Author: Sid3^effects

Country:

Reported research: 27

Advisories

Risk	Topic & Details
Med.	Science Fair In A Box SQL Injection / Cross Site Scripting (CVE assigned) Remote \| 2011-11-08
High	2daybiz Network Community Script SQL Injection / Cross Site Scripting (CVE assigned) Remote \| 2011-11-08
High	Virtual Real Estate Manager 3.5 SQL Injection (CVE assigned) Remote \| 2011-11-08
High	SchoolMation 2.3 SQL Injecton / Cross Site Scripting (CVE assigned) Remote \| 2011-11-08
Med.	Ashiyane Digital Security Team (CVE assigned) Remote \| 2011-02-03
Low	AJ Article Persistent XSS Vulnerability (CVE assigned) Remote \| 2010-08-04
High	Kayako eSupport v3.70.02 (newsid) SQL Injection Vulnerability (CVE assigned) Remote \| 2010-07-30
Med.	Joomla Music Manager Component LFI Vulnerability (CVE assigned) Remote \| 2010-07-27
High	Lyrics V3 engine Sqli Vulnerability (CVE assigned) Remote \| 2010-07-15
Med.	Joomla jesectionfinder LFI Vulnerability (CVE assigned) Remote \| 2010-07-13
Med.	Pointter Social Network local file inclusion Remote \| 2010-07-04
High	i-netsolution jobsearch Engine SQLi Vulnerability (CVE assigned) Remote \| 2010-07-02
High	eLMS Pro SQLi and XSS Vulnerability (CVE assigned) Remote \| 2010-06-23
Med.	PHP Car Rental Complete System 1.2 remote SQL injection Remote \| 2010-06-10
Med.	iScripts Easybiller 1.1 remote SQL injection (CVE assigned) Remote \| 2010-06-07
Med.	iScripts eSwap 2.0 cross site scripting and remote SQL injection (CVE assigned) Remote \| 2010-06-07
High	phpBazar 2.1.1 remote file inclusion Remote \| 2010-06-05
High	MP3 Studio 1.0 .mpf file buffer overflow Local \| 2010-06-05
High	2daybiz Auction Script Authentication bypass (CVE assigned) Remote \| 2010-05-05
High	Infocus Real Estate Enterprise Edition script Auth Bypass (CVE assigned) Remote \| 2010-05-04
Med.	Socialware 2.2 cross site scripting and shell upload Remote \| 2010-05-01
Med.	NCT Jobs Portal Script ncrypted XSS and Authentication bypass (CVE assigned) Remote \| 2010-05-01
Med.	Your Article Directory remote SQL injection Remote \| 2010-04-30
Med.	iScripts VisualCaster remote SQL injection (CVE assigned) Remote \| 2010-04-30
High	FreeRealty remote SQL injection (CVE assigned) Remote \| 2010-04-28
Med.	i-Net Online Community site script remote SQL injection and cross site scripting Remote \| 2010-04-28
High	Advanced Poll Script cross site scripting and SQL injection (CVE assigned) Remote \| 2010-04-27

Author: Sid3^effects

Reported research: 27

Advisories

Med.

Science Fair In A Box SQL Injection / Cross Site Scripting (CVE assigned)

Remote | 2011-11-08

High

2daybiz Network Community Script SQL Injection / Cross Site Scripting (CVE assigned)

Remote | 2011-11-08

High

Virtual Real Estate Manager 3.5 SQL Injection (CVE assigned)

Remote | 2011-11-08

High

SchoolMation 2.3 SQL Injecton / Cross Site Scripting (CVE assigned)

Remote | 2011-11-08

Med.

Ashiyane Digital Security Team (CVE assigned)

Remote | 2011-02-03

Low

AJ Article Persistent XSS Vulnerability (CVE assigned)

Remote | 2010-08-04

High

Kayako eSupport v3.70.02 (newsid) SQL Injection Vulnerability (CVE assigned)

Remote | 2010-07-30

Med.

Joomla Music Manager Component LFI Vulnerability (CVE assigned)

Remote | 2010-07-27

High

Lyrics V3 engine Sqli Vulnerability (CVE assigned)

Remote | 2010-07-15

Med.

Joomla jesectionfinder LFI Vulnerability (CVE assigned)

Remote | 2010-07-13

Med.

Remote | 2010-07-04

High

i-netsolution jobsearch Engine SQLi Vulnerability (CVE assigned)

Remote | 2010-07-02

High

eLMS Pro SQLi and XSS Vulnerability (CVE assigned)

Remote | 2010-06-23

Med.

Remote | 2010-06-10

Med.

iScripts Easybiller 1.1 remote SQL injection (CVE assigned)

Remote | 2010-06-07

Med.

iScripts eSwap 2.0 cross site scripting and remote SQL injection (CVE assigned)

Remote | 2010-06-07

High

Remote | 2010-06-05

High

Local | 2010-06-05

High

2daybiz Auction Script Authentication bypass (CVE assigned)

Remote | 2010-05-05

High

Infocus Real Estate Enterprise Edition script Auth Bypass (CVE assigned)

Remote | 2010-05-04

Med.

Remote | 2010-05-01

Med.

NCT Jobs Portal Script ncrypted XSS and Authentication bypass (CVE assigned)

Remote | 2010-05-01

Med.

Remote | 2010-04-30

Med.

iScripts VisualCaster remote SQL injection (CVE assigned)

Remote | 2010-04-30

High

FreeRealty remote SQL injection (CVE assigned)

Remote | 2010-04-28

Med.

Remote | 2010-04-28

High

Advanced Poll Script cross site scripting and SQL injection (CVE assigned)

Remote | 2010-04-27

Do you know.. we can display your:

- Twitter Link - Website Link - Zone-H Link - Description of profile - email (let us know if you want show public)

Let's us know! submit@cxsec.org

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)