Rynho Zeros Web - Security Researcher - Exploit Intelligence Platform

EIP-2026-113260 EXPLOITDB text WRITEUP

Webchat 2.0 Module - Full Path Disclosure

View Code

EIP-2026-113259 EXPLOITDB text WRITEUP

WebChat 2.0 - 'users.php?Database Username Disclosure

View Code

EIP-2026-113258 EXPLOITDB text WORKING POC

WebChat 2.0 - 'users.php' Cross-Site Scripting

View Code

CVE-2003-1409 EXPLOITDB text WRITEUP

ej3 topo 1.43 - Exposure of Sensitive Information via Invalid Parameter in in.php or out.php

TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.

View Code

EIP-2026-112370 EXPLOITDB text WORKING POC

SPChat 0.8 Module - Remote File Inclusion

View Code

EIP-2026-110895 EXPLOITDB text WRITEUP

PHP-Nuke Splatt Forum 3.2 Module - Full Path Disclosure

View Code

CVE-2003-1468 EXPLOITDB text WRITEUP

PHP-Nuke 6.0-6.5 - Unauthenticated Full Web Server Path Exposure via Invalid cid Parameter

The Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full web server path via an invalid cid parameter that is non-numeric or null, which leaks the pathname in an error message.

View Code

EIP-2026-110838 EXPLOITDB text WRITEUP

PHP-Nuke 5.5/6.0 News Module - Full Path Disclosure

View Code

EIP-2026-110837 EXPLOITDB text WRITEUP

PHP-Nuke 5.5/6.0 AvantGo Module - Full Path Disclosure

View Code

EIP-2026-100803 EXPLOITDB text WRITEUP

FormMail-Clone - Cross-Site Scripting

View Code