Creditee: mr_me

Known Contact Information:

  • (as of 2010-04-03)

Known Affiliations:

Disclosed Vulnerabilities (33):

Disc. DateOSVDB IDCVEIDTitle
2012-06-15 82968 UseResponse Hidden Default User Account
2012-06-15 83162 UseResponse application/modules/system/templates/system_response_show.phtml BBCode XSS
2012-06-15 82970 UseResponse application/modules/system/controllers/AdminLanguagesController.php File Upload PHP Code Execution
2012-06-15 82969 UseResponse Multiple Admin Function CSRF
2011-12-09 85228 2011-5135 DoceboLMS iotask Module lib/lib.iotask.php save_connection Function Multiple Parameter SQL Injection
2011-03-09 71033 Maian Weblog index.php post Parameter SQL Injection
2011-03-04 71056 PHP Speedy Plugin for WordPress wp-content/plugins/php_speedy_wp/libs/php_speedy/view/admin_container.php page Parameter Remote File Inclusion
2011-02-25 71239 XCloner Plugin for WordPress wp-content/plugins/xcloner-backup-and-restore/admin.cloner.php Multiple Parameter XSS
2011-02-25 71238 XCloner Plugin for WordPress wp-content/plugins/xcloner-backup-and-restore/cloner.cron.php config Parameter Traversal Arbitrary File Access
2011-02-25 71241 XCloner Component for Joomla! administrator/components/com_xcloner-backupandrestore/admin.cloner.php Multiple Parameter XSS
2011-02-25 71240 XCloner Component for Joomla! administrator/components/com_xcloner-backupandrestore/cloner.cron.php config Parameter Traversal Arbitrary File Access
2011-01-16 70450 MeshCMS Multiple Admin Function CSRF
2011-01-11 70409 2011-0518 LotusCMS index.php system Parameter Traversal Local File Inclusion
2011-01-02 70270 Amoeba CMS index.php cpID Parameter SQL Injection
2010-09-09 67876 2010-4910 ColdCalendar index.cfm EventID Parameter SQL Injection
2010-09-08 67868 2010-4915 ColdBookmarks index.cfm BookmarkID Parameter SQL Injection
2010-09-08 67853 2010-4913 ColdUserGroup Search Function Keywords Parameter XSS
2010-09-08 67852 2010-4916 ColdUserGroup index.cfm Multiple Parameter SQL Injection
2010-09-08 67877 ColdOfficeView index.cfm Multiple Parameter SQL Injection
2010-05-17 64718 Magtrb MyNews index.php id Parameter SQL Injection
2010-05-17 64719 Magtrb MyNews admin.php act Parameter XSS
2010-05-17 64720 Magtrb MyNews index.php act Parameter Traversal Local File Inclusion
2010-04-25 64984 Easyzip 2000 ZIP Archive Filename Handling Overflow
2010-04-19 63931 2010-1033 HP Operations Manager on Windows SourceView ActiveX (srcvw32.dll / srcvw4.dll) LoadFile() Method Remote Overflow
2010-04-15 63923 RPM Select / Elite Configuration File lfFaceName Element Local Overflow
2010-04-06 65041 Jzip .zip Filename Handling Local Overflow
2010-04-03 63540 Zip Unzip ZIP File Handling Overflow
2010-03-15 63087 Liquid XML Studio LtXmlComHelp8.UnicodeFile.1 ActiveX (LtXmlComHelp8.dll) OpenFile Method Overflow
2010-02-26 62580 2010-0688 Orbital Viewer ORB File Handling Overflow
2010-01-27 61990 2010-0496 Serversman Crafted HTTP Request Remote DoS
2009-12-10 60901 2009-4595
2009-4597		 PHP Inventory index.php Multiple Parameter SQL Injection
2009-12-08 60854 2009-4567 Viscacha editprofile.php Multiple Parameter XSS
2009-12-07 60684 Chipmunk Newsletter Email List Creation CSRF

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use