Nice Name Crew

5 exploits Active since Aug 2007
CVE-2007-4818 EXPLOITDB text WRITEUP
Txx Cms - Code Injection
Multiple PHP remote file inclusion vulnerabilities in Txx CMS 0.2 allow remote attackers to execute arbitrary PHP code via a URL in the doc_root parameter to (1) addons/plugin.php, (2) addons/sidebar.php, (3) mail/index.php, or (4) mail/mailbox.php in modules/.
CVE-2007-5082 EXPLOITDB perl WORKING POC
Broadcom Brightstor Hierarchical Storage Manager - Memory Corruption
Multiple stack-based buffer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter.
CVE-2007-4819 EXPLOITDB text WRITEUP
Txx Cms - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Txx CMS 0.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2007-4524 EXPLOITDB text WORKING POC
PHP <0.2.0 - RCE
PHP remote file inclusion vulnerability in adisplay.php in PhPress 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the lang parameter.
CVE-2007-5234 EXPLOITDB text WRITEUP
Ossigeno - Code Injection
PHP remote file inclusion vulnerability in upload/common/footer.php in Ossigeno CMS 2.2 alpha3 allows remote attackers to execute arbitrary PHP code via a URL in the level parameter.