Pepelux

28 exploits Active since Sep 2008
EIP-2026-119234 EXPLOITDB c WORKING POC
UltraVNC 1.0.8.2 - DLL Loading Arbitrary Code Execution
EIP-2026-118957 EXPLOITDB c WORKING POC
NetStumbler 0.4 - 'mfc71esn.dll' DLL Loading Arbitrary Code Execution
EIP-2026-118870 EXPLOITDB c WORKING POC
Microsoft Visio 2007 - 'mfc80esn.dll' DLL Loading Arbitrary Code Execution
EIP-2026-118701 EXPLOITDB c WORKING POC
IsoBuster 2.7 - 'wnaspi32.dll' DLL Loading Arbitrary Code Execution
EIP-2026-118238 EXPLOITDB c WORKING POC
Adobe Dreamweaver CS4 - 'mfc80esn.dll' DLL Loading Arbitrary Code Execution
EIP-2026-115393 EXPLOITDB perl WORKING POC
HP Data Protector Manager A.06.11 MMD - Null Pointer Dereference Denial of Service
CVE-2011-0514 EXPLOITDB perl WORKING POC
HP Data Protector Manager 6.11 - Denial of Service via Large Data Packet to RDS Service
The RDS service (rds.exe) in HP Data Protector Manager 6.11 allows remote attackers to cause a denial of service (crash) via a packet with a large data size to TCP port 1530.
CVE-2008-4486 EXPLOITDB perl WORKING POC
Yerba < 6.3 - Remote Code Execution via Path Traversal in mod Parameter
Directory traversal vulnerability in index.php in SAC.php (SACphp), as used in Yerba 6.3 and earlier, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter.
CVE-2008-6083 EXPLOITDB text WORKING POC
TXTshop beta 1.0 - Path Traversal via Language Parameter
Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
CVE-2008-7024 EXPLOITDB text WORKING POC
Arz Development The Gemini Portal <= 4.7 - Unauthenticated Authentication Bypass via Cookie Manipulation
admin.php in Arz Development The Gemini Portal 4.7 and earlier allows remote attackers to bypass authentication and gain administrator privileges by setting the user cookie to "admin" and setting the name parameter to "users."
EIP-2026-112007 EXPLOITDB text WRITEUP
sFileManager 24a - Local File Inclusion
CVE-2008-6012 EXPLOITDB text WORKING POC
Pritlog < 0.4 - Unauthenticated Path Traversal via Filename Parameter
Directory traversal vulnerability in index.php in Pritlog 0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a viewEntry action.
CVE-2008-6074 EXPLOITDB text WORKING POC
phpcrs < 2.06 - Remote File Inclusion via ImportFunction Parameter
Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the importFunction parameter.
CVE-2008-4499 EXPLOITDB text WRITEUP
PHP Web Explorer Lite < 0.99b - Path Traversal via Refer or File Parameter
Multiple directory traversal vulnerabilities in PHP Web Explorer 0.99b and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) refer parameter to main.php and the (2) file parameter to edit.php.
CVE-2008-4499 EXPLOITDB text WRITEUP
PHP Web Explorer Lite < 0.99b - Path Traversal via Refer or File Parameter
Multiple directory traversal vulnerabilities in PHP Web Explorer 0.99b and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) refer parameter to main.php and the (2) file parameter to edit.php.
EIP-2026-109964 EXPLOITDB text WORKING POC
Novaboard 1.0.1 - Cross-Site Scripting
CVE-2008-6180 EXPLOITDB text WORKING POC
NewLife Blogger < 3.0 - SQL Injection via nlb3 Cookie
SQL injection vulnerability in system/nlb_user.class.php in NewLife Blogger 3.0 and earlier, and possibly 3.3.1, allows remote attackers to execute arbitrary SQL commands via the nlb3 cookie.
CVE-2008-4341 EXPLOITDB text WORKING POC
MyBlog < 0.9.8 - Unauthenticated Authentication Bypass via Cookie Manipulation
add.php in MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication and gain administrative access by setting a cookie with admin=yes and login=admin.
CVE-2008-4319 EXPLOITDB perl WORKING POC
Libra PHP File Manager < 1.18 - Improper Authentication Bypass via Query String Parameters
fileadmin.php in Libra File Manager (aka Libra PHP File Manager) 1.18 and earlier allows remote attackers to bypass authentication, and read arbitrary files, modify arbitrary files, and list arbitrary directories, by inserting certain user and isadmin parameters in the query string.
EIP-2026-109105 EXPLOITDB perl WORKING POC
Libra File Manager 1.18/2.0 - 'fileadmin.php' Local File Inclusion
CVE-2008-4509 EXPLOITDB python WORKING POC
FOSS Gallery 1.0 beta - Unauthenticated Arbitrary File Upload via processFiles.php
Unrestricted file upload vulnerability in processFiles.php in FOSS Gallery Admin and FOSS Gallery Public 1.0 beta allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the root directory.
CVE-2008-4509 EXPLOITDB text WRITEUP
FOSS Gallery 1.0 beta - Unauthenticated Arbitrary File Upload via processFiles.php
Unrestricted file upload vulnerability in processFiles.php in FOSS Gallery Admin and FOSS Gallery Public 1.0 beta allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the root directory.
CVE-2008-7026 EXPLOITDB text WRITEUP
efront < 3.5.1 - Unauthenticated Arbitrary File Upload and Remote Code Execution via Avatar Upload
Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in (1) student/avatars/ or (2) professor/avatars/.
CVE-2008-4484 EXPLOITDB text WRITEUP
Crux Gallery <= 1.32 - Unauthenticated Privilege Escalation via Name Parameter
main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
CVE-2008-6001 EXPLOITDB text WORKING POC
adnforum < 1.0b - Unauthenticated Authentication Bypass via fpusuario Cookie
index.php in ADN Forum 1.0b and earlier allows remote attackers to bypass authentication and gain sysop access via a fpusuario cookie composed of an initial sysop: string, an arbitrary password field, and a final :sysop:0 string.