[GB]

4 exploits Active since Nov 2005
CVE-2005-3859 EXPLOITDB text WRITEUP
Q-News 2.0 - Remote Code Execution via id Parameter
PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter.
CVE-2005-3861 EXPLOITDB text WRITEUP
phpgreetz < 0.99 - Remote Code Execution via content.php content Parameter
PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the content parameter.
CVE-2005-3860 EXPLOITDB text WORKING POC
Oliver May Athena PHP Website Administration 0.1a - Remote Code Execution via athena_dir Parameter
PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website Administration 0.1a allows remote attackers to execute arbitrary PHP code via a URL in the athena_dir parameter.
CVE-2005-3742 EXPLOITDB text WORKING POC
Advanced Poll < 2.0.3 - Cross-Site Scripting via poll_ident Parameter
Cross-site scripting (XSS) vulnerability in popup.php in Advanced Poll 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the poll_ident parameter.