Paisterist

5 exploits Active since Jul 2006
EIP-2026-110966 EXPLOITDB c WORKING POC
phpBB 2.0.x - Authentication Bypass (1)
CVE-2006-5525 EXPLOITDB php WORKING POC
PHP-Nuke < 7.9 - SQL Injection via Blacklist Bypass
Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attackers to conduct SQL injection attacks via (1) "/**/UNION " or (2) " UNION/**/" sequences, which are not rejected by the protection mechanism, as demonstrated by a SQL injection via the eid parameter in a search action in the Encyclopedia module in modules.php.
CVE-2007-0309 EXPLOITDB php WORKING POC
PHP-Nuke < 7.9 - SQL Injection via Old Articles Block cat Parameter
SQL injection vulnerability in blocks/block-Old_Articles.php in Francisco Burzi PHP-Nuke 7.9 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cat parameter.
CVE-2006-5720 EXPLOITDB php WORKING POC
PHP-Nuke <= 7.9 - SQL Injection via Journal Module Search Parameter
SQL injection vulnerability in modules/journal/search.php in the Journal module in Francisco Burzi PHP-Nuke 7.9 and earlier allows remote attackers to execute arbitrary SQL commands via the forwhat parameter.
CVE-2006-3560 EXPLOITDB text WORKING POC
Blue Dojo Graffiti Forums 1.0 - SQL Injection
SQL injection vulnerability in topics.php in Blue Dojo Graffiti Forums 1.0 allows remote attackers to execute arbitrary SQL commands via the f parameter.