Author: David Vieira-Kurz

Country: de

Reported research: 23

Advisories

Risk	Topic & Details
Low	Sony Playstation Vita Addressbar Spoofing Remote \| 2013-02-06
Low	WordPress 3.0.1 - Cross Site Scripting Issue (CVE assigned) Remote \| 2010-08-13
Low	Conpresso CMS v4.1.1 - Cross site Scripting Vulnerabilities (CVE assigned) Remote \| 2010-07-13
Med.	Subdreamer CMS 3.x.x remote SQL injection Remote \| 2010-06-17
Med.	Subdreamer CMS - SQL injection vulnerability (CVE assigned) Remote \| 2010-06-15
Low	phpFaber CMS - Multiple stored Cross-site Scripting issues (CVE assigned) Remote \| 2010-06-15
Low	Plume CMS 1.2.4 cross site request forgery Remote \| 2010-06-15
Low	chillyCMS 1.1.2 change admin password via Cross-site Request Forgery (CVE assigned) Remote \| 2010-06-10
Low	Invision Power Board 3.0.5 - full path disclosures (CVE assigned) Remote \| 2010-06-10
Low	Plume CMS 1.2.4 - change Admin Password via Cross-site Request Forgery (CVE assigned) Remote \| 2010-06-10
Low	Invision Power Board 3.0.5 - stored Cross site Scripting (CVE assigned) Remote \| 2010-06-10
Med.	Motorola Milestone(Droid) Smartphone Remote Denial of Service (CVE assigned) Remote \| 2010-02-07
Med.	Virtual Hosting Control System - Session fixation Issue (CVE assigned) Remote \| 2007-07-26
Med.	Simple Machines Forum (SMF) - Session fixation Issue (CVE assigned) Remote \| 2007-05-12
Med.	Plogger - Session fixation Issue (CVE assigned) Remote \| 2007-04-26
Med.	Calacode ATMail 5.0 - Cross Site Scripting and Cookie Manipulation Issue (CVE assigned) Remote \| 2007-04-23
Low	MailBee WebMail Pro - Cross Site Scripting Issue (CVE assigned) Remote \| 2007-04-18
Low	webblizzard CMS - Cross Site Scripting and Session fixation Issues (CVE assigned) Remote \| 2007-04-13
Med.	onelook onebyone CMS - Session fixation Issue (CVE assigned) Remote \| 2007-04-12
Med.	Advanced Guestbook 2.4 for phpBB - Multiple XSS and SQL-Injection Vulnerabilities (CVE assigned) Remote \| 2007-03-05
Low	phpComasy CMS - Multiple Cross Site Scripting Issues (CVE assigned) Remote \| 2006-11-10
Med.	ConPresso CMS - Multiple Cross Site Scripting and SQL Injection Issues (CVE assigned) Remote \| 2006-10-03
Low	ToendaCMS - Cross Site Scripting Issue (CVE assigned) Remote \| 2006-08-08

Author: David Vieira-Kurz

Country: de

Reported research: 23

Advisories

Low

Sony Playstation Vita Addressbar Spoofing

Remote | 2013-02-06

Low

WordPress 3.0.1 - Cross Site Scripting Issue (CVE assigned)

Remote | 2010-08-13

Low

Conpresso CMS v4.1.1 - Cross site Scripting Vulnerabilities (CVE assigned)

Remote | 2010-07-13

Med.

Subdreamer CMS 3.x.x remote SQL injection

Remote | 2010-06-17

Med.

Subdreamer CMS - SQL injection vulnerability (CVE assigned)

Remote | 2010-06-15

Low

phpFaber CMS - Multiple stored Cross-site Scripting issues (CVE assigned)

Remote | 2010-06-15

Low

Plume CMS 1.2.4 cross site request forgery

Remote | 2010-06-15

Low

chillyCMS 1.1.2 change admin password via Cross-site Request Forgery (CVE assigned)

Remote | 2010-06-10

Low

Invision Power Board 3.0.5 - full path disclosures (CVE assigned)

Remote | 2010-06-10

Low

Plume CMS 1.2.4 - change Admin Password via Cross-site Request Forgery (CVE assigned)

Remote | 2010-06-10

Low

Invision Power Board 3.0.5 - stored Cross site Scripting (CVE assigned)

Remote | 2010-06-10

Med.

Motorola Milestone(Droid) Smartphone Remote Denial of Service (CVE assigned)

Remote | 2010-02-07

Med.

Virtual Hosting Control System - Session fixation Issue (CVE assigned)

Remote | 2007-07-26

Med.

Simple Machines Forum (SMF) - Session fixation Issue (CVE assigned)

Remote | 2007-05-12

Med.

Plogger - Session fixation Issue (CVE assigned)

Remote | 2007-04-26

Med.

Calacode ATMail 5.0 - Cross Site Scripting and Cookie Manipulation Issue (CVE assigned)

Remote | 2007-04-23

Low

MailBee WebMail Pro - Cross Site Scripting Issue (CVE assigned)

Remote | 2007-04-18

Low

webblizzard CMS - Cross Site Scripting and Session fixation Issues (CVE assigned)

Remote | 2007-04-13

Med.

onelook onebyone CMS - Session fixation Issue (CVE assigned)

Remote | 2007-04-12

Med.

Advanced Guestbook 2.4 for phpBB - Multiple XSS and SQL-Injection Vulnerabilities (CVE assigned)

Remote | 2007-03-05

Low

phpComasy CMS - Multiple Cross Site Scripting Issues (CVE assigned)

Remote | 2006-11-10

Med.

ConPresso CMS - Multiple Cross Site Scripting and SQL Injection Issues (CVE assigned)

Remote | 2006-10-03

Low

ToendaCMS - Cross Site Scripting Issue (CVE assigned)

Remote | 2006-08-08

Do you know.. we can display your:

- Twitter Link - Website Link - Zone-H Link - Description of profile - email (let us know if you want show public)

Let's us know! submit@cxsec.org

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)