Author: AlpHaNiX

Country:

Reported research: 29

Advisories

Risk	Topic & Details
High	Shadow Stream Recorder 3.0.1.7 Buffer Overflow Local \| 2012-04-26
Med.	ASPSiteWare Automotive Dealer V1/V2 SQL Injection Vulnerability (CVE assigned) Remote \| 2009-07-26
High	Shadow Stream Recorder (.m3u file) Universal Stack Overflow Exploit (CVE assigned) \| 2009-04-23
Med.	ASP Product Catalog 1.0 (XSS/DD) Multiple Remote Exploits (CVE assigned) Remote \| 2009-04-19
Med.	ASP User Engine .NET Remote Database Disclosure Vulnerability (CVE assigned) Remote \| 2009-03-23
Med.	Codefixer MailingListPro (MailingList.mdb) Database Disclosure Vuln (CVE assigned) Remote \| 2009-03-05
Med.	The Net Guys ASPired2Protect Database Disclosure Vulnerability (CVE assigned) Remote \| 2009-03-05
Med.	The Net Guys ASPired2Poll Remote Database Disclosure Vulnerability (CVE assigned) Remote \| 2009-03-04
High	CF_Auction (forummessage) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-04
High	CFMBLOG (index.cfm categorynbr) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-04
High	CF SHOPKART 5.2.2 (SQL/DD) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2009-03-02
High	CF_Calendar (calendarevent.cfm) Remote SQL Injection Exploit (CVE assigned) Remote \| 2009-03-02
High	CF_Forum Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-02
High	Pixel8 Web Photo Album 3.0 Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-18
Low	dBpowerAMP Audio Player v2 ( .pls file) LoCaL BufferOverFlow Exploit \| 2009-01-30
Med.	PacPoll 4.0 (poll.mdb/poll97.mdb) Database Disclosure Vulnerability (CVE assigned) Remote \| 2009-01-29
High	JetAudio Basic 7.0.3 BufferOverFlow PoC Local \| 2009-01-29
Low	EleCard MPEG PLAYER (.m3u file) Local Stack Overflow Exploit Local \| 2009-01-26
High	VUPLAYER BufferOver flow POC (CVE assigned) Local \| 2009-01-22
Med.	ClickAndEmaiL (SQL/XSS) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2009-01-14
Med.	Click&Rank (SQL/XSS) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2009-01-14
High	Gnews Publisher .NET (authors.asp authorID) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-01-02
High	ASP PORTAL Multiple Remote SQL Injection Vulnerabilities (CVE assigned) Remote \| 2008-12-19
Med.	NatterChat 1.12 (natterchat112.mdb) Database Disclosure Vulnerability (CVE assigned) Remote \| 2008-12-19
Med.	RankEm (auth bypass) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-17
Med.	NightFall Personal Diary 1.0 (XSS/DD) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2008-12-17
Med.	Poll Pro 2.0 (Auth Bypass) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-17
Med.	RankEm (rankup.asp siteID) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-17
High	PostEcards (SQL/DD) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2008-12-15

Author: AlpHaNiX

Country:

Reported research: 29

Advisories

High

Shadow Stream Recorder 3.0.1.7 Buffer Overflow

Local | 2012-04-26

Med.

ASPSiteWare Automotive Dealer V1/V2 SQL Injection Vulnerability (CVE assigned)

Remote | 2009-07-26

High

Shadow Stream Recorder (.m3u file) Universal Stack Overflow Exploit (CVE assigned)

| 2009-04-23

Med.

ASP Product Catalog 1.0 (XSS/DD) Multiple Remote Exploits (CVE assigned)

Remote | 2009-04-19

Med.

ASP User Engine .NET Remote Database Disclosure Vulnerability (CVE assigned)

Remote | 2009-03-23

Med.

Codefixer MailingListPro (MailingList.mdb) Database Disclosure Vuln (CVE assigned)

Remote | 2009-03-05

Med.

The Net Guys ASPired2Protect Database Disclosure Vulnerability (CVE assigned)

Remote | 2009-03-05

Med.

The Net Guys ASPired2Poll Remote Database Disclosure Vulnerability (CVE assigned)

Remote | 2009-03-04

High

CF_Auction (forummessage) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-04

High

CFMBLOG (index.cfm categorynbr) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-04

High

CF SHOPKART 5.2.2 (SQL/DD) Multiple Remote Vulnerabilities (CVE assigned)

Remote | 2009-03-02

High

CF_Calendar (calendarevent.cfm) Remote SQL Injection Exploit (CVE assigned)

Remote | 2009-03-02

High

CF_Forum Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-02

High

Pixel8 Web Photo Album 3.0 Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-18

Low

dBpowerAMP Audio Player v2 ( .pls file) LoCaL BufferOverFlow Exploit

| 2009-01-30

Med.

PacPoll 4.0 (poll.mdb/poll97.mdb) Database Disclosure Vulnerability (CVE assigned)

Remote | 2009-01-29

High

JetAudio Basic 7.0.3 BufferOverFlow PoC

Local | 2009-01-29

Low

EleCard MPEG PLAYER (.m3u file) Local Stack Overflow Exploit

Local | 2009-01-26

High

VUPLAYER BufferOver flow POC (CVE assigned)

Local | 2009-01-22

Med.

ClickAndEmaiL (SQL/XSS) Multiple Remote Vulnerabilities (CVE assigned)

Remote | 2009-01-14

Med.

Click&Rank (SQL/XSS) Multiple Remote Vulnerabilities (CVE assigned)

Remote | 2009-01-14

High

Gnews Publisher .NET (authors.asp authorID) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-01-02

High

ASP PORTAL Multiple Remote SQL Injection Vulnerabilities (CVE assigned)

Remote | 2008-12-19

Med.

NatterChat 1.12 (natterchat112.mdb) Database Disclosure Vulnerability (CVE assigned)

Remote | 2008-12-19

Med.

RankEm (auth bypass) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2008-12-17

Med.

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)