DreamTurk

7 exploits Active since Feb 2008
CVE-2008-1349 EXPLOITDB text WORKING POC
bamaGalerie 3.03-3.041 - SQL Injection
SQL injection vulnerability in viewcat.php in the bamaGalerie (Bama Galerie) 3.03 and 3.041 module for eXV2 2.0.6 allows remote attackers to execute arbitrary SQL commands via the cid parameter.
CVE-2008-1462 EXPLOITDB text WRITEUP
RunCMS - Section Module < SQL Injection
SQL injection vulnerability in the sections (Section) module in RunCMS allows remote attackers to execute arbitrary SQL commands via the artid parameter in a viewarticle action.
CVE-2008-2629 EXPLOITDB text WORKING POC
LifeType - SQL Injection via albumId Parameter
SQL injection vulnerability in the LifeType (formerly pLog) module for Drupal allows remote attackers to execute arbitrary SQL commands via the albumId parameter in a ViewAlbum action to index.php.
CVE-2009-3318 EXPLOITDB text WORKING POC
Roland Breedveld Album (com_album) 1.14 - Path Traversal via Target Parameter
Directory traversal vulnerability in the Roland Breedveld Album (com_album) component 1.14 for Joomla! allows remote attackers to access arbitrary directories and have unspecified other impact via a .. (dot dot) in the target parameter to index.php.
CVE-2008-0921 EXPLOITDB text WORKING POC
beContent 0.3.1 - SQL Injection via News.php ID Parameter
SQL injection vulnerability in news.php in beContent 0.3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-3310 EXPLOITDB text WORKING POC
Pre Survey Poll - SQL Injection via catid Parameter
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter.
CVE-2008-3310 EXPLOITDB text WORKING POC
Pre Survey Poll - SQL Injection via catid Parameter
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter.