SirDarckCat - Security Researcher - Exploit Intelligence Platform

CVE-2006-4607 EXPLOITDB text WRITEUP

Longino Jacome php-Revista 1.1.2 - Unauthenticated Authentication Bypass via ID_ADMIN and SUPER_ADMIN Parameters

admin/index.php in Longino Jacome php-Revista 1.1.2 allows remote attackers to bypass authentication controls by setting the ID_ADMIN and SUPER_ADMIN parameters to 1.

View Code

CVE-2006-4606 EXPLOITDB text WRITEUP

Longino Jacome php-Revista 1.1.2 - SQL Injection via Multiple Parameters

Multiple SQL injection vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to execute arbitrary SQL commands via the (1) id_temas parameter in busqueda_tema.php, the (2) cadena parameter in busqueda.php, the (3) id_autor parameter in autor.php, the (4) email parameter in lista.php, and the (5) id_articulo parameter in articulo.php.

View Code

CVE-2006-4605 EXPLOITDB text WRITEUP

Longino Jacome php-Revista 1.1.2 - Code Injection

PHP remote file inclusion vulnerability in index.php in Longino Jacome php-Revista 1.1.2 allows remote attackers to execute arbitrary PHP code via the adodb parameter.

View Code

CVE-2006-3960 EXPLOITDB text WORKING POC

X-Scripts X-Poll - SQL Injection via Poll Parameter

SQL injection vulnerability in top.php in X-Scripts X-Poll, probably 2.30, allows remote attackers to execute arbitrary SQL commands via the poll parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

View Code

CVE-2006-3959 EXPLOITDB text WORKING POC

X-Scripts X-Protection 1.10 - SQL Injection via Username or Password Parameter

SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameter.

View Code

EIP-2026-112713 EXPLOITDB text WRITEUP

TinyPHPForum 3.6 - 'error.php' Information Disclosure

View Code

EIP-2026-112712 EXPLOITDB html WORKING POC

TinyPHP Forum 3.6 - 'makeAdmin' Remote Admin Maker

View Code

EIP-2026-112714 EXPLOITDB text WORKING POC

TinyPHPForum 3.6 - 'UpdatePF.php' Authentication Bypass

View Code

EIP-2026-112716 EXPLOITDB text WRITEUP

TinyPHPForum 3.6 - Multiple Cross-Site Scripting Vulnerabilities (2)

View Code

CVE-2006-4102 EXPLOITDB text WRITEUP

sqlitewebadmin < 0.1 - Remote File Inclusion via conf[classpath] Parameter

PHP remote file inclusion vulnerability in tpl.inc.php in Falko Timme and Till Brehm SQLiteWebAdmin 0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the conf[classpath] parameter.

View Code

CVE-2006-4608 EXPLOITDB text WRITEUP

Longino Jacome php-Revista 1.1.2 - Cross-Site Scripting via cadena or email Parameter

Multiple cross-site scripting (XSS) vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) cadena parameter in busqueda.php and the (2) email parameter in lista.php.

View Code

CVE-2006-3963 EXPLOITDB text WRITEUP

Banex PHP MySQL Banner Exchange 2.21 - SQL Injection via Multiple Parameters

Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) id, (3) deleteuserbanner, (4) viewmem, (5) viewmemunb, (6) viewunmem,or (7) deleteuser parameters to (b) admin.php.

View Code

CVE-2006-3964 EXPLOITDB text WRITEUP

Banex PHP MySQL Banner Exchange <2.21 - RCE

PHP remote file inclusion vulnerability in members.php in Banex PHP MySQL Banner Exchange 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_root parameter.

View Code

CVE-2006-3972 EXPLOITDB text WRITEUP

Scott Weedon Ajax Chat - Directory Traversal via chatid Parameter

Directory traversal vulnerability in includes/operator_chattranscript.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to read arbitrary files via a .. (dot dot) in the chatid parameter.

View Code

CVE-2006-3963 EXPLOITDB text WRITEUP

Banex PHP MySQL Banner Exchange 2.21 - SQL Injection via Multiple Parameters

Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) id, (3) deleteuserbanner, (4) viewmem, (5) viewmemunb, (6) viewunmem,or (7) deleteuser parameters to (b) admin.php.

View Code

CVE-2006-4599 EXPLOITDB text WRITEUP

Autentificator 2.01 - SQL Injection via User Parameter

SQL injection vulnerability in aut_verifica.inc.php in Autentificator 2.01 allows remote attackers to execute arbitrary SQL commands via the user parameter.

View Code