Intelligent Exploit Aggregation Network

Mission statement

Intelligent Exploit Aggregation Network

Our system uses advanced intelligence to find publicly available exploits in the Internet. Currently, several web applications and Content Management Systems (CMS) are supported, such as Joomla!, Wordpress, Drupal, but our goal is to extend it with additional applications and frameworks. We hope this new service will aid Webmasters and System Administrators in protecting their websites and systems against security vulnerabilities. We have collaborated with numerous Vulnerability Intelligence service providers and Consultants to develop this ultimate exploit and vulnerability intelligence platform.

Send your submission to info *at* intelligentexploit.com

Exploit Alert

If we find exploit(s) for systems we monitor, we will notify you about it.

Joomla Exploits

Name	Status	Date created
Joomla Discussions Component com_discussions SQL Injection	Published	2012-01-17
Simple File Upload v1.3 Joomla Module Remote Code Execution	Published	2012-01-02
Joomla Component com_dshop SQL Injection Vulnerability	Published	2011-12-20
QContacts 1.0.6 Joomla component SQL injection	Published	2011-12-12
Joomla Jobprofile Component com_jobprofile SQL Injection	Published	2011-12-08
Joomla Component Jobprofile com_jobprofile SQL Injection Vulnerability	Published	2011-12-02
Joomla 1.6.3 Cross Site Scripting	Published	2011-11-11

Wordpress Exploits

Name	Status	Date created
Wordpress Kish Guest Posting Plugin 1.0 Arbitrary File Upload	Published	2012-01-25
AllWebMenus < 1.1.9 WordPress Menu Plugin Arbitrary File Upload	Published	2012-01-23
Wordpress uCan Post plugin <= 1.0.09 Stored XSS	Published	2012-01-23
Wordpress Age Verification Plugin <= 0.4 Open Redirect	Published	2012-01-17
WordPress wp-autoyoutube plugin Blind SQL Injection Vulnerability	Published	2012-01-17
Wordpress Count-per-day plugin Multiple Vulnerabilities	Published	2012-01-17
Wordpress Pay With Tweet Plugin <= 1.1 Multiple Vulnerabilities	Published	2012-01-11
BLIND SQL injection UPM-POLLS wordpress plugin 1.0.4	Published	2011-12-15
WordPress Pretty Link 1.5.2 Cross Site Scripting	Published	2011-12-08
WordPress Flash Album Gallery Cross Site Scripting	Published	2011-12-02
Wordpress enable-latex plugin Remote File Include Vulnerabilities	Published	2011-11-25
Wordpress meenews 5.1 plugin Cross-Site Scripting Vulnerabilities	Published	2011-11-23
WordPress Adminimize plugin suffers from a cross site scripting vulnerability	Published	2011-11-22
WordPress Advanced Text Widget plugin suffers from a cross site scripting vulnerability	Published	2011-11-22

phpBB Exploits

Name	Status	Date created
PhpBB MyPage Plugin SQL Injection	Published	2011-12-08
PhpBB2 Custom Mass PM 1.4.7 Cross Site Scripting	Published	2011-08-28
PhpBB AJAX Chat/Shoutbox MOD CSRF Vulnerability	Published	2011-07-26
Fully Modded phpBB 2 Remote File Include Exploit	Published	2010-10-19
PHPBB MOD [2.0.19] Invitation Only PassCode Bypass vulnerability	Published	2010-07-24
PHPBB 3.0 0day	Published	2010-01-24
PhpBB3 addon prime_quick_style GetAdmin Vulnerability	Published	2009-09-01

Drupal Exploits

Name	Status	Date created
Drupal CKEditor 3.0 - 3.6.2 - Persistent EventHandler XSS	Published	2012-01-19
Drupal 7.0 Shell Execution Script	Published	2011-04-11
Drupal OG Menu Module XSS Vulnerability	Published	2010-07-14
Drupal Panels Module 6.x PHP Code Execution Vulnerability	Published	2010-05-21
Drupal Privatemsg Module Security Bypass Security Issue	Published	2010-04-30
0day Drupal <= 6.15 Multiple Permanent XSS	Published	2010-01-07
0day Drupal DOS <= 6.16 and 5.21	Published	2009-12-31
Drupal Sections Module XSS Vulnerability	Published	2009-12-16

TYPO3 Exploits

Name	Status	Date created
Typo3 v4.5-4.7 Remote Code Execution RFI/LFI	Published	2012-01-04
Typo3 File Disclosure	Published	2011-10-04
TYPO3 CMS <4.2.14 / 4.3.6 / 4.4.3 XSS, DoS, Privilege escalation	Published	2010-10-07
TYPO3 CMS 4.0 showUid Remote SQL Injection Vulnerability	Published	2009-08-06
TYPO3 < 4.0.12/4.1.10/4.2.6 jumpUrl Remote File Disclosure Exploit	Published	2009-02-10
TYPO3	Published	2009-02-02
TYPO3SQL	Published	2008-06-22
TYPO3	Published	2008-06-14

Magento Exploits

Name	Status	Date created
Magento Multiple Fields Processing Cross Site Scripting Vulnerabilities	Published	2010-01-06
Magento CSRF	Published	2009-02-26
Magento Multiple Cross Site Scripting Vulnerabilities Magento CSRF	Published	2009-02-24

Virtuemart Exploits

Name	Status	Date created
Virtuemart <= 1.1.7 Blind time-based SQL Injection MSF	Published	2011-07-29
Virtuemart <= v1.1.7 Blind SQL Injection Exploit	Published	2011-04-08
Joomla Component com_virtuemart Remote File Inclusion Vulnerability	Published	2010-06-26
VirtueMart index.php SQL Injection Vulnerability	Published	2010-03-06
Joomla VirtueMart Module Customers_who_bought... SQL Injection	Published	2010-01-27
Joomla Component com_virtuemart order_status_id SQL Injection	Published	2010-01-27
JVirtueMart product_id Parameter SQL Injection Vulnerability	Published	2009-12-17

osCommerce Exploits

Name	Status	Date created
OsCommerce 2.3.1 banner_manager.php Remote File Upload Vulnerability	Published	2011-05-14
OsCommerce v2.2 CSRF	Published	2010-11-09
OsCommerce SQL/XSS Multiple Vulnerabilities	Published	2010-09-27
OsCommerce Online Merchant Remote File Inclusion Vulnerability	Published	2010-08-27
EZ-Oscommerce 2.1 Changer Login and Pass CSRF / File Disclosure	Published	2010-07-29
EZ-Oscommerce 3.1 Remote File Upload / File Disclosure	Published	2010-07-29
Oscommerce Max v2.0.25 Changer Login and Pass CSRF Vulnerability	Published	2010-07-29

Windows Exploits

Name	Status	Date created
Microsoft Windows Assembly Execution Vulnerability MS12-005	Published	2012-01-16
Windows Explorer Denial Of Service DOS	Published	2011-12-26
Windows Media Player v11.0.5721.5262 Remote Denial Of Service DOS	Published	2011-12-24
Microsoft Windows Media PlayerMedia Center .dvr-msMS11-092	Published	2011-12-13
Microsoft Windows CSRSSMS11-097	Published	2011-12-13
Microsoft Windows OLEMS11-093	Published	2011-12-13
Microsoft Active DirectoryMS11-095	Published	2011-12-13
Microsoft Windows Kernel Win32k.sys	Published	2011-11-22

Mac Exploits

Name	Status	Date created
Apple iTunes 10.x	Published	2011-11-15
Apple WebObjects	Published	2011-11-15
Apple iOS	Published	2011-11-11
Apple iOS libinfo	Published	2011-11-11
Apple iOS CFNetwork	Published	2011-11-11
Apple OS X Sandbox Predefined Profiles Bypass	Published	2011-11-10
Apple iOS FreeType	Published	2011-11-10

Subsites include: Joomla Exploit, Wordpress Exploit, phpBB Exploit, Drupal Exploit, TYPO3 Exploit, Magento Exploit, Virtuemart Exploit, osCommerce Exploit, Windows Exploits, Mac Exploit

This information is provided for TESTING and LEGAL RESEARCH purposes only. Vulnerability information source(s): exploit-db.com, sebug.net, securityreason.com, inj3ct0r.com, nationalcybersecurity.com, osdir.com. Use at your own risk.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy.

Dashboard

Mission statement