Matrix86

3 exploits Active since Oct 2007
CVE-2007-5187 EXPLOITDB php WORKING POC
Php-fusion Expanded Calendar Module - SQL Injection
SQL injection vulnerability in infusions/calendar_events_panel/show_single.php in the Expanded Calendar 2.x module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the sel parameter.
CVE-2008-2227 EXPLOITDB text WORKING POC
Php-fusion Forum Rank System - Path Traversal
Multiple directory traversal vulnerabilities in PHP-Fusion Forum Rank System 6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the settings[locale] parameter to (1) forum.php and (2) profile.php in infusions/rank_system/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2007-5677 EXPLOITDB text WORKING POC
Hackish - XSS
Cross-site scripting (XSS) vulnerability in shoutbox/blocco.php in Hackish BETA 1.1 allows remote attackers to inject arbitrary web script or HTML via the go_shout parameter.