Bl@ckbe@rD ('Tunisian TerrorisT') - Security Researcher

CVE-2008-5192 EXPLOITDB text WORKING POC

Philboard 1.14/1.2 - SQL Injection

SQL injection vulnerability in forum.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might overlap CVE-2008-2334, CVE-2008-1939, CVE-2007-2641, or CVE-2007-0920.

View Code

CVE-2008-5193 EXPLOITDB text WORKING POC

Philboard 1.14,1.2 - XSS

Cross-site scripting (XSS) vulnerability in search.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: this might overlap CVE-2007-4024.

View Code

CVE-2008-6527 EXPLOITDB text WORKING POC

Go4i Go41.net Asp Forum - SQL Injection

SQL injection vulnerability in forum.asp in GO4I.NET ASP Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the iFor parameter.

View Code

EIP-2026-100446 EXPLOITDB text WORKING POC

MVC-Web CMS 1.0/1.2 - 'newsid' SQL Injection

View Code

EIP-2026-100284 EXPLOITDB text WORKING POC

DUdForum 3.0 - 'iFor' SQL Injection

View Code