Mustafa Can Bjorn

EIP-2026-111968 EXPLOITDB text WORKING POC

Seditio 1.10 - 'Users.Profile.Inc.php' SQL Injection

View Code

CVE-2006-0923 EXPLOITDB text WRITEUP

MyPHPNuke <= 1.88 - Cross-Site Scripting via Reviews Letter Parameter and Download Category Parameter

Multiple cross-site scripting (XSS) vulnerabilities in MyPHPNuke (MPN) 1.88 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the letter parameter in reviews.php and (2) the dcategory parameter in download.php.

View Code

CVE-2006-0923 EXPLOITDB text WRITEUP

MyPHPNuke <= 1.88 - Cross-Site Scripting via Reviews Letter Parameter and Download Category Parameter

Multiple cross-site scripting (XSS) vulnerabilities in MyPHPNuke (MPN) 1.88 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the letter parameter in reviews.php and (2) the dcategory parameter in download.php.

View Code

CVE-2006-2732 EXPLOITDB text WRITEUP

Mini-Nuke < 2.3 - SQL Injection via Your_Account.asp Parameters

SQL injection vulnerability in Your_Account.asp in Mini-Nuke 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) yas_1, (2) yas_2, and (3) yas_3 parameters.

View Code

CVE-2006-2648 EXPLOITDB text WORKING POC

ASPBB 0.52 - Cross-Site Scripting via Search Parameter

Cross-site scripting (XSS) vulnerability in perform_search.asp for ASPBB 0.52 and earlier allows remote attackers to inject arbitrary HTML or web script via the search parameter.

View Code