Cyber-Zone (ABDELKHALEK)

59 exploits Active since May 2005
CVE-2009-1328 EXPLOITDB perl WORKING POC
Mini-stream RM-MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream RM-MP3 Converter 3.0.0.7 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2009-1327 EXPLOITDB perl WORKING POC
Mini-stream WM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream WM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2009-1326 EXPLOITDB perl WORKING POC
Mini-stream RM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream RM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2009-1325 EXPLOITDB perl WORKING POC
Mini-stream Ripper 3.0.1.1 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream Ripper 3.0.1.1 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2009-1324 EXPLOITDB perl WORKING POC
Mini-stream ASX to MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream ASX to MP3 Converter 3.0.0.7 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2008-6371 EXPLOITDB text WORKING POC
Membership Manager Pro - SQL Injection via Username Parameter
SQL injection vulnerability in login.asp in Ocean12 Membership Manager Pro allows remote attackers to execute arbitrary SQL commands via the username (Username parameter).
CVE-2008-5783 EXPLOITDB text WORKING POC
V3 Chat Live Support 3.0.4 - Auth Bypass
admin/index.php in V3 Chat Live Support 3.0.4 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.
CVE-2005-1426 EXPLOITDB perl WORKING POC
Uapplication Ublog Reload - Info Disclosure
Uapplication Ublog Reload stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/blog.mdb (aka mdb-database/blog.msb).
CVE-2005-1425 EXPLOITDB perl WORKING POC
Uapplication Uguestbook 1.0 - Info Disclosure
Uapplication Uguestbook 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/guestbook.mdb.
EIP-2026-119065 EXPLOITDB perl WORKING POC
Quick 'n Easy Web Server 3.3.5 - Arbitrary File Disclosure
EIP-2026-118773 EXPLOITDB perl WORKING POC
Mereo 1.8.0 - Arbitrary File Disclosure
EIP-2026-118329 EXPLOITDB perl WORKING POC
BolinTech DreamFTP Server 1.02 - 'users.dat' Arbitrary File Disclosure
EIP-2026-117613 EXPLOITDB python WORKING POC
Mini-stream RM-MP3 Converter/WMDownloader/ASX to MP3 Converter - Local Stack Buffer Overflow
CVE-2009-1627 EXPLOITDB perl WORKING POC
Streaming Download Project Downloader 2.3.0 - Remote Code Execution via Long ASF URL in ASX File
Stack-based buffer overflow in Streaming Download Project (SDP) Downloader 2.3.0 allows remote attackers to execute arbitrary code via a long .asf URL in the HREF attribute of a REF element in a .asx file.
CVE-2009-1330 EXPLOITDB perl WORKING POC
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
CVE-2009-2568 EXPLOITDB perl WORKING POC
Sorinara Streaming Audio Player 0.9 - Remote Code Execution via Long String in Playlist File
Stack-based buffer overflow in Sorinara Streaming Audio Player (SAP) 0.9 allows remote attackers to execute arbitrary code via a long string in a playlist (.m3u) file.
CVE-2009-1330 EXPLOITDB perl WORKING POC
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
CVE-2009-1330 EXPLOITDB perl WORKING POC
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
CVE-2009-3717 EXPLOITDB perl WORKING POC
LucVil PatPlayer 3.9 - Heap-Based Buffer Overflow via Long URI in Playlist File
Heap-based buffer overflow in LucVil PatPlayer 3.9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2009-1330 EXPLOITDB perl WORKING POC
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
CVE-2009-1330 EXPLOITDB perl WORKING POC
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
CVE-2009-1351 EXPLOITDB perl WORKING POC
Apollo 37zz - Heap-Based Buffer Overflow via Long URI in Playlist File
Heap-based buffer overflow in Apollo 37zz allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URI in a playlist (.m3u) file.
CVE-2008-5784 EXPLOITDB CRITICAL text WORKING POC
V3 Chat - Profiles/Dating Script 3.0.2 - Auth Bypass
V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.
CVSS 9.8
EIP-2026-113210 EXPLOITDB text WORKING POC
Web Calendar 4.1 - Authentication Bypass
CVE-2008-5292 EXPLOITDB text WRITEUP
VideoGirls BiZ - SQL Injection via view_snaps.php type Parameter
SQL injection vulnerability in view_snaps.php in VideoGirls BiZ allows remote attackers to execute arbitrary SQL commands via the type parameter.