InyeXion

3 exploits Active since Apr 2007
CVE-2007-2201 EXPLOITDB text WORKING POC
Post Revolution 6.6 and 7.0 RC2 - Remote File Inclusion via dir Parameter
Multiple PHP remote file inclusion vulnerabilities in Post Revolution 6.6 and 7.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the dir parameter to (1) common.php or (2) themes/default/preview_post_completo.php.
CVE-2007-2205 EXPLOITDB text WORKING POC
LAN Management System 1.5.3 - Remote File Inclusion via _LIB_DIR Parameter
PHP remote file inclusion vulnerability in modules/rtmessageadd.php in LAN Management System (LMS) 1.5.3, and possibly 1.5.4, allows remote attackers to execute arbitrary PHP code via a URL in the _LIB_DIR parameter, a different vector than CVE-2007-1643.
CVE-2007-2262 EXPLOITDB text WRITEUP
Sinato jmuffin - Remote Code Execution via relPath or folder Parameter
Multiple PHP remote file inclusion vulnerabilities in html/php/detail.php in Sinato jmuffin allow remote attackers to execute arbitrary PHP code via a URL in the (1) relPath and (2) folder parameters. NOTE: this product was originally reported as "File117".