FuRty

3 exploits Active since Nov 2010
CVE-2010-4144 EXPLOITDB text WORKING POC
Kisisel Radyo Script - SQL Injection via Id Parameter
SQL injection vulnerability in radyo.asp in Kisisel Radyo Script allows remote attackers to execute arbitrary SQL commands via the Id parameter.
EIP-2026-113433 EXPLOITDB text WORKING POC
WikiWebHelp 0.3.3 - Insecure Cookie Handling
CVE-2010-4145 EXPLOITDB text WORKING POC
Kisisel Radyo Script - Unauthenticated Sensitive Information Disclosure via Direct Database Request
Kisisel Radyo Script stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for sevvo/eco23.mdb.