ShaFuck31

13 exploits Active since Dec 2006
CVE-2008-4611 EXPLOITDB text WRITEUP
PHP Arsivimiz Php Ziyaretci Defteri - SQL Injection via Sayfa Parameter
SQL injection vulnerability in index.php in PHP Arsivimiz Php Ziyaretci Defteri allows remote attackers to execute arbitrary SQL commands via the sayfa parameter.
CVE-2007-0121 EXPLOITDB text WRITEUP
RI Blog 1.3 - Cross-Site Scripting via Search Parameter
Cross-site scripting (XSS) vulnerability in search.asp in RI Blog 1.3 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
CVE-2006-6793 EXPLOITDB text WRITEUP
Okul Merkezi Portal 1.0 - Remote File Inclusion via ataturk.php Page Parameter
PHP remote file inclusion vulnerability in ataturk.php in Okul Merkezi Portal 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
CVE-2008-0496 EXPLOITDB text WRITEUP
ampjuke 0.7.0 - Cross-Site Scripting via Limit Parameter
Cross-site scripting (XSS) vulnerability in index.php in AmpJuke 0.7.0 allows remote attackers to inject arbitrary web script or HTML via the limit parameter in a search action.
CVE-2007-0951 EXPLOITDB text WRITEUP
Fullaspsite ASP Hosting Site - SQL Injection
SQL injection vulnerability in listmain.asp in Fullaspsite ASP Hosting Site allows remote attackers to execute arbitrary SQL commands via the cat parameter.
CVE-2007-0950 EXPLOITDB text WRITEUP
Fullaspsite ASP Hosting Site - Cross-Site Scripting via cat Parameter
Cross-site scripting (XSS) vulnerability in listmain.asp in Fullaspsite ASP Hosting Site allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
CVE-2007-0140 EXPLOITDB text WRITEUP
Kolayindir Download - SQL Injection via down.asp id Parameter
SQL injection vulnerability in down.asp in Kolayindir Download (Yenionline) allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-6298 EXPLOITDB html WORKING POC
Metyus Okul Yonetim Sistemi 1.0 - SQL Injection
SQL injection vulnerability in uye_giris_islem.asp in Metyus Okul Yonetim Sistemi 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) kullanici_ismi and (2) sifre parameters.
CVE-2006-6671 EXPLOITDB text WRITEUP
Burak Yylmaz Download Portal - SQL Injection
SQL injection vulnerability in down.asp in Burak Yylmaz Download Portal allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-6642 EXPLOITDB text WORKING POC
Contra Haber Sistemi 1.0 - SQL Injection
SQL injection vulnerability in haber.asp in Contra Haber Sistemi 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-6536 EXPLOITDB text WRITEUP
Cilem Haber Free Edition - Cross-Site Scripting via hata Parameter
Cross-site scripting (XSS) vulnerability in hata.asp in Cilem Haber Free Edition allows remote attackers to inject arbitrary web script or HTML via the hata parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-6337 EXPLOITDB html WORKING POC
Aspee/Dogantepe Ziyaretci Defteri - SQL Injection
Multiple SQL injection vulnerabilities in giris.asp in Aspee and Dogantepe Ziyaretci Defteri allow remote attackers to execute arbitrary SQL commands via the (1) kullanici or (2) parola parameter.
CVE-2006-6791 EXPLOITDB text WORKING POC
chatwm 1.0 - SQL Injection via txtUse or txtPas Parameters
SQL injection vulnerability in SelGruFra.asp in chatwm 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) txtUse and (2) txtPas parameters.