CWH Underground

145 exploits Active since Jun 2006
EIP-2026-107168 EXPLOITDB text WORKING POC
Fobuc Guestbook 0.9 - SQL Injection
CVE-2009-1277 EXPLOITDB text WORKING POC
Gravity Board X 2.0 BETA - SQL Injection via member_id Parameter
SQL injection vulnerability in index.php in Gravity Board X (GBX) 2.0 BETA allows remote attackers to execute arbitrary SQL commands via the member_id parameter in a viewprofile action. NOTE: the board_id issue is already covered by CVE-2008-2996.2.
EIP-2026-107339 EXPLOITDB text WRITEUP
Galmeta Post CMS 0.2 - Remote Code Execution / Arbitrary File Upload
EIP-2026-107338 EXPLOITDB text WORKING POC
Galmeta Post CMS 0.2 - Multiple Local File Inclusions
CVE-2008-2993 EXPLOITDB text WORKING POC
FOG Forum 0.8.1 - Path Traversal and Arbitrary File Execution via fog_lang and fog_skin Parameters
Multiple directory traversal vulnerabilities in index.php in FOG Forum 0.8.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) fog_lang and (2) fog_skin parameters, probably related to libs/required/share.inc; and possibly the (3) fog_pseudo, (4) fog_posted, (5) fog_password, and (6) fog_cook parameters.
EIP-2026-107161 EXPLOITDB text WORKING POC
Fly-High CMS 2012-07-08 - Unrestricted Arbitrary File Upload
CVE-2013-4952 EXPLOITDB text WORKING POC
elemata_cms RC 3.0 - SQL Injection via id Parameter
SQL injection vulnerability in functions/global.php in Elemata CMS RC 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-2901 EXPLOITDB text WORKING POC
Haudenschilt Family Connections CMS 1.4 - Authenticated SQL Injection via addressbook.php address Parameter
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execute arbitrary SQL commands via the (1) address parameter to addressbook.php, the (2) getnews parameter to familynews.php, and the (3) poll_id parameter to home.php in a results action.
CVE-2008-7176 EXPLOITDB text WORKING POC
Facil CMS 0.1RC - Path Traversal via change_lang or modload Parameter
Multiple directory traversal vulnerabilities in Facil CMS 0.1RC allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) change_lang parameter to index.php or (2) modload parameter to modules.php.
CVE-2008-5267 EXPLOITDB text WORKING POC
Experts 1.0.0 - SQL Injection via Question ID Parameter
SQL injection vulnerability in answer.php in Experts 1.0.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the question_id parameter.
CVE-2008-3388 EXPLOITDB text WORKING POC
Def-Blog 1.0.3 - SQL Injection via Article Parameter
Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote attackers to execute arbitrary SQL commands via the article parameter to (1) comaddok.php and (2) comlook.php.
CVE-2008-2913 EXPLOITDB text WORKING POC
Devalcms 1.4a - Remote File Inclusion and Path Traversal via func.php currentpath Parameter
Directory traversal vulnerability in func.php in Devalcms 1.4a, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the currentpath parameter, in conjunction with certain ... (triple dot) and ..... sequences in the currentfile parameter, to index.php.
CVE-2008-2983 EXPLOITDB text WORKING POC
Demo4 CMS 01 Beta - SQL Injection via id Parameter
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-3388 EXPLOITDB text WORKING POC
Def-Blog 1.0.3 - SQL Injection via Article Parameter
Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote attackers to execute arbitrary SQL commands via the article parameter to (1) comaddok.php and (2) comlook.php.
CVE-2008-6446 EXPLOITDB perl WORKING POC
CMS MAXSITE - Remote Code Execution via Guestbook Message Parameter
Static code injection vulnerability in the Guestbook component in CMS MAXSITE allows remote attackers to inject arbitrary PHP code into the guestbook via the message parameter.
CVE-2008-5628 EXPLOITDB perl WORKING POC
little_cms 0.0.1 - SQL Injection via Index.php Term Parameter
SQL injection vulnerability in index.php in CMS little 0.0.1 allows remote attackers to execute arbitrary SQL commands via the term parameter.
CVE-2008-3036 EXPLOITDB text WORKING POC
CMS little 0.0.1 - Path Traversal via Template Parameter
Directory traversal vulnerability in index.php in CMS little 0.0.1 allows remote attackers to include and execute arbitrary local files, and probably remote files, via a .. (dot dot) in the template parameter.
CVE-2015-2102 EXPLOITDB text WRITEUP
ClipBucket 2.7 RC3 (2.7.0.4.v2929-rc3) - SQL Injection via Item Parameter
SQL injection vulnerability in view_item.php in ClipBucket 2.7 RC3 (2.7.0.4.v2929-rc3) allows remote attackers to execute arbitrary SQL commands via the item parameter.
EIP-2026-105972 EXPLOITDB text WORKING POC
CMS Gratis Indonesia - 'config.php' PHP Code Injection
EIP-2026-106277 EXPLOITDB text WORKING POC
Cuppa CMS - '/alertConfigField.php' Local/Remote File Inclusion
CVE-2008-3181 EXPLOITDB text WORKING POC
ContentNow CMS 1.4.1 - Authenticated Arbitrary File Upload via upload.php
Unrestricted file upload vulnerability in upload.php in ContentNow CMS 1.4.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in upload/.
CVE-2008-2961 EXPLOITDB text WORKING POC
CMS Mini 0.2.2 - Path Traversal via Path or P Parameter
Multiple directory traversal vulnerabilities in view/index.php in CMS Mini 0.2.2 allow remote attackers to read arbitrary local files via a .. (dot dot) in the (1) path and (2) p parameter.
CVE-2008-6381 EXPLOITDB perl WORKING POC
bcoos 1.0.13 - Authenticated SQL Injection via cid Parameter
SQL injection vulnerability in modules/adresses/viewcat.php in bcoos 1.0.13, and possibly earlier, allows remote authenticated users with Addresses module permissions to execute arbitrary SQL commands via the cid parameter.
CVE-2008-5586 EXPLOITDB perl WORKING POC
Check Up New Generation <4.52 - SQL Injection
SQL injection vulnerability in findoffice.php in Check Up New Generation (aka Check New) 4.52, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the search parameter.
CVE-2008-6700 EXPLOITDB text WORKING POC
butterfly_organizer 2.0.0 - Cross-Site Scripting via mytable, tablehere, or letter Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Butterfly Organizer 2.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) mytable parameter to view.php, (2) mytable parameter to viewdb2.php, (3) tablehere parameter to category-rename.php, and (4) letter parameter to module-contacts.php.