[GB]

4 exploits Active since Nov 2005
CVE-2005-3859 EXPLOITDB text WRITEUP
Q-news - Code Injection
PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter.
CVE-2005-3861 EXPLOITDB text WRITEUP
Phpgreetz < 0.99 - Code Injection
PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the content parameter.
CVE-2005-3860 EXPLOITDB text WORKING POC
Oliver MAY Athena Php Website Administration - Code Injection
PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website Administration 0.1a allows remote attackers to execute arbitrary PHP code via a URL in the athena_dir parameter.
CVE-2005-3742 EXPLOITDB text WORKING POC
Advanced Poll < 2.0.3 - XSS
Cross-site scripting (XSS) vulnerability in popup.php in Advanced Poll 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the poll_ident parameter.