SirGod

121 exploits Active since Jul 2008
CVE-2008-3593 EXPLOITDB text WORKING POC
SyzygyCMS 0.3 - Remote File Inclusion via Page Parameter Path Traversal
Directory traversal vulnerability in index.php in SyzygyCMS 0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
CVE-2009-3158 EXPLOITDB text WRITEUP
simplePHPWeb 0.2 - Unauthenticated Administrative Access via admin/files.php
admin/files.php in simplePHPWeb 0.2 does not require authentication, which allows remote attackers to perform unspecified administrative actions via unknown vectors. NOTE: some of these details are obtained from third party information.
CVE-2009-4733 EXPLOITDB text WORKING POC
SimpleLoginSys 0.5 - SQL Injection via Username Parameter
SQL injection vulnerability in checkuser.php in SimpleLoginSys 0.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.
CVE-2009-2792 EXPLOITDB text WORKING POC
Really Simple CMS 0.3a - Path Traversal
Directory traversal vulnerability in plugings/pagecontent.php in Really Simple CMS (RSCMS) 0.3a allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PT parameter.
CVE-2008-6011 EXPLOITDB text WORKING POC
SG Real Estate Portal 2.0 - SQL Injection
SQL injection vulnerability in index.php in SG Real Estate Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the page_id parameter.
EIP-2026-111729 EXPLOITDB text WORKING POC
RedaxScript 0.2.0 - 'Language' Local File Inclusion
CVE-2009-4726 EXPLOITDB text WORKING POC
Quickdev 4 PHP - Path Traversal via Download File Parameter
Directory traversal vulnerability in download.php in Quickdev 4 PHP allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
CVE-2009-1952 EXPLOITDB text WORKING POC
PropertyMax Pro FREE 0.3 - SQL Injection
Multiple SQL injection vulnerabilities in the administrative login feature in PropertyMax Pro FREE 0.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
CVE-2009-3148 EXPLOITDB text WORKING POC
PortalXP Teacher Edition 1.2 - SQL Injection via id or assignment_id Parameter
Multiple SQL injection vulnerabilities in PortalXP Teacher Edition 1.2 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) calendar.php, (2) news.php, and (3) links.php; and the (4) assignment_id parameter to assignments.php.
CVE-2009-2096 EXPLOITDB text WORKING POC
phpCollegeExchange 0.1.5c - SQL Injection
SQL injection vulnerability in house/listing_view.php in phpCollegeExchange 0.1.5c allows remote attackers to execute arbitrary SQL commands via the itemnr parameter.
CVE-2009-2382 EXPLOITDB CRITICAL text WORKING POC
phpMyBlockchecker 1.0.0055 - Auth Bypass
admin.php in phpMyBlockchecker 1.0.0055 allows remote attackers to bypass authentication and gain administrative access by setting the PHPMYBCAdmin cookie to LOGGEDIN.
CVSS 9.8
CVE-2009-3421 EXPLOITDB CRITICAL text WORKING POC
Zenas PaoBacheca Guestbook 2.1 - Unauthenticated Authentication Bypass via login_ok Parameter
login.php in Zenas PaoBacheca Guestbook 2.1, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
CVSS 9.8
CVE-2009-1519 EXPLOITDB text WORKING POC
Pecio CMS 1.1.5 - Path Traversal via Language Parameter
Directory traversal vulnerability in index.php in Pecio CMS 1.1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter.
CVE-2009-1405 EXPLOITDB text WORKING POC
PastelCMS 0.8.0 - Path Traversal via set_lng Parameter
Directory traversal vulnerability in index.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set_lng parameter.
CVE-2009-0735 EXPLOITDB text WORKING POC
Papoo CMS 3.6 - Path Traversal via pfadhier Parameter
Directory traversal vulnerability in lib/classes/message_class.php in Papoo CMS 3.6, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to read and possibly execute arbitrary files via a .. (dot dot) in the pfadhier parameter. NOTE: some of these details are obtained from third party information.
CVE-2009-3423 EXPLOITDB text WORKING POC
Zenas PaoLink 1.0 - Unauthenticated Authentication Bypass via login_ok Parameter
login.php in Zenas PaoLink 1.0, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
CVE-2009-3422 EXPLOITDB text WORKING POC
Zenas PaoLiber 1.1 - Unauthenticated Authentication Bypass via login_ok Parameter
login.php in Zenas PaoLiber 1.1, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
EIP-2026-110339 EXPLOITDB text WORKING POC
Orbis CMS 1.0 - File Delete / Download File / Arbitrary File Upload / SQL Injection
CVE-2009-2736 EXPLOITDB text WORKING POC
sun-jester OpenNews 1.0 - Authenticated PHP Code Injection via Overall Width Field
Static code injection vulnerability in admin.php in sun-jester OpenNews 1.0 allows remote authenticated administrators to inject arbitrary PHP code into config.php via the "Overall Width" field in a setconfig action.
CVE-2009-4836 EXPLOITDB text WORKING POC
Movie PHP Script 2.0 - Remote Code Execution via Anticode Parameter
Eval injection vulnerability in system/services/init.php in Movie PHP Script 2.0 allows remote attackers to execute arbitrary PHP code via the anticode parameter.
EIP-2026-109955 EXPLOITDB text WORKING POC
noname script 1.1 - Multiple Vulnerabilities
CVE-2009-4723 EXPLOITDB text WORKING POC
Netpet CMS 1.9 - Path Traversal via Language Parameter
Directory traversal vulnerability in confirm.php in Netpet CMS 1.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
CVE-2009-4978 EXPLOITDB text WORKING POC
MyBackup 1.4.0 - Path Traversal via Filename Parameter
Directory traversal vulnerability in down.php in MyBackup 1.4.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
CVE-2009-3508 EXPLOITDB text WORKING POC
Fcgphilipp Mujecms - Path Traversal
Multiple directory traversal vulnerabilities in MUJE CMS 1.0.4.34 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) _class parameter to admin.php and the (2) url parameter to install/install.php; and allow remote authenticated administrators to read arbitrary files via a .. (dot dot) in the (3) _htmlfile parameter to admin.php.
CVE-2009-4209 EXPLOITDB text WORKING POC
moziloCMS 1.11.1 - Cross-Site Scripting via cat and file Parameters
Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in moziloCMS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) cat and (2) file parameters in an editsite action, different vectors than CVE-2008-6127 and CVE-2009-1367.