NTOS-Team - Security Researcher - Exploit Intelligence Platform

EIP-2026-113135 EXPLOITDB perl WORKING POC

vKios 2.0.0 - 'cat' SQL Injection

View Code

CVE-2008-0811 EXPLOITDB python WORKING POC

AuraCMS 1.62 - SQL Injection via kid or query Parameter

Multiple SQL injection vulnerabilities in AuraCMS 1.62 allow remote attackers to execute arbitrary SQL commands via (1) the kid parameter to (a) mod/dl.php or (b) mod/links.php, and (2) the query parameter to search.php.

View Code

CVE-2008-1398 EXPLOITDB perl WORKING POC

AuraCMS 2.0-2.2.1 - SQL Injection via X-Forwarded-For Header

SQL injection vulnerability in online.php in AuraCMS 2.0 through 2.2.1 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field (HTTP_X_FORWARDED_FOR environment variable) in an HTTP header.

View Code

CVE-2008-1715 EXPLOITDB perl WORKING POC

AuraCMS < 2.2.1 - SQL Injection via Country Parameter

SQL injection vulnerability in content/user.php in AuraCMS 2.2.1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the country parameter.

View Code