$qL_DoCt0r

3 exploits Active since Oct 2009
CVE-2009-3718 EXPLOITDB text WRITEUP
Battle Blog 1.25 and 1.30 build 2 - SQL Injection via UserName Parameter
SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to execute arbitrary SQL commands via the UserName parameter.
EIP-2026-109690 EXPLOITDB text WRITEUP
MyBB 1.4.8 - 'search.php' SQL Injection
CVE-2009-3719 EXPLOITDB text WRITEUP
Battle Blog 1.25 and 1.30 build 2 - Cross-Site Scripting via Comment
Cross-site scripting (XSS) vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to inject arbitrary web script or HTML via a comment.