Rudi Carell

4 exploits Active since Dec 1999
CVE-2000-0039 EXPLOITDB text WORKING POC
AltaVista Search Intranet - Directory Traversal via Query.cgi
AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program.
CVE-2001-0319 EXPLOITDB text WORKING POC
IBM Net.Commerce 3.x - SQL Injection
orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability.
EIP-2026-103939 EXPLOITDB text WRITEUP
IBM Net.Commerce 3.1/3.2 Websphere - Weak Password
CVE-2000-0332 EXPLOITDB text WORKING POC
UltraBoard 1.6 - Unauthenticated Arbitrary File Read via Null Byte in Pathname
UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitrary files via a pathname string that includes a dot dot (..) and ends with a null byte.