B3g0k

5 exploits Active since Dec 2005
EIP-2026-109764 EXPLOITDB text WORKING POC
MyEvent 1.3 - 'event.php' Remote File Inclusion
CVE-2005-4288 EXPLOITDB text WRITEUP
marmaraweb_e-commerce - Cross-Site Scripting via Page Parameter
Cross-site scripting (XSS) vulnerability in index.php in MarmaraWeb E-commerce allows remote attackers to inject arbitrary web script or HTML via the page parameter to index.php. NOTE: this might be resultant from CVE-2005-4287.
CVE-2005-4287 EXPLOITDB text WRITEUP
MarmaraWeb E-commerce - Remote File Inclusion via Page Parameter
PHP remote file include vulnerability in MarmaraWeb E-commerce allows remote attackers to execute arbitrary code via the page parameter to index.php.
CVE-2005-4081 EXPLOITDB text WRITEUP
Alisveristr E-commerce - SQL Injection via User and Administrator Login Parameters
Multiple SQL injection vulnerabilities in Alisveristr E-commerce allow remote attackers to bypass authentication and possibly execute arbitrary SQL commands via the username and password parameters in (1) the user login and (2) administrator login pages.
CVE-2006-0534 EXPLOITDB text WORKING POC
CyberShop Ultimate E-commerce - Cross-Site Scripting via ortak or kat Parameter
Multiple cross-site scripting (XSS) vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the (1) ortak or (2) kat parameter.