DJR

5 exploits Active since Oct 2006
CVE-2006-5613 EXPLOITDB text WORKING POC
MP3 Streaming DownSampler <3.0 - RCE
PHP remote file inclusion in Core/core.inc.php in MP3 Streaming DownSampler (mp3SDS) 3.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the fullpath parameter
CVE-2006-7107 EXPLOITDB text WORKING POC
Coalescent Systems freePBX <2.1.3 - RCE
PHP remote file inclusion vulnerability in upgrade.php in Coalescent Systems freePBX 2.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the amp_conf[AMPWEBROOT] parameter.
CVE-2006-5623 EXPLOITDB text WORKING POC
EE Tool <0.4-1 - RCE
PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter.
EIP-2026-105231 EXPLOITDB text WORKING POC
Ariadne 2.4 - store_config[code] Remote File Inclusion
CVE-2009-0814 EXPLOITDB text WRITEUP
Blogsa <1.0 Beta 3 - XSS
Cross-site scripting (XSS) vulnerability in Widgets.aspx in Blogsa 1.0 Beta 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchText parameter.