Lo$er

4 exploits Active since Aug 2008
EIP-2026-109401 EXPLOITDB text WRITEUP
Memberkit 1.0 - Arbitrary File Upload
CVE-2009-2184 EXPLOITDB text WORKING POC
Gravy Media Photo Host 1.0.8 - Path Traversal
Absolute path traversal vulnerability in forcedownload.php in Gravy Media Photo Host 1.0.8 allows remote attackers to read arbitrary files via an encoded "/" (slash) in the file parameter.
CVE-2008-6103 EXPLOITDB text WORKING POC
a4desk Flash Event Calendar - Remote Code Execution via index.php v Parameter
PHP remote file inclusion vulnerability in index.php in A4Desk Event Calendar, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the v parameter.
CVE-2008-3570 EXPLOITDB text WRITEUP
Africa Be Gone 1.0a - Remote Code Execution via abg_path Parameter
PHP remote file inclusion vulnerability in index.php in Africa Be Gone (ABG) 1.0a allows remote attackers to execute arbitrary PHP code via a URL in the abg_path parameter.