Qabandi

30 exploits Active since Oct 2008
CVE-2009-3358 EXPLOITDB WORKING POC
Tourismscripts Adult Portal Escort Listing - SQL Injection
SQL injection vulnerability in profile.php in Tourism Scripts Adult Portal escort listing allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
CVE-2009-2131 EXPLOITDB text WORKING POC
4images <1.7.7 - XSS
Cross-site scripting (XSS) vulnerability in 4images 1.7.7 and earlier allows remote authenticated users to inject arbitrary web script or HTML by providing a crafted user_homepage parameter to member.php, and then posting a comment associated with a picture.
CVE-2009-2167 EXPLOITDB text WORKING POC
EgyPlus 1.0.1- - SQL Injection
Multiple SQL injection vulnerabilities in cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter.
EIP-2026-114549 EXPLOITDB php WORKING POC
YourTube 2.0 - Arbitrary Database Disclosure
EIP-2026-114574 EXPLOITDB text WORKING POC
ZaoCMS - 'user_id' SQL Injection
EIP-2026-114572 EXPLOITDB text WORKING POC
ZaoCMS (PhpCommander) - Arbitrary File Upload
EIP-2026-112776 EXPLOITDB php WORKING POC
Traidnt UP 2.0 - Blind SQL Injection
CVE-2009-2605 EXPLOITDB text WORKING POC
Traidnt Up 2.0 - SQL Injection
Multiple SQL injection vulnerabilities in adminquery.php in Traidnt Up 2.0 allow remote attackers to execute arbitrary SQL commands via (1) trupuser and (2) truppassword cookies to uploadcp/index.php.
CVE-2009-4987 EXPLOITDB text WORKING POC
Scripteen Free Image Hosting Script - Authentication Bypass
admin/header.php in Scripteen Free Image Hosting Script 2.3 allows remote attackers to bypass authentication and gain administrative access by setting the cookgid cookie value to 1, a different vector than CVE-2008-3211.
CVE-2009-2922 EXPLOITDB php WORKING POC
Pixaria Gallery - Path Traversal
Absolute path traversal vulnerability in pixaria.image.php in Pixaria Gallery 2.0.0 through 2.3.5 allows remote attackers to read arbitrary files via a base64-encoded file parameter.
CVE-2008-4622 EXPLOITDB text WORKING POC
Phpfastnews - Authentication Bypass
The isLoggedIn function in fastnews-code.php in phpFastNews 1.0.0 allows remote attackers to bypass authentication and gain administrative access by setting the fn-loggedin cookie to 1.
CVE-2009-1742 EXPLOITDB text WORKING POC
Pc4arb Pc4 Uploader < 9.0 - SQL Injection
code.php in PC4Arb Pc4 Uploader 9.0 and earlier makes it easier for remote attackers to conduct SQL injection attacks via crafted keyword sequences that are removed from a filter in the id parameter in a banner action, as demonstrated via the "UNIunionON" string, which is collapsed into "UNION" by the filter_sql function.
CVE-2009-2180 EXPLOITDB text WORKING POC
Pc4 Uploader <10.0 - Path Traversal
Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and earlier allow remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.
CVE-2009-3823 EXPLOITDB text WORKING POC
Ac4p Mobilelib Gold - Path Traversal
Directory traversal vulnerability in myhtml.php in Mobilelib GOLD 3.0, when magic_quotes_gpc is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the GLOBALS[page] parameter.
CVE-2009-4673 EXPLOITDB text WORKING POC
Mole Group Adult Portal Script - SQL Injection
SQL injection vulnerability in profile.php in Mole Group Adult Portal Script allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
CVE-2009-2585 EXPLOITDB php WORKING POC
Mlffat 2.2 - SQL Injection
SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731.
EIP-2026-109508 EXPLOITDB text WORKING POC
Mlffat 2.1 - Cookie Authentication Bypass
CVE-2009-4206 EXPLOITDB text WORKING POC
Million Dollar Text Links <1.0 - SQL Injection
SQL injection vulnerability in admin.link.modify.php in Million Dollar Text Links 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-3949 EXPLOITDB php WORKING POC
VivaPrograms Infinity <2.0.5 - RCE
cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not require administrative authentication for the donewauthor action, which allows remote attackers to create administrative accounts via the name, password, and conf_password parameters.
EIP-2026-107218 EXPLOITDB text WORKING POC
Free PHP Petition Signing Script - Authentication Bypass
CVE-2009-2168 EXPLOITDB CRITICAL text WORKING POC
EgyPlus 7ammel <1.0.1 - Auth Bypass
cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier sends a redirect to the web browser but does not exit when the supplied credentials are incorrect, which allows remote attackers to bypass authentication by providing arbitrary username and password parameters.
CVSS 9.8
EIP-2026-105931 EXPLOITDB text WRITEUP
Clipbucket 1.7.1 - Multiple SQL Injections
EIP-2026-105926 EXPLOITDB text WORKING POC
Clip Bucket 1.7.1 - Insecure Cookie Handling
CVE-2009-3430 EXPLOITDB php WORKING POC
Allomani Mobile - SQL Injection
SQL injection vulnerability in login.php in Allomani Mobile 2.5 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action.
CVE-2009-4725 EXPLOITDB text WORKING POC
Arab Portal <2.2 - Path Traversal
Directory traversal vulnerability in modules/aljazeera/admin/setup.php in Arab Portal 2.2 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.