Author: Manuel Garcia Cardenas

Country:

Reported research: 24

Advisories

Risk	Topic & Details
Low	Composr CMS 10.0.30 Cross Site Scripting (CVE assigned) Remote \| 2020-05-22
Low	phpMyAdmin 4.9.0.1 Cross Site Request Forgery (CVE assigned) Remote \| 2019-09-14
Med.	WordPress GraceMedia Media Player 1.0 Local File Inclusion (CVE assigned) Remote \| 2019-03-14
Med.	WordPress Wechat Broadcast 1.2.0 Local File Inclusion Remote \| 2018-09-20
Med.	WordPress Localize My Post 1.0 Local File Inclusion Remote \| 2018-09-20
Med.	Backdrop CMS 1.7.1 Cross Site Scripting Remote \| 2017-08-23
Low	WordPress Easy Table 1.6 Cross Site Scripting Remote \| 2017-02-15
Low	WonderCMS 0.9.8 Cross Site Scripting Remote \| 2016-11-23
Med.	Exponent CMS <= v2.3.9 Blind SQL Injection (CVE assigned) Remote \| 2016-09-21
Low	CMSimple 4.6.2 Cross Site Scripting Remote \| 2016-06-02
Med.	ImpressCMS 1.3.9 SQL Injection Remote \| 2016-04-22
Low	4images 1.7.11 Cross Site Scripting (CVE assigned) Remote \| 2015-09-26
High	XOOPS 2.5.6 SQL Injection Remote \| 2014-11-18
Low	Nibbleblog 4.0.1 Cross Site Scripting Remote \| 2014-11-18
Med.	WebsiteBaker 2.8.3 XSS / SQL Injection / HTTP Response Splitting (CVE assigned) Remote \| 2014-11-18
Med.	Zoph 0.9.1 Cross Site Scripting / SQL Injection (CVE assigned) Remote \| 2014-11-18
Low	WebCollab <= v3.30 HTTP Response Splitting Vulnerability (CVE assigned) Remote \| 2013-10-25
Med.	Oracle Portal Demo Organization Chart PL/SQL Injection (CVE assigned) Remote \| 2013-10-18
Low	Uebimiau 2.7.11 Cross Site Scripting / Open Redirection (CVE assigned) Remote \| 2013-10-10
Low	BoltWire 3.5 Cross Site Scripting (CVE assigned) Remote \| 2013-10-10
Med.	XAMPP 1.8.1 Local Write Access (CVE assigned) Remote \| 2013-09-26
Med.	Telaen <= 1.3.0 Multiple Vulnerabilities (CVE assigned) Remote \| 2013-06-04
Low	Telaen 1.3.0 XSS / Open Redirection / Disclosure (CVE assigned) Remote \| 2013-06-04
Low	Asteriskguru Queue Statistics Reflected XSS Remote \| 2013-03-11

Author: Manuel Garcia Cardenas

Reported research: 24

Advisories

Low

Composr CMS 10.0.30 Cross Site Scripting (CVE assigned)

Remote | 2020-05-22

Low

phpMyAdmin 4.9.0.1 Cross Site Request Forgery (CVE assigned)

Remote | 2019-09-14

Med.

WordPress GraceMedia Media Player 1.0 Local File Inclusion (CVE assigned)

Remote | 2019-03-14

Med.

Remote | 2018-09-20

Med.

Remote | 2018-09-20

Med.

Remote | 2017-08-23

Low

Remote | 2017-02-15

Low

Remote | 2016-11-23

Med.

Exponent CMS <= v2.3.9 Blind SQL Injection (CVE assigned)

Remote | 2016-09-21

Low

Remote | 2016-06-02

Med.

Remote | 2016-04-22

Low

4images 1.7.11 Cross Site Scripting (CVE assigned)

Remote | 2015-09-26

High

Remote | 2014-11-18

Low

Remote | 2014-11-18

Med.

WebsiteBaker 2.8.3 XSS / SQL Injection / HTTP Response Splitting (CVE assigned)

Remote | 2014-11-18

Med.

Zoph 0.9.1 Cross Site Scripting / SQL Injection (CVE assigned)

Remote | 2014-11-18

Low

WebCollab <= v3.30 HTTP Response Splitting Vulnerability (CVE assigned)

Remote | 2013-10-25

Med.

Oracle Portal Demo Organization Chart PL/SQL Injection (CVE assigned)

Remote | 2013-10-18

Low

Uebimiau 2.7.11 Cross Site Scripting / Open Redirection (CVE assigned)

Remote | 2013-10-10

Low

BoltWire 3.5 Cross Site Scripting (CVE assigned)

Remote | 2013-10-10

Med.

XAMPP 1.8.1 Local Write Access (CVE assigned)

Remote | 2013-09-26

Med.

Telaen <= 1.3.0 Multiple Vulnerabilities (CVE assigned)

Remote | 2013-06-04

Low

Telaen 1.3.0 XSS / Open Redirection / Disclosure (CVE assigned)

Remote | 2013-06-04

Low

Remote | 2013-03-11

Do you know.. we can display your:

- Twitter Link - Website Link - Zone-H Link - Description of profile - email (let us know if you want show public)

Let's us know! submit@cxsec.org

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)