Ahmad Muammar

5 exploits Active since Aug 2004
CVE-2004-1724 EXPLOITDB text WRITEUP
php_fusion - Unprotected Database Backup Exposure via World-Writable Directory
The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusion_admin/db_backups directory to world read/write/execute (777), which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator username and password.
EIP-2026-110831 EXPLOITDB text WRITEUP
PHP-Nuke 0-7 - Delete God Admin Access Control Bypass
CVE-2004-2670 EXPLOITDB text WRITEUP
eNdonesia 8.3 - Cross-Site Scripting via mod or query Parameter
Multiple cross-site scripting (XSS) vulnerabilities in mod.php in eNdonesia 8.3 allow remote attackers to inject arbitrary web script or HTML via (1) the mod parameter in a viewcat operation or (2) the query parameter in a search operation in the publisher module.
EIP-2026-105423 EXPLOITDB text WRITEUP
BBS E-Market Professional bf_130 (1.3.0) - Remote File Inclusion
CVE-2009-2044 EXPLOITDB html WORKING POC
Firefox < 3.0.10 - Denial of Service via Large GIF Image in BODY BACKGROUND Attribute
Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to cause a denial of service (application crash) via a URI for a large GIF image in the BACKGROUND attribute of a BODY element.