ITSecTeam - Security Researcher - Exploit Intelligence Platform

EIP-2026-110830 EXPLOITDB text WRITEUP

PHP-Nuke - ratedownload SQL Injection

View Code

CVE-2010-5083 EXPLOITDB text WRITEUP

PHP-Nuke 8.0 - SQL Injection

SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL commands via the url parameter in an Add action to modules.php.

View Code

EIP-2026-110352 EXPLOITDB text WRITEUP

osCMax 2.0 - 'FCKeditor' Arbitrary File Upload

View Code

CVE-2010-2677 EXPLOITDB text WRITEUP

Open Web Analytics (OWA) 1.2.3 - RCE

PHP remote file inclusion vulnerability in mw_plugin.php in Open Web Analytics (OWA) 1.2.3, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the IP parameter. NOTE: some of these details are obtained from third party information.

View Code

EIP-2026-109647 EXPLOITDB html WORKING POC

MunkyScripts Simple Gallery - SQL Injection

View Code

EIP-2026-109816 EXPLOITDB html WORKING POC

n-cms-equipe 1.1c.Debug - Multiple Local File Inclusions

View Code

CVE-2010-1351 EXPLOITDB html WORKING POC

Nodesforum <1.045 - RCE

Multiple PHP remote file inclusion vulnerabilities in Nodesforum 1.033 and 1.045, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) _nodesforum_path_from_here_to_nodesforum_folder parameter to erase_user_data.php and the (2) _nodesforum_code_path parameter to pre_output.php. NOTE: some of these details are obtained from third party information.

View Code

EIP-2026-109774 EXPLOITDB text WORKING POC

MyOWNspace 8.2 - Multiple Local File Inclusions

View Code

EIP-2026-109129 EXPLOITDB text WORKING POC

LightNEasy 3.1.x - Multiple Vulnerabilities

View Code

CVE-2010-0968 EXPLOITDB text WRITEUP

Geekhelps ADMP 1.01 - SQL Injection

SQL injection vulnerability in bannershow.php in Geekhelps ADMP 1.01 allows remote attackers to execute arbitrary SQL commands via the click parameter.

View Code

EIP-2026-107135 EXPLOITDB text WORKING POC

Flatnux 2010-06.09 - 'find' Cross-Site Scripting

View Code

EIP-2026-107140 EXPLOITDB text WRITEUP

Flatpress 0.909.1 - Persistent Cross-Site Scripting

View Code

EIP-2026-106804 EXPLOITDB text WRITEUP

EgO 0.7b - 'FCKeditor' Arbitrary File Upload

View Code

EIP-2026-106374 EXPLOITDB text WORKING POC

DBHcms 1.1.4 - Persistent Cross-Site Scripting

View Code

EIP-2026-106431 EXPLOITDB text WORKING POC

DewNewPHPLinks 2.1.0.1 - Local File Inclusion

View Code

EIP-2026-106393 EXPLOITDB text WRITEUP

DDL CMS 2.1 - 'blacklist.php' Cross-Site Scripting

View Code

EIP-2026-106359 EXPLOITDB html WORKING POC

Dataface - Local File Inclusion

View Code

EIP-2026-106090 EXPLOITDB text WORKING POC

CompactCMS 1.4.0 - 'tiny_mce' Arbitrary File Upload

View Code

CVE-2010-0971 EXPLOITDB text WRITEUP

ATutor 1.6.4 - XSS

Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.6.4 allow remote authenticated users, with Instructor privileges, to inject arbitrary web script or HTML via the (1) Question and (2) Choice fields in tools/polls/add.php, the (3) Type and (4) Title fields in tools/groups/create_manual.php, and the (5) Title field in assignments/add_assignment.php. NOTE: some of these details are obtained from third party information.

View Code

EIP-2026-104860 EXPLOITDB text WORKING POC

68KB - Multiple Remote File Inclusions

View Code

EIP-2026-104661 EXPLOITDB php WORKING POC

PHP 5.3.x - Denial of Service

View Code

EIP-2026-104943 EXPLOITDB html WORKING POC

AdaptCMS Lite 1.5 - Arbitrary Add Admin

View Code

CVE-2010-1057 EXPLOITDB text WORKING POC

Phpkobo AdFreely <1.01 - Path Traversal

Multiple directory traversal vulnerabilities in Phpkobo AdFreely (aka Ad Board Script) 1.01, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a ..// (dot dot slash slash) in the LANG_CODE parameter to common.inc.php in (1) codelib/cfg/, (2) codelib/sys/, (3) staff/, and (4) staff/app/; and (5) staff/file.php. NOTE: some of these details are obtained from third party information.

View Code

EIP-2026-103388 EXPLOITDB python WORKING POC

Adobe Acrobat and Reader 9.3.4 - 'AcroForm.api' Memory Corruption

View Code

EIP-2026-103389 EXPLOITDB text SUSPICIOUS

Adobe Acrobat Reader < 9.x - Memory Corruption

View Code