Al7ejaz Hacker

4 exploits Active since Nov 2006
CVE-2006-6272 EXPLOITDB text WRITEUP
Simple PHP Gallery 1.1 - Cross-Site Scripting via dir Parameter
Cross-site scripting (XSS) vulnerability in sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.
CVE-2006-6648 EXPLOITDB text WRITEUP
planetluc.com RateMe < 1.3.2 - Remote File Inclusion via pathtoscript Parameter
PHP remote file inclusion vulnerability in main.inc.php in planetluc.com RateMe 1.3.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pathtoscript parameter.
CVE-2006-6044 EXPLOITDB text WRITEUP
phpquickgallery < 1.9 - Remote File Inclusion via gallery_top.inc.php textFile Parameter
PHP remote file inclusion vulnerability in gallery_top.inc.php in PHPQuickGallery 1.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the textFile parameter.
CVE-2006-6118 EXPLOITDB text WRITEUP
mmgallery 1.55 - Cross-Site Scripting via thumbs.php page Parameter
Cross-site scripting (XSS) vulnerability in thumbs.php in mmgallery 1.55 allows remote attackers to inject arbitrary web script or HTML via the page parameter.