Houssamix

55 exploits Active since Feb 2005
CVE-2008-1848 EXPLOITDB text WORKING POC
JoomlaXplorer <1.6.2 - XSS
Cross-site scripting (XSS) vulnerability in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter in a show_error action to index.php.
CVE-2008-0259 EXPLOITDB text WORKING POC
Minimal Design Minimal Gallery - Path Traversal
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
CVE-2008-0148 EXPLOITDB text WORKING POC
Tutos - Access Control
TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.
EIP-2026-119292 EXPLOITDB html WORKING POC
Word Viewer OCX 3.2 - ActiveX 'Save' Remote File Overwrite
EIP-2026-119152 EXPLOITDB html WORKING POC
SmartVmd ActiveX 1.1 - Remote File Overwrite
EIP-2026-118981 EXPLOITDB html WORKING POC
Office Viewer ActiveX Control 3.0.1 - Remote Command Execution
EIP-2026-118980 EXPLOITDB html WORKING POC
Office Viewer ActiveX Control 3.0.1 - 'Save' Remote File Overwrite
EIP-2026-119151 EXPLOITDB html WORKING POC
SmartVmd ActiveX 1.1 - Remote File Deletion
EIP-2026-118777 EXPLOITDB html WORKING POC
MetaProducts MetaTreeX 1.5.100 - ActiveX File Overwrite
CVE-2009-0301 EXPLOITDB html WORKING POC
FlexCell Grid Control <5.6.9 - RCE
Multiple insecure method vulnerabilities in the FlexCell.Grid ActiveX control (FlexCell.ocx) in FlexCell Grid Control 5.6.9 allow remote attackers to create and overwrite arbitrary files via the (1) SaveFile and (2) ExportToXML methods.
CVE-2009-0174 EXPLOITDB perl WORKING POC
VUPlayer 2.49 - Buffer Overflow
Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.
EIP-2026-118083 EXPLOITDB perl WORKING POC
VUPlayer 2.49 - '.wax' Local Buffer Overflow
CVE-2009-0134 EXPLOITDB html WORKING POC
EasyGrid ActiveX <3.51 - DoS
Insecure method vulnerability in the EasyGrid.SGCtrl.32 ActiveX control in EasyGrid.ocx 1.0.0.1 in AAA EasyGrid ActiveX 3.51 allows remote attackers to create and overwrite arbitrary files via the (1) DoSaveFile or (2) DoSaveHtmlFile method. NOTE: vector 1 could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: some of these details are obtained from third party information.
CVE-2004-0964 EXPLOITDB perl WORKING POC
Zinf <2.2.1 - RCE
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
CVE-2009-0476 EXPLOITDB perl WORKING POC
MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow
Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.
EIP-2026-117031 EXPLOITDB perl WORKING POC
Destiny Media Player 1.61 - '.lst' Local Buffer Overflow (3)
EIP-2026-116285 EXPLOITDB python WORKING POC
Spider Player 2.3.9.5 - '.asx' Off-by-One Crash
CVE-2009-0175 EXPLOITDB perl WORKING POC
Heathco Software MP3 TrackMaker <1.5 - Buffer Overflow
Heap-based buffer overflow in Heathco Software MP3 TrackMaker 1.5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in an invalid .mp3 file.
CVE-2009-0298 EXPLOITDB html WORKING POC
MW6 Technologies Barcode <3.0.0.1 - Buffer Overflow
Heap-based buffer overflow in MW6 Technologies Barcode ActiveX control (Barcode.MW6Barcode.1, Barcode.dll) 3.0.0.1 allows remote attackers to execute arbitrary code via a long Supplement property.
EIP-2026-116055 EXPLOITDB perl WORKING POC
Perception LiteServe 2.0.1 - 'user' Remote Buffer Overflow (PoC)
CVE-2009-0350 EXPLOITDB perl WORKING POC
Merak Media Player 3.2 - Buffer Overflow
Stack-based buffer overflow in Merak Media Player 3.2 allows remote attackers to execute arbitrary code via a long string in a .m3u playlist file, related to the status bar icon's tooltip. NOTE: some of these details are obtained from third party information.
CVE-2009-0490 EXPLOITDB perl WORKING POC
Audacity <1.3.6 - Buffer Overflow
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.
EIP-2026-115009 EXPLOITDB perl WORKING POC
Browse3D 3.5 - '.sfs' Local Buffer Overflow (PoC)
CVE-2007-6577 EXPLOITDB text WORKING POC
zBlog 1.2 - SQL Injection
Multiple SQL injection vulnerabilities in index.php in zBlog 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the categ parameter in a categ action or (2) the article parameter in an articles action.
CVE-2008-0490 EXPLOITDB text WORKING POC
Wordpress WP Cal Plugin - SQL Injection
SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.