Morinex Eneco

4 exploits Active since May 2005
CVE-2005-1614 EXPLOITDB text WORKING POC
Ultimate PHP Board 1.8-1.9.6 - Cross-Site Scripting via viewforum.php postorder Parameter
Cross-site scripting (XSS) vulnerability in viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the postorder parameter.
CVE-2005-1615 EXPLOITDB text WRITEUP
Ultimate PHP Board 1.8-1.9.6 - SQL Injection via postorder Parameter
viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder parameter, which is not properly handled by textdb.inc.php, possibly due to a SQL injection vulnerability.
CVE-2005-1620 EXPLOITDB text WORKING POC
Skull-Splitter Guestbook 1.0, 2.0, 2.2 - Stored Cross-Site Scripting via Message Title or Content
Cross-site scripting (XSS) vulnerability in Skull-Splitter Guestbook 1.0, 2.0 and 2.2 allows remote attackers to inject arbitrary web script or HTML via the (1) title or (2) content of a message.
EIP-2026-106461 EXPLOITDB text WRITEUP
DirectTopics 2 - 'topic.php' SQL Injection