Author: Osirys

Country:

Reported research: 21

Advisories

Risk	Topic & Details
Med.	2532\|Gigs 1.2.2 Stable Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2009-08-06
High	Silentum LoginSys 1.0.0 Insecure Cookie Handling vulnerability (CVE assigned) Remote \| 2009-04-29
High	YourPlace <= 1.0.2 Multiple Remote Vulnerabilities + RCE Exploit (CVE assigned) Remote \| 2009-04-29
High	Flexcustomer 0.0.6 Admin Login Bypass / Possible PHP code writing (CVE assigned) Remote \| 2009-04-29
High	RSMScript 1.21 XSS/Insecure Cookie Handling Vulnerabilities (CVE assigned) Remote \| 2009-04-23
High	Flexphplink Pro Arbitrary File Upload Exploit (CVE assigned) Remote \| 2009-04-21
High	WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-04-18
High	ProQuiz 1.0 (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-02
High	Butterfly Organizer 2.0.1 (view.php id) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-02
High	Free Arcade Script 1.0 LFI Command Execution Exploit (CVE assigned) Remote \| 2009-02-27
Med.	Simple PHP News 1.0 Remote Command Execution Exploit (CVE assigned) Remote \| 2009-02-22
High	OwenPoll 1.0 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-02-18
High	Php Photo Album 0.8b (index.php preview) Local File Inclusion Vulnerability (CVE assigned) Remote \| 2009-02-08
Med.	phosheezy 2.0 Remote Command Execution Exploit (CVE assigned) Remote \| 2009-01-23
High	FlexPHPNews 0.0.6 & PRO (Auth Bypass) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-01-22
Med.	Mediatheka 4.2 (index.php lang) Local File Inclusion Vulnerability (CVE assigned) Remote \| 2009-01-14
Low	myPHPscripts Login Session 2.0 XSS/Database Disclosure Vulns (CVE assigned) Remote \| 2009-01-08
Med.	Simple Text-File Login script 1.0.6 (DD/RFI) Multiple Vulnerabilities (CVE assigned) Remote \| 2009-01-03
High	WorkSimple 1.2.1 RFI / Sensitive Data Disclosure Vulnerabilities (CVE assigned) Remote \| 2009-01-02
High	Calendar Script 1.1 Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2008-12-30
High	Nitrotech 0.0.3a (RFI/SQL) Multiple Remote Vulnerabilities (CVE assigned) Remote \| 2008-12-08

Author: Osirys

Country:

Reported research: 21

Advisories

Med.

2532|Gigs 1.2.2 Stable Multiple Remote Vulnerabilities (CVE assigned)

Remote | 2009-08-06

High

Silentum LoginSys 1.0.0 Insecure Cookie Handling vulnerability (CVE assigned)

Remote | 2009-04-29

High

YourPlace <= 1.0.2 Multiple Remote Vulnerabilities + RCE Exploit (CVE assigned)

Remote | 2009-04-29

High

Flexcustomer 0.0.6 Admin Login Bypass / Possible PHP code writing (CVE assigned)

Remote | 2009-04-29

High

RSMScript 1.21 XSS/Insecure Cookie Handling Vulnerabilities (CVE assigned)

Remote | 2009-04-23

High

Flexphplink Pro Arbitrary File Upload Exploit (CVE assigned)

Remote | 2009-04-21

High

WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-04-18

High

ProQuiz 1.0 (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-02

High

Butterfly Organizer 2.0.1 (view.php id) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-02

High

Free Arcade Script 1.0 LFI Command Execution Exploit (CVE assigned)

Remote | 2009-02-27

Med.

Simple PHP News 1.0 Remote Command Execution Exploit (CVE assigned)

Remote | 2009-02-22

High

OwenPoll 1.0 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-02-18

High

Php Photo Album 0.8b (index.php preview) Local File Inclusion Vulnerability (CVE assigned)

Remote | 2009-02-08

Med.

phosheezy 2.0 Remote Command Execution Exploit (CVE assigned)

Remote | 2009-01-23

High

FlexPHPNews 0.0.6 & PRO (Auth Bypass) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-01-22

Med.

Mediatheka 4.2 (index.php lang) Local File Inclusion Vulnerability (CVE assigned)

Remote | 2009-01-14

Low

myPHPscripts Login Session 2.0 XSS/Database Disclosure Vulns (CVE assigned)

Remote | 2009-01-08

Med.

Simple Text-File Login script 1.0.6 (DD/RFI) Multiple Vulnerabilities (CVE assigned)

Remote | 2009-01-03

High

WorkSimple 1.2.1 RFI / Sensitive Data Disclosure Vulnerabilities (CVE assigned)

Remote | 2009-01-02

High

Calendar Script 1.1 Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2008-12-30

High

Nitrotech 0.0.3a (RFI/SQL) Multiple Remote Vulnerabilities (CVE assigned)

Remote | 2008-12-08

Do you know.. we can display your:

- Twitter Link - Website Link - Zone-H Link - Description of profile - email (let us know if you want show public)

Let's us know! submit@cxsec.org

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)