D3vil-0x1 - Security Researcher - Exploit Intelligence Platform

CVE-2006-0959 EXPLOITDB text WORKING POC

MyBulletinBoard 1.03-1.04 - SQL Injection via Cookie Parameter

SQL injection vulnerability in misc.php in MyBulletinBoard (MyBB) 1.03, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands by setting the comma variable value via the comma parameter in a cookie. NOTE: 1.04 has also been reported to be affected.

View Code

CVE-2006-0959 EXPLOITDB perl WORKING POC

MyBulletinBoard 1.03-1.04 - SQL Injection via Cookie Parameter

SQL injection vulnerability in misc.php in MyBulletinBoard (MyBB) 1.03, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands by setting the comma variable value via the comma parameter in a cookie. NOTE: 1.04 has also been reported to be affected.

View Code

CVE-2006-2034 EXPLOITDB perl WORKING POC

FlexBB 0.5.5 - SQL Injection via id Parameter

SQL injection vulnerability in function/showprofile.php in FlexBB 0.5.5 allows remote attackers to execute arbitrary SQL commands, and view all usernames and passwords, via the id parameter to the showprofile page in index.php.

View Code

CVE-2006-1978 EXPLOITDB perl WORKING POC

FlexBB < 0.5.5 - SQL Injection via flexbb_username Cookie Parameter

SQL injection vulnerability in inc/start.php in FlexBB 0.5.5 and earlier allows remote attackers to execute arbitrary SQL commands via the flexbb_username COOKIE parameter.

View Code

EIP-2026-105219 EXPLOITDB text WRITEUP

ArabPortal 2.0.1 - Multiple Input Validation Vulnerabilities

View Code