SkOd

9 exploits Active since Feb 2006
CVE-2006-5216 METASPLOIT ruby WORKING POC
Sergey Lyubka Simple HTTPD <1.34 - RCE
Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.
CVE-2006-5216 EXPLOITDB ruby WORKING POC
Sergey Lyubka Simple HTTPD <1.34 - RCE
Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.
CVE-2006-5216 EXPLOITDB perl WORKING POC
Sergey Lyubka Simple HTTPD <1.34 - RCE
Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.
CVE-2008-4321 EXPLOITDB perl WORKING POC
FlashGet FTP 1.9 - Remote Code Execution via Long PWD Response
Buffer overflow in FlashGet (formerly JetCar) FTP 1.9 allows remote FTP servers to execute arbitrary code via a long response to the PWD command.
EIP-2026-118635 EXPLOITDB php WORKING POC
HLDS WebMod 0.48 - 'rconpass' Remote Heap Overflow
EIP-2026-110957 EXPLOITDB perl WORKING POC
phpBB 2.0.19 - Style Changer/Demo Mod SQL Injection
CVE-2006-0520 EXPLOITDB perl WORKING POC
Dragoran Portal module 1.3 - SQL Injection via Site Parameter
SQL injection vulnerability index.php in Dragoran Portal module 1.3 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the site parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-1153 EXPLOITDB perl WORKING POC
d2-shoutbox 4.2 - SQL Injection via Load Parameter
SQL injection vulnerability in D2-Shoutbox 4.2 allows remote attackers to execute arbitrary SQL commands via the load parameter, when performing a Shoutbox action through Invision Power Board (IPB).
CVE-2006-0888 EXPLOITDB perl WORKING POC
Invision Power Board 2.0.1 - Denial of Service via User Registration
index.php in Invision Power Board (IPB) 2.0.1, with Code Confirmation disabled, allows remote attackers to cause an unspecified denial of service by registering a large number of users.