RusH security team

8 exploits Active since Nov 2004
CVE-2005-4619 EXPLOITDB perl WORKING POC
phpoutsourcing Zorum Forum <3.5 - SQL Injection
SQL injection vulnerability in index.php in phpoutsourcing Zorum Forum 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the rollid parameter in the showhtmllist method.
CVE-2005-4633 EXPLOITDB perl WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-4619. Reason: This candidate is a duplicate of CVE-2005-4619. Notes: All CVE users should reference CVE-2005-4619 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
EIP-2026-111239 EXPLOITDB text WRITEUP
PHPWebFileManager 2.0 - 'index.php' Directory Traversal
EIP-2026-110944 EXPLOITDB perl WORKING POC
phpBB 2.0.10 - Remote Command Execution (CGI)
CVE-2004-1315 EXPLOITDB perl WORKING POC
phpBB 2.x <2.0.11 - RCE
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which is then processed by PHP exec, as exploited by the Santy.A worm.
EIP-2026-109172 EXPLOITDB perl WORKING POC
LiteForum 2.1.1 - SQL Injection
EIP-2026-109032 EXPLOITDB text WRITEUP
Koch Roland Rolis Guestbook 1.0 - '$path' Remote File Inclusion
EIP-2026-100673 EXPLOITDB c WORKING POC
OpenBSD 2.0 < 3.6 - TCP Timestamp Remote Denial of Service