Kacper (a.k.a Rahim)

112 exploits Active since Mar 2006
CVE-2006-4531 EXPLOITDB perl WORKING POC
Pheap CMS < 1.1 - Remote File Inclusion via lpref Parameter
PHP remote file inclusion vulnerability in lib/config.php in Pheap CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter.
CVE-2006-4291 EXPLOITDB text WORKING POC
phlymail_lite < 3.4.4 - Remote Code Execution via _PM_[path][handler] Parameter
PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and earlier (Build 3.04.04) allows remote attackers to execute arbitrary PHP code via a URL in the _PM_[path][handler] parameter.
EIP-2026-110590 EXPLOITDB php WORKING POC
pHNews alpha 1 - 'templates_dir' Remote Code Execution
CVE-2006-1209 EXPLOITDB php WORKING POC
PHP Advanced Transfer Manager <1.31 - Info Disclosure
PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for a users/[USERNAME] file.
CVE-2006-4962 EXPLOITDB php WORKING POC
Php Blue Dragon <2.9.1 - Path Traversal
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and earlier allows remote attackers to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in a log file.
CVE-2006-4912 EXPLOITDB python WORKING POC
php_docwriter < 0.3 - Remote File Inclusion via Script Parameter
PHP remote file inclusion vulnerability in PHP DocWriter 0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the script parameter.
EIP-2026-110746 EXPLOITDB php WORKING POC
PHP Proxima 6 - completepack Remote Code Execution
CVE-2006-2929 EXPLOITDB text WORKING POC
OpenEMR < 2.8.1 - Remote Code Execution via GLOBALS[fileroot] Parameter
PHP remote file inclusion vulnerability in contrib/forms/evaluation/C_FormEvaluation.class.php in OpenEMR 2.8.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[fileroot] parameter.
CVE-2006-5079 EXPLOITDB php WORKING POC
paBugs < 2.0_beta_3 - Remote File Inclusion via path_to_bt_dir Parameter
PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path_to_bt_dir parameter.
CVE-2006-4239 EXPLOITDB text WORKING POC
Outreach Project Tool OPT Max < 1.2.6 - Remote File Inclusion via CRM_inc Parameter
PHP remote file inclusion vulnerability in include/urights.php in Outreach Project Tool (OPT) Max 1.2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_inc parameter.
CVE-2006-5672 EXPLOITDB php WORKING POC
MySource CMS < 2.16.2 - Remote File Inclusion via INCLUDE_PATH Parameter
PHP remote file inclusion vulnerability in web/init_mysource.php in MySource CMS 2.16.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the INCLUDE_PATH parameter.
CVE-2006-6938 EXPLOITDB php WORKING POC
NitroTech 0.0.3a - Directory Traversal via Root Parameter
Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter.
CVE-2006-4287 EXPLOITDB text WORKING POC
NES Game and NES System - Remote File Inclusion via PHPHTMllib Parameter
Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) phphtmllib parameter to (a) phphtmllib/includes.php; tag_utils/ scripts including (b) divtag_utils.php, (c) form_utils.php, (d) html_utils.php, and (e) localinc.php; and widgets/ scripts including (f) FooterNav.php, (g) HTMLPageClass.php, (h) InfoTable.php, (i) localinc.php, (j) NavTable.php, and (k) TextNav.php.
CVE-2006-5625 EXPLOITDB php WORKING POC
N/X WCMS < 4.1 - Remote File Inclusion via c[path] Parameter
PHP remote file inclusion vulnerability in wwwdev/nxheader.inc.php in N/X 2002 Professional Edition Web Content Management System (WCMS) 4.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the c[path] parameter.
CVE-2006-6869 EXPLOITDB php WORKING POC
MAXdev MDForum <2.0.1 - Path Traversal
Directory traversal vulnerability in includes/search/search_mdforum.php in MAXdev MDForum 2.0.1 and earlier, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang cookie to error.php, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by error.php.
CVE-2006-4770 EXPLOITDB python WORKING POC
MiniPort@l <2.0 - Remote Code Execution
PHP remote file inclusion vulnerability in menu.php in MiniPort@l 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the skiny parameter.
EIP-2026-109486 EXPLOITDB php WORKING POC
miniCWB 1.0.0 - 'contact.php' Local File Inclusion
CVE-2006-5673 EXPLOITDB php WORKING POC
miniBB < 2.0.2 - Remote File Inclusion via pathToFiles Parameter
PHP remote file inclusion vulnerability in bb_func_txt.php in miniBB 2.0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pathToFiles parameter.
CVE-2006-3028 EXPLOITDB text WORKING POC
Minerva 2.0.8a Build 237 and earlier - Remote File Inclusion via phpbb_root_path Parameter
PHP remote file inclusion vulnerability in stat_modules/users_age/module.php in Minerva 2.0.8a Build 237 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
CVE-2006-7112 EXPLOITDB php WORKING POC
Maxdev Mdpro < 1.0.76 - Path Traversal
Directory traversal vulnerability in error.php in MD-Pro 1.0.76 and earlier allows remote authenticated users to read and include arbitrary files via the PNSVlang cookie, as demonstrated by uploading a GIF image using AddDownload or injecting PHP code into a log file, then accessing it.
CVE-2006-5731 EXPLOITDB php WORKING POC
lithium_cms < 4.04c - Directory Traversal and Arbitrary File Execution via siteconf[curl] Parameter
Directory traversal vulnerability in classes/index.php in Lithium CMS 4.04c and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the siteconf[curl] parameter, as demonstrated by a POST to news/comment.php containing PHP code, which is stored under db/comments/news/ and included by classes/index.php.
CVE-2007-0337 EXPLOITDB php WORKING POC
KGB < 1.9 - Directory Traversal and Arbitrary File Execution via skinnn Parameter
Directory traversal vulnerability in sesskglogadmin.php in KGB 1.9 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the skinnn parameter, as demonstrated by invoking kg.php with a postek parameter containing PHP code, which is injected into a file in the kg directory, and then included by sesskglogadmin.php.
CVE-2006-4604 EXPLOITDB perl WORKING POC
Lanifex Database of Managed Objects < 2.3_beta - Remote File Inclusion via _incMgr Parameter
PHP remote file inclusion vulnerability in LFXlib/access_manager.php in Lanifex Database of Managed Objects (DMO) 2.3 Beta and earlier allows remote attackers to execute arbitrary PHP code via the _incMgr parameter.
CVE-2006-5189 EXPLOITDB perl WORKING POC
Klinza Professional CMS <5.0.1 - RCE
PHP remote file inclusion vulnerability in funzioni/lib/show_hlp.php in klinza professional cms 5.0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the appl[APPL] parameter.
CVE-2006-5115 EXPLOITDB php WORKING POC
KGB 1.87 - Remote File Inclusion via Engine Parameter
Directory traversal vulnerability in kgcall.php in KGB 1.87 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the engine parameter, as demonstrated by uploading a file containing PHP code with an image/jpeg content type, and then referencing this file through the engine parameter.