Kurd-Team

6 exploits Active since Sep 2009
EIP-2026-106920 EXPLOITDB text WRITEUP
Etki Video PRO 2.0 - 'izle.asp?id' SQL Injection
EIP-2026-106921 EXPLOITDB text WRITEUP
Etki Video PRO 2.0 - 'kategori.asp?cat' SQL Injection
CVE-2009-3055 EXPLOITDB text WORKING POC
Dle - Code Injection
PHP remote file inclusion vulnerability in engine/api/api.class.php in DataLife Engine (DLE) 8.2 allows remote attackers to execute arbitrary PHP code via a URL in the dle_config_api parameter.
EIP-2026-105314 EXPLOITDB text WRITEUP
Automagick Tube Script 1.4.4 - 'module' Cross-Site Scripting
CVE-2009-4623 EXPLOITDB text WRITEUP
Advanced Comment System 1.0 - RCE
Multiple PHP remote file inclusion vulnerabilities in Advanced Comment System 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the ACS_path parameter to (1) index.php and (2) admin.php in advanced_comment_system/. NOTE: this might only be a vulnerability when the administrator has not followed installation instructions in install.php. NOTE: this might be the same as CVE-2020-35598.
EIP-2026-100357 EXPLOITDB text WORKING POC
i-Gallery 3.4 - 'd' Cross-Site Scripting