SirDarckCat

16 exploits Active since Aug 2006
CVE-2006-4607 EXPLOITDB text WRITEUP
php-Revista 1.1.2 - Auth Bypass
admin/index.php in Longino Jacome php-Revista 1.1.2 allows remote attackers to bypass authentication controls by setting the ID_ADMIN and SUPER_ADMIN parameters to 1.
CVE-2006-4606 EXPLOITDB text WRITEUP
Longino Jacome Php-revista - SQL Injection
Multiple SQL injection vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to execute arbitrary SQL commands via the (1) id_temas parameter in busqueda_tema.php, the (2) cadena parameter in busqueda.php, the (3) id_autor parameter in autor.php, the (4) email parameter in lista.php, and the (5) id_articulo parameter in articulo.php.
CVE-2006-4605 EXPLOITDB text WRITEUP
Longino Jacome php-Revista 1.1.2 - Code Injection
PHP remote file inclusion vulnerability in index.php in Longino Jacome php-Revista 1.1.2 allows remote attackers to execute arbitrary PHP code via the adodb parameter.
CVE-2006-3960 EXPLOITDB text WORKING POC
X-scripts X-poll - SQL Injection
SQL injection vulnerability in top.php in X-Scripts X-Poll, probably 2.30, allows remote attackers to execute arbitrary SQL commands via the poll parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
CVE-2006-3959 EXPLOITDB text WORKING POC
X-scripts X-statistics - SQL Injection
SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameter.
EIP-2026-112713 EXPLOITDB text WRITEUP
TinyPHPForum 3.6 - 'error.php' Information Disclosure
EIP-2026-112712 EXPLOITDB html WORKING POC
TinyPHP Forum 3.6 - 'makeAdmin' Remote Admin Maker
EIP-2026-112714 EXPLOITDB text WORKING POC
TinyPHPForum 3.6 - 'UpdatePF.php' Authentication Bypass
EIP-2026-112716 EXPLOITDB text WRITEUP
TinyPHPForum 3.6 - Multiple Cross-Site Scripting Vulnerabilities (2)
CVE-2006-4102 EXPLOITDB text WRITEUP
SQLiteWebAdmin <0.1 - RCE
PHP remote file inclusion vulnerability in tpl.inc.php in Falko Timme and Till Brehm SQLiteWebAdmin 0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the conf[classpath] parameter.
CVE-2006-4608 EXPLOITDB text WRITEUP
php-Revista 1.1.2 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) cadena parameter in busqueda.php and the (2) email parameter in lista.php.
CVE-2006-3963 EXPLOITDB text WRITEUP
Banex - SQL Injection
Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) id, (3) deleteuserbanner, (4) viewmem, (5) viewmemunb, (6) viewunmem,or (7) deleteuser parameters to (b) admin.php.
CVE-2006-3964 EXPLOITDB text WRITEUP
Banex PHP MySQL Banner Exchange <2.21 - RCE
PHP remote file inclusion vulnerability in members.php in Banex PHP MySQL Banner Exchange 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_root parameter.
CVE-2006-3972 EXPLOITDB text WRITEUP
Scott Weedon Ajax Chat - Path Traversal
Directory traversal vulnerability in includes/operator_chattranscript.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to read arbitrary files via a .. (dot dot) in the chatid parameter.
CVE-2006-3963 EXPLOITDB text WRITEUP
Banex - SQL Injection
Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) id, (3) deleteuserbanner, (4) viewmem, (5) viewmemunb, (6) viewunmem,or (7) deleteuser parameters to (b) admin.php.
CVE-2006-4599 EXPLOITDB text WRITEUP
Autentificator - SQL Injection
SQL injection vulnerability in aut_verifica.inc.php in Autentificator 2.01 allows remote attackers to execute arbitrary SQL commands via the user parameter.