Alpha_Programmer (Sirus-v)

5 exploits Active since May 2005
CVE-2005-1787 EXPLOITDB perl WORKING POC
phpstat 1.5 - Unauthenticated Authentication Bypass via $check Variable
setup.php in phpStat 1.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the $check variable.
CVE-2005-2000 EXPLOITDB perl WORKING POC
paFileDB <= 3.1 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in paFileDB 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the formname parameter (1) in the login form, (2) in the team login form, or (3) to auth.php, (4) select, (5) id, or (6) query parameter to pafiledb.php, or (7) string parameter to search.php.
CVE-2005-1628 EXPLOITDB perl WORKING POC
WebAPP 0.9.9.2.1 - Remote Command Execution via apage.cgi f Parameter
apage.cgi in WebAPP 0.9.9.2.1, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter.
CVE-2005-1950 EXPLOITDB c WORKING POC
Webhints 1.03 - Remote Command Execution via Shell Metacharacters
hints.pl in Webhints 1.03 allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.
CVE-2005-1950 EXPLOITDB perl WORKING POC
Webhints 1.03 - Remote Command Execution via Shell Metacharacters
hints.pl in Webhints 1.03 allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.