HaCkZaTaN

7 exploits Active since Feb 2005
CVE-2005-0603 NOMISEC WRITEUP
phpBB <= 2.0.12 - Information Disclosure via Invalid Regular Expression in Highlight Parameter
viewtopic.php in phpBB 2.0.12 and earlier allows remote attackers to obtain sensitive information via a highlight parameter containing invalid regular expression syntax, which reveals the path in a PHP error message.
CVE-2006-0450 NOMISEC WORKING POC
phpBB <= 2.0.19 - Denial of Service via User Registration or Search Function
phpBB 2.0.19 and earlier allows remote attackers to cause a denial of service (application crash) by (1) registering many users through profile.php or (2) using search.php to search in a certain way that confuses the database.
EIP-2026-117513 EXPLOITDB c WORKING POC
Microsoft Windows - 'LegitCheckControl.dll' Genuine Advantage Validation Patch
EIP-2026-110965 EXPLOITDB text WORKING POC
phpBB 2.0.x - 'viewtopic.php' Cross-Site Scripting
EIP-2026-110963 EXPLOITDB text WORKING POC
phpBB 2.0.x - 'profile.php' Cross-Site Scripting
EIP-2026-104674 EXPLOITDB c WORKING POC
phpBB 2.0.15 - Register Multiple Users (Denial of Service)
EIP-2026-104675 EXPLOITDB perl WORKING POC
phpBB 2.0.15 - Register Multiple Users (Denial of Service)