Kacper

159 exploits Active since Dec 2003
EIP-2026-110590 EXPLOITDB php WORKING POC
pHNews alpha 1 - 'templates_dir' Remote Code Execution
CVE-2006-4531 EXPLOITDB perl WORKING POC
Pheap CMS < 1.1 - Remote File Inclusion via lpref Parameter
PHP remote file inclusion vulnerability in lib/config.php in Pheap CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter.
CVE-2006-4420 EXPLOITDB php WORKING POC
Phaos 0.9.2 - Directory Traversal via Lang Parameter
Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote attackers to include arbitrary local files via ".." sequences in the lang parameter.
CVE-2007-2320 EXPLOITDB php WORKING POC
papoo < 3.02 - SQL Injection via kontakt.php menuid Parameter
SQL injection vulnerability in kontakt.php in Papoo 3.02 and earlier allows remote attackers to execute arbitrary SQL commands via the menuid parameter, a different vector than CVE-2005-4478.
CVE-2006-5079 EXPLOITDB php WORKING POC
paBugs < 2.0_beta_3 - Remote File Inclusion via path_to_bt_dir Parameter
PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path_to_bt_dir parameter.
CVE-2006-2683 EXPLOITDB text WORKING POC
open-medium_cms 0.25 - Remote File Inclusion via REDSYS[MYPATH][TEMPLATES] Parameter
PHP remote file inclusion vulnerability in 404.php in open-medium.CMS 0.25 allows remote attackers to execute arbitrary PHP code via a URL in the REDSYS[MYPATH][TEMPLATES] parameter.
CVE-2006-2929 EXPLOITDB text WORKING POC
OpenEMR < 2.8.1 - Remote Code Execution via GLOBALS[fileroot] Parameter
PHP remote file inclusion vulnerability in contrib/forms/evaluation/C_FormEvaluation.class.php in OpenEMR 2.8.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[fileroot] parameter.
CVE-2006-4239 EXPLOITDB text WORKING POC
Outreach Project Tool OPT Max < 1.2.6 - Remote File Inclusion via CRM_inc Parameter
PHP remote file inclusion vulnerability in include/urights.php in Outreach Project Tool (OPT) Max 1.2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_inc parameter.
CVE-2006-2767 EXPLOITDB text WRITEUP
Ottoman 1.1.2 - Remote Code Execution via Default Path Parameter
PHP remote file inclusion vulnerability in Ottoman 1.1.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the default_path parameter in (1) error.php, (2) index.php, and (3) classes/main_class.php.
CVE-2006-5625 EXPLOITDB php WORKING POC
N/X WCMS < 4.1 - Remote File Inclusion via c[path] Parameter
PHP remote file inclusion vulnerability in wwwdev/nxheader.inc.php in N/X 2002 Professional Edition Web Content Management System (WCMS) 4.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the c[path] parameter.
CVE-2006-5672 EXPLOITDB php WORKING POC
MySource CMS < 2.16.2 - Remote File Inclusion via INCLUDE_PATH Parameter
PHP remote file inclusion vulnerability in web/init_mysource.php in MySource CMS 2.16.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the INCLUDE_PATH parameter.
CVE-2009-1407 EXPLOITDB text WORKING POC
NotFTP 1.3.1 - Path Traversal via Languages Parameter
Directory traversal vulnerability in config.php in NotFTP 1.3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a certain languages[][file] parameter.
CVE-2006-6938 EXPLOITDB php WORKING POC
NitroTech 0.0.3a - Directory Traversal via Root Parameter
Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter.
CVE-2006-4287 EXPLOITDB text WORKING POC
NES Game and NES System - Remote File Inclusion via PHPHTMllib Parameter
Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) phphtmllib parameter to (a) phphtmllib/includes.php; tag_utils/ scripts including (b) divtag_utils.php, (c) form_utils.php, (d) html_utils.php, and (e) localinc.php; and widgets/ scripts including (f) FooterNav.php, (g) HTMLPageClass.php, (h) InfoTable.php, (i) localinc.php, (j) NavTable.php, and (k) TextNav.php.
CVE-2006-2768 EXPLOITDB text WORKING POC
METAjour 2.1 - Remote File Inclusion via system_path Parameter
PHP remote file inclusion vulnerability in METAjour 2.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the (1) system_path parameter in a large number of files in the (a) app/edocument/, (b) app/eproject/, (c) app/erek/, and (d) extension/ directories, and the (2) GLOBALS[system_path] parameter in (e) extension/sitemap/sitemap.datatype.php.
CVE-2006-7112 EXPLOITDB php WORKING POC
Maxdev Mdpro < 1.0.76 - Path Traversal
Directory traversal vulnerability in error.php in MD-Pro 1.0.76 and earlier allows remote authenticated users to read and include arbitrary files via the PNSVlang cookie, as demonstrated by uploading a GIF image using AddDownload or injecting PHP code into a log file, then accessing it.
CVE-2006-6869 EXPLOITDB php WORKING POC
MAXdev MDForum <2.0.1 - Path Traversal
Directory traversal vulnerability in includes/search/search_mdforum.php in MAXdev MDForum 2.0.1 and earlier, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang cookie to error.php, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by error.php.
CVE-2006-5731 EXPLOITDB php WORKING POC
lithium_cms < 4.04c - Directory Traversal and Arbitrary File Execution via siteconf[curl] Parameter
Directory traversal vulnerability in classes/index.php in Lithium CMS 4.04c and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the siteconf[curl] parameter, as demonstrated by a POST to news/comment.php containing PHP code, which is stored under db/comments/news/ and included by classes/index.php.
CVE-2007-1643 EXPLOITDB text WRITEUP
LAN Management System < 1.8.9 - Remote Code Execution via PHP File Inclusion
Multiple PHP remote file inclusion vulnerabilities in LAN Management System (LMS) 1.8.9 Vala and earlier allow remote attackers to execute arbitrary PHP code via a URL in (1) the CONFIG[directories][userpanel_dir] parameter to userpanel.php or the (2) _LIB_DIR parameter to welcome.php.
CVE-2006-4770 EXPLOITDB python WORKING POC
MiniPort@l <2.0 - Remote Code Execution
PHP remote file inclusion vulnerability in menu.php in MiniPort@l 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the skiny parameter.
EIP-2026-109486 EXPLOITDB php WORKING POC
miniCWB 1.0.0 - 'contact.php' Local File Inclusion
CVE-2006-5673 EXPLOITDB php WORKING POC
miniBB < 2.0.2 - Remote File Inclusion via pathToFiles Parameter
PHP remote file inclusion vulnerability in bb_func_txt.php in miniBB 2.0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pathToFiles parameter.
CVE-2006-3028 EXPLOITDB text WORKING POC
Minerva 2.0.8a Build 237 and earlier - Remote File Inclusion via phpbb_root_path Parameter
PHP remote file inclusion vulnerability in stat_modules/users_age/module.php in Minerva 2.0.8a Build 237 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
CVE-2007-1612 EXPLOITDB php WORKING POC
katalog_plyt_audio < 1.0 - SQL Injection via kolumna Parameter
SQL injection vulnerability in index.php in Katalog Plyt Audio 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the kolumna parameter.
EIP-2026-109071 EXPLOITDB text WRITEUP
lastRSS autoposting bot MOD 0.1.3 - 'phpbb_root_path' Remote File Inclusion