Sina Yazdanmehr (R3d.W0rm)

16 exploits Active since Dec 2008
CVE-2009-4960 EXPLOITDB text WRITEUP
Lanai Core 0.6 - Path Traversal via Download Module f Parameter
Directory traversal vulnerability in modules/backup/download.php in Lanai Core 0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
CVE-2009-3541 EXPLOITDB text WRITEUP
phpgenealogy 2.0 - Remote Code Execution via DataDirectory Parameter
PHP remote file inclusion vulnerability in CoupleDB.php in PHPGenealogy 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the DataDirectory parameter.
CVE-2009-0831 EXPLOITDB text WRITEUP
PHP-Fusion 1.0 - Members CV (job) module - SQL Injection
SQL injection vulnerability in members.php in the Members CV (job) module 1.0 for PHP-Fusion, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the sortby parameter.
CVE-2009-0832 EXPLOITDB text WRITEUP
PHP-Fusion E-Cart 1.3 - SQL Injection
SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the CA parameter.
EIP-2026-110640 EXPLOITDB text WRITEUP
PHP AdminPanel Free 1.0.5 - Remote File Disclosure
CVE-2008-5733 EXPLOITDB text WORKING POC
Team Impact TI Blog System - SQL Injection
SQL injection vulnerability in blog.php in the Team Impact TI Blog System mod for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-3543 EXPLOITDB text WRITEUP
Phenotype CMS < 2.9 - SQL Injection via Login Name Parameter
SQL injection vulnerability in _phenotype/admin/login.php in Phenotype CMS before 2.9 allows remote attackers to execute arbitrary SQL commands via the user parameter (aka the login name).
CVE-2009-4961 EXPLOITDB text WRITEUP
lanai-core 0.6 - Exposure of Sensitive Information via info.php
Lanai Core 0.6 allows remote attackers to obtain configuration information via a direct request to info.php, which calls the phpinfo function.
CVE-2008-5957 EXPLOITDB text WRITEUP
Joomla! com_mydyngallery 1.4.2 - SQL Injection
SQL injection vulnerability in the Mydyngallery (com_mydyngallery) component 1.4.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the directory parameter to index.php.
EIP-2026-107774 EXPLOITDB text WRITEUP
Ignition 1.2 - 'comment' Remote Code Injection
CVE-2009-3824 EXPLOITDB python WORKING POC
Greenwood PHP Content Manager 0.3.2 - Path Traversal via Content Path Parameter
Directory traversal vulnerability in include/processor.php in Greenwood PHP Content Manager 0.3.2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the content_path parameter.
EIP-2026-105366 EXPLOITDB python WORKING POC
BaBB 2.8 - Remote Code Injection
EIP-2026-104704 EXPLOITDB text WORKING POC
PHP 5.3.0 - 'pdflib' Arbitrary File Write
CVE-2009-3330 EXPLOITDB python WORKING POC
cP Creator 2.7.1 - SQL Injection via Support Ticket Parameter
SQL injection vulnerability in index.php in cP Creator 2.7.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the tickets parameter in a support ticket action.
CVE-2008-6353 EXPLOITDB text WRITEUP
ASP-CMS 1.0 - SQL Injection via cha Parameter
SQL injection vulnerability in index.asp in ASP-CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the cha parameter.
CVE-2009-0280 EXPLOITDB text WRITEUP
Asp Project Management 1.0 - Auth Bypass
Asp Project Management 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the crypt cookie to 1.