Hamza 'MizoZ' N.

10 exploits Active since Aug 2009
CVE-2010-0631 EXPLOITDB text WORKING POC
eicra_car_rental-script - SQL Injection via Users and Passwords Parameters
Multiple SQL injection vulnerabilities in index.php in Eicra Car Rental-Script, when the plugin_id parameter is 4, allow remote attackers to execute arbitrary SQL commands via the (1) users (username) and (2) passwords parameters.
EIP-2026-108020 EXPLOITDB text WORKING POC
ITechSctipts Alibaba Clone - Multiple Vulnerabilities
CVE-2010-1043 EXPLOITDB text WORKING POC
jaxCMS 1.0 - Path Traversal and Arbitrary File Execution via 'p' Parameter
Directory traversal vulnerability in index.php in jaxCMS 1.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the p parameter.
CVE-2009-2894 EXPLOITDB text WORKING POC
Ebay Clone 2009 - SQL Injection via id or cid Parameter
Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to product_desc.php, and the cid parameter to (2) showcategory.php and (3) gallery.php.
CVE-2010-0630 EXPLOITDB text WORKING POC
Evernew Free Joke Script 1.2 - SQL Injection via viewjokes.php id Parameter
SQL injection vulnerability in viewjokes.php in Evernew Free Joke Script 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-106410 EXPLOITDB text WORKING POC
DELTAScripts PHPLinks - 'catid' SQL Injection
EIP-2026-106409 EXPLOITDB text WRITEUP
DELTAScripts PHPClassifieds - 'rate.php' Blind SQL Injection
EIP-2026-106634 EXPLOITDB text WRITEUP
E-PHP B2B Marketplace - Multiple Vulnerabilities
EIP-2026-105952 EXPLOITDB text WORKING POC
CLONEBID B2B Marketplace - Multiple Vulnerabilities
EIP-2026-103600 EXPLOITDB bash WORKING POC
Nuked KLan 1.7.7 & SP4 - Denial of Service