409c0db8ab76287d7cd60d4b785af7190
A local file inclusion vulnerability in Dolibarr version 3.0.0 can be exploited to include arbitrary files.
efefe3ea8c6810ee1b670ebdcaa5526092580261c7cc1260a703f0ba6ed0f2ef
A reflected cross site scripting vulnerability in Dolibarr version 3.0.0 can be exploited to execute arbitrary JavaScript.
d40933a490a20ec99376edb8fcfdf191c2b6d3f52c7403f52d814f84aaa0429f
A SQL injection vulnerability in LightNEasy version 3.2.3 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.
93a1ba2d22f9b3d9d4a6a2fd2808c2d63040253943fdf3ad6963492f3074085f
A reflected cross site scripting vulnerability in Todoyu version 2.0.8 can be exploited to execute arbitrary JavaScript.
8905a94f9ae11f23729ab5705029975f0e8f3fa55cf34596e953c48ab0ef4325
Web2Project version 2.3 suffers from a remote SQL injection vulnerability.
627a34cbf590c6a115d8710e1446b9296d812a1043dbd985cf440ede9c495a61
A cross site request forgery vulnerability in e107 version 0.7.25 can be exploited to grant admin privileges.
63cb6ca823beffb1db021f387a72de0cdc5f339f33eb80b38b7c32801ec531fb
A reflected cross site scripting vulnerability in vtiger CRM version 5.2.1 can be exploited to execute arbitrary JavaScript.
16503d8f7b3e70437cff319ce1fb193af7665166d746ed4b65f60860441ec7ba
A local file inclusion vulnerability in vtiger CRM version 5.2.1 can be exploited to include arbitrary files.
588c18208d84dab6e005ca0cf9a5d3627abdc7d5c0a944370d71d56b3058647f
A cross site request forgery vulnerability in eXtplorer version 2.1 RC3 can be exploited to create a new admin.
73510bbcc0b1f03a41a02a1a718641f2649cc998082d27d2a801818d516a1fff