Author: EgiX

Country:

Reported research: 47

Advisories

Risk	Topic & Details
Low	XenForo 2.2.15 Cross Site Request Forgery (CVE assigned) Remote \| 2024-07-17
High	Xenforo 2.2.15 Remote Code Execution (CVE assigned) Remote \| 2024-07-17
High	PKP-WAL 3.4.0-3 Remote Code Execution (CVE assigned) Remote \| 2023-12-17
Med.	phpFox 4.8.13 PHP Object Injection (CVE assigned) Remote \| 2023-10-27
High	SugarCRM 13.0.1 Shell Upload Remote \| 2023-10-27
Med.	SugarCRM 13.0.1 Server-Side Template Injection Remote \| 2023-10-27
High	SugarCRM 12.2.0 Shell Upload (CVE assigned) Remote \| 2023-08-23
Low	Tiki Wiki CMS Groupware 25.0 Cross Site Request Forgery (CVE assigned) Remote \| 2023-01-11
Med.	Drupal H5P Module 2.0.0 Zip Slip Traversal Remote \| 2022-12-05
High	vBulletin 5.5.2 PHP Object Injection Remote \| 2022-11-29
Med.	Joomla! 4.1.0 Zip Slip File Overwrite / Path Traversal (CVE assigned) Remote \| 2022-03-30
Med.	ImpressCMS 1.4.2 Incorrect Access Control (CVE assigned) Remote \| 2022-03-22
Med.	ImpressCMS 1.4.2 Authentication Bypass (CVE assigned) Remote \| 2022-03-22
High	Concrete5 8.5.5 Phar Deserialization (CVE assigned) Remote \| 2021-07-21
High	IPS Community Suite 4.5.4.2 PHP Code Injection (CVE assigned) Remote \| 2021-05-31
Med.	ExpressionEngine 6.0.2 PHP Code Injection (CVE assigned) Remote \| 2021-03-17
High	qdPM 9.1 PHP Object Injection (CVE assigned) Remote \| 2020-12-31
Med.	openSIS 7.4 Local File Inclusion (CVE assigned) Remote \| 2020-07-01
Med.	openSIS 7.4 SQL Injection (CVE assigned) Remote \| 2020-07-01
Med.	openSIS 7.4 Incorrect Access Control (CVE assigned) Remote \| 2020-07-01
Med.	SuiteCRM 7.11.11 Bean Manipulation (CVE assigned) Remote \| 2020-02-14
Med.	SuiteCRM 7.11.11 Broken Access Control / Local File Inclusion (CVE assigned) Remote \| 2020-02-13
High	SuiteCRM 7.11.11 Phar Deserialization (CVE assigned) Remote \| 2020-02-13
Med.	SuiteCRM 7.11.11 Second-Order PHP Object Injection (CVE assigned) Remote \| 2020-02-13
High	vBulletin 5.0 < 5.5.4 updateAvatar Authenticated Remote Code Execution (CVE assigned) Remote \| 2019-10-13
High	vBulletin 5.5.4 Remote Code Execution (CVE assigned) Remote \| 2019-10-08
Med.	vBulletin 5.5.4 SQL Injection (CVE assigned) Remote \| 2019-10-08
High	Mantis 1.1.3 manage_proj_page PHP Code Execution Remote \| 2018-05-09
High	Tuleap PHP Unserialize Code Execution (CVE assigned) Remote \| 2014-12-13
High	WeBid converter.php Remote PHP Code Injection Remote \| 2012-05-26

Author: EgiX

Country:

Reported research: 47

Advisories

Low

XenForo 2.2.15 Cross Site Request Forgery (CVE assigned)

Remote | 2024-07-17

High

Xenforo 2.2.15 Remote Code Execution (CVE assigned)

Remote | 2024-07-17

High

PKP-WAL 3.4.0-3 Remote Code Execution (CVE assigned)

Remote | 2023-12-17

Med.

phpFox 4.8.13 PHP Object Injection (CVE assigned)

Remote | 2023-10-27

High

SugarCRM 13.0.1 Shell Upload

Remote | 2023-10-27

Med.

SugarCRM 13.0.1 Server-Side Template Injection

Remote | 2023-10-27

High

SugarCRM 12.2.0 Shell Upload (CVE assigned)

Remote | 2023-08-23

Low

Tiki Wiki CMS Groupware 25.0 Cross Site Request Forgery (CVE assigned)

Remote | 2023-01-11

Med.

Drupal H5P Module 2.0.0 Zip Slip Traversal

Remote | 2022-12-05

High

vBulletin 5.5.2 PHP Object Injection

Remote | 2022-11-29

Med.

Joomla! 4.1.0 Zip Slip File Overwrite / Path Traversal (CVE assigned)

Remote | 2022-03-30

Med.

ImpressCMS 1.4.2 Incorrect Access Control (CVE assigned)

Remote | 2022-03-22

Med.

ImpressCMS 1.4.2 Authentication Bypass (CVE assigned)

Remote | 2022-03-22

High

Concrete5 8.5.5 Phar Deserialization (CVE assigned)

Remote | 2021-07-21

High

IPS Community Suite 4.5.4.2 PHP Code Injection (CVE assigned)

Remote | 2021-05-31

Med.

ExpressionEngine 6.0.2 PHP Code Injection (CVE assigned)

Remote | 2021-03-17

High

qdPM 9.1 PHP Object Injection (CVE assigned)

Remote | 2020-12-31

Med.

openSIS 7.4 Local File Inclusion (CVE assigned)

Remote | 2020-07-01

Med.

openSIS 7.4 SQL Injection (CVE assigned)

Remote | 2020-07-01

Med.

openSIS 7.4 Incorrect Access Control (CVE assigned)

Remote | 2020-07-01

Med.

SuiteCRM 7.11.11 Bean Manipulation (CVE assigned)

Remote | 2020-02-14

Med.

SuiteCRM 7.11.11 Broken Access Control / Local File Inclusion (CVE assigned)

Remote | 2020-02-13

High

SuiteCRM 7.11.11 Phar Deserialization (CVE assigned)

Remote | 2020-02-13

Med.

SuiteCRM 7.11.11 Second-Order PHP Object Injection (CVE assigned)

Remote | 2020-02-13

High

vBulletin 5.0 < 5.5.4 updateAvatar Authenticated Remote Code Execution (CVE assigned)

Remote | 2019-10-13

High

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)