ASIANEAGLE

7 exploits Active since Jul 2006
CVE-2006-4300 EXPLOITDB perl WORKING POC
SimpleBlog < 2.0 - SQL Injection via comments.asp id Parameter
SQL injection vulnerability in comments.asp in SimpleBlog 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-3773 EXPLOITDB text WORKING POC
SMF-Forum Bridge Component for Mambo - Remote Code Execution via mosConfig_absolute_path Parameter
PHP remote file inclusion vulnerability in smf.php in the SMF-Forum 1.3.1.3 Bridge Component (com_smf) For Joomla! and Mambo 4.5.3+ allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
EIP-2026-105956 EXPLOITDB text WORKING POC
CLUB Nuke 2.0 - Multiple SQL Injections
CVE-2006-4064 EXPLOITDB text WORKING POC
YenerTurk Haber Script <= 2.0 - SQL Injection via id Parameter
SQL injection vulnerability in default.asp in YenerTurk Haber Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: it was later reported reported that 2.0 is also affected.
CVE-2006-4641 EXPLOITDB text WORKING POC
Muratsoft Haber Portal 3.6 - SQL Injection
SQL injection vulnerability in kategori.asp in Muratsoft Haber Portal 3.6 allows remote attackers to execute arbitrary SQL commands via the kat parameter.
CVE-2006-4202 EXPLOITDB text WORKING POC
spidey_blog_script < 1.5 - SQL Injection via pid Parameter
SQL injection vulnerability in proje_goster.php in Spidey Blog Script 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter.
CVE-2006-4072 EXPLOITDB text WORKING POC
Club-Nuke [XP] 2.0 LCID 2048 - SQL Injection via haber_id Parameter
Multiple SQL injection vulnerabilities in Club-Nuke [XP] 2.0 LCID 2048 allow remote attackers to execute arbitrary SQL commands via the (1) haber_id parameter to haber_detay.asp, and allow remote authenticated users to execute arbitrary SQL commands via the (2) menu_id parameter to menu.asp.