DNX

31 exploits Active since Feb 2007
CVE-2008-6647 EXPLOITDB WORKING POC
Ktools PhotoStore 3.4.3 - SQL Injection via Gallery gid Parameter
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote attackers to execute arbitrary SQL commands via the gid parameter.
CVE-2008-6648 EXPLOITDB text WORKING POC
Ktools PhotoStore 3.4.3 and 3.5.2 - SQL Injection via gid Parameter
SQL injection vulnerability in crumbs.php in Ktools PhotoStore 3.4.3 and 3.5.2 allows remote attackers to execute arbitrary SQL commands via the gid parameter to about_us.php. NOTE: this might be the same issue as CVE-2008-6647.
CVE-2008-2483 EXPLOITDB text WORKING POC
Xomol CMS 1.20071213 - Path Traversal via 'op' Parameter
Directory traversal vulnerability in index.php in Xomol CMS 1.20071213 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the op parameter.
EIP-2026-114544 EXPLOITDB perl WORKING POC
YourArcadeScript 2.0b1 - Blind SQL Injection
CVE-2008-2484 EXPLOITDB text WORKING POC
Xomol CMS 1.20071213 - SQL Injection via Email Parameter
SQL injection vulnerability in index.php in Xomol CMS 1.20071213, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the email parameter.
CVE-2009-0597 EXPLOITDB text WORKING POC
w3b_cms < 3.3.0 - SQL Injection via Username Parameter
SQL injection vulnerability in admin/index.php in w3b>cms (aka w3blabor CMS) before 3.4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the benutzername parameter (aka Username field) in a login action.
CVE-2008-6158 EXPLOITDB perl WORKING POC
w3b>cms < 3.2.0 - Multiple Unspecified Vulnerabilities in Admin Backend
Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) before 3.2.0 have unknown impact and remote attack vectors.
CVE-2009-2337 EXPLOITDB perl WORKING POC
w3b|cms Gaestebuch Guestbook Module 3.0.0 - SQL Injection
SQL injection vulnerability in includes/module/book/index.inc.php in w3b|cms Gaestebuch Guestbook Module 3.0.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the spam_id parameter.
EIP-2026-113172 EXPLOITDB perl WORKING POC
w3bcms 3.5.0 - Multiple Vulnerabilities
CVE-2007-4605 EXPLOITDB text WORKING POC
Virtual War < 1.5.0_r15 - Remote Code Execution via vwar_root Parameter
PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1503, CVE-2006-1636, and CVE-2006-1747.
CVE-2009-1912 EXPLOITDB perl WORKING POC
webSPELL < 4.2.0e - Path Traversal via Language Cookie
Directory traversal vulnerability in src/func/language.php in webSPELL 4.2.0e and earlier allows remote attackers to include and execute arbitrary local .php files via a .. (dot dot) in a language cookie. NOTE: this can be leveraged for SQL injection by including awards.php.
EIP-2026-113364 EXPLOITDB perl WORKING POC
webSPELL 4.01.02 - Multiple SQL Injections
CVE-2007-1163 EXPLOITDB perl WORKING POC
webSPELL < 4.01.02 - SQL Injection via printview.php topic Parameter
SQL injection vulnerability in printview.php in webSPELL 4.01.02 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2007-1019, CVE-2006-5388, and CVE-2006-4783.
CVE-2007-1019 EXPLOITDB perl WORKING POC
webSPELL 4.01.02 - SQL Injection via showonly Parameter
SQL injection vulnerability in news.php in webSPELL 4.01.02, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the showonly parameter to index.php, a different vector than CVE-2006-5388.
CVE-2008-3241 EXPLOITDB perl WORKING POC
UltraStats <0.2.142 - SQL Injection
SQL injection vulnerability in players-detail.php in UltraStats 0.2.136, 0.2.140, and 0.2.142 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-4597 EXPLOITDB perl WORKING POC
TurnkeyWebTools SunShop <4.0 RC 6 - SQL Injection
SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, a different vector than CVE-2007-2549.
CVE-2008-3131 EXPLOITDB text WORKING POC
powie psys 0.7.0 Alpha - SQL Injection via chatbox.php showid Parameter
SQL injection vulnerability in chatbox.php in pSys 0.7.0 Alpha, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showid parameter.
CVE-2007-4606 EXPLOITDB text WORKING POC
phpnuke-clan < 4.2.0 - Remote Code Execution via VWar Module vwar_root Parameter
PHP remote file inclusion vulnerability in convert/mvcw_conver.php in the Virtual War (VWar) module for PHPNuke-Clan (PNC) 4.2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1602. NOTE: it is possible that this issue stems from a problem in VWar itself.
CVE-2007-6578 EXPLOITDB perl WORKING POC
PHP ZLink 0.3 - SQL Injection via id Parameter
SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-6466 EXPLOITDB perl WORKING POC
FreeWebshop 2.2.1 - SQL Injection via prod/cat/group Parameters
Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the prod parameter in a details action, (2) the cat parameter in a browse list action, or (3) the group parameter in a categories action. NOTE: it was later reported that MOG - Web Shop (MOG-WebShop), a product based on the same code, is also affected.
EIP-2026-109894 EXPLOITDB perl WORKING POC
Netvidade engine 1.0 - Multiple Vulnerabilities
CVE-2007-5261 EXPLOITDB perl WORKING POC
MultiCart 1.0 - SQL Injection via catid or ddlCategory Parameter
Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.
CVE-2007-1393 EXPLOITDB text WORKING POC
Magic CMS 4.2.747 - Remote File Inclusion via mysave.php file Parameter
PHP remote file inclusion vulnerability in mysave.php in Magic CMS 4.2.747 allows remote attackers to execute arbitrary PHP code via a URL in the file parameter.
CVE-2008-6649 EXPLOITDB text WORKING POC
Ktools PhotoStore <= 3.5.2 - SQL Injection via id Parameter
SQL injection vulnerability in manager/image_details_editor.php in Ktools PhotoStore 2.5, 2.9.8, 3.1.0, and other versions through 3.5.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-2425 EXPLOITDB text WORKING POC
Imageview 5.3 - Directory Traversal via Album Parameter
Directory traversal vulnerability in fileview.php in Imageview 5.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the album parameter.