MhZ91

29 exploits Active since Sep 2007
CVE-2007-6179 EXPLOITDB text WORKING POC
Charray CMS 0.9.3 - Remote File Inclusion via ccms_library_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Charray's CMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the ccms_library_path parameter to (1) markdown.php and (2) gallery.php in decoder/.
CVE-2007-6615 EXPLOITDB text WRITEUP
Agares Media phpAutoVideo <2.21 - Path Traversal
Directory traversal vulnerability in includes/block.php in Agares Media phpAutoVideo 2.21 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the selected_provider parameter.
CVE-2008-1126 EXPLOITDB text WRITEUP
Barryvan Compo Manager 0.3 - Remote Code Execution via main.php pageURL Parameter
PHP remote file inclusion vulnerability in main.php in Barryvan Compo Manager 0.3 allows remote attackers to execute arbitrary PHP code via a URL in the pageURL parameter.
CVE-2007-6576 EXPLOITDB text WORKING POC
Adult Script <1.6.5 - SQL Injection
Multiple SQL injection vulnerabilities in Adult Script 1.6.5 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) videolink_count.php or (2) links.php.