StAkeR

100 exploits Active since Jan 2006
CVE-2008-6952 EXPLOITDB perl WORKING POC
MauryCMS <= 0.53.2 - SQL Injection via Rss.php c Parameter
SQL injection vulnerability in Rss.php in MauryCMS 0.53.2 and earlier allows remote attackers to execute arbitrary SQL commands via the c parameter.
CVE-2009-0728 EXPLOITDB perl WORKING POC
MAXdev MDPro/Postnuke - SQL Injection
SQL injection vulnerability in the My_eGallery module for MAXdev MDPro (MD-Pro) and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php.
CVE-2008-5895 EXPLOITDB python WORKING POC
Mediatheka 4.2 - SQL Injection via User Parameter
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.
EIP-2026-109410 EXPLOITDB perl WORKING POC
MemHT Portal 4.0.1 - Delete All Private Messages
CVE-2009-0372 EXPLOITDB perl WORKING POC
Miltenovik Manojlo MemHT Portal <4.0.1 - RCE
Unrestricted file upload vulnerability in index.php in Miltenovik Manojlo MemHT Portal 4.0.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and an image content type via a users editProfile action, then accessing this file via a direct request to the file in images/avatar/uploaded/.
CVE-2008-6553 EXPLOITDB perl WORKING POC
Micro CMS 0.3.5 - Unauthenticated Administrative Account Manipulation
microcms-admin-home.php in Implied by Design Micro CMS (Micro-CMS) 3.5 (aka 0.3.5) does not require authentication as an administrator, which allows remote attackers to (1) create administrative accounts via an add_admin action, (2) remove administrative accounts via a delete_admin action, and (3) modify administrative passwords via a change_password action.
CVE-2008-6805 EXPLOITDB php WORKING POC
Mic_Blog 0.0.3 - SQL Injection via cat user or site Parameter
Multiple SQL injection vulnerabilities in Mic_Blog 0.0.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to category.php, the (2) user parameter to login.php, and the (3) site parameter to register.php.
CVE-2008-6168 EXPLOITDB text WRITEUP
miniportail 2.2 - Cross-Site Scripting via Search String
Cross-site scripting (XSS) vulnerability in search.php in miniPortail 2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified argument, probably the search string.
CVE-2008-6078 EXPLOITDB text WORKING POC
Limbo CMS com_privmsg - SQL Injection via id Parameter
SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a pms action to index.php.
EIP-2026-109132 EXPLOITDB python WORKING POC
LightNEasy sql/no-db 2.2.x - System Configuration Disclosure
CVE-2008-4701 EXPLOITDB python WORKING POC
Liberia CMS 1.12 - SQL Injection via libera_staff_user Cookie Parameter
SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the libera_staff_user cookie parameter, a different vector than CVE-2008-4700. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-6734 EXPLOITDB text WORKING POC
Keller Web Admin CMS 0.94 Pro - Path Traversal via Action Parameter
Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter.
CVE-2008-5607 EXPLOITDB perl WORKING POC
JMovies 1.1 - SQL Injection via id Parameter
SQL injection vulnerability in the JMovies (aka JM or com_jmovies) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
CVE-2008-4603 EXPLOITDB perl WORKING POC
iGaming CMS 2.0 Alpha 1 - SQL Injection via search.php keywords parameter
SQL injection vulnerability in search.php in iGaming CMS 2.0 Alpha 1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search_games action.
CVE-2008-4523 EXPLOITDB perl WORKING POC
IP Reg < 0.4 - SQL Injection via user_name Parameter
SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the user_name parameter.
CVE-2008-5841 EXPLOITDB perl WORKING POC
iGaming CMS < 1.5 - SQL Injection via browse Parameter
Multiple SQL injection vulnerabilities in iGaming 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the browse parameter to (1) previews.php and (2) reviews.php, and the (3) id parameter to index.php in a viewarticle action.
CVE-2008-2699 EXPLOITDB python WORKING POC
Galatolo WebManager 1.0 - Path Traversal via Plugin or Com Parameter
Multiple directory traversal vulnerabilities in Galatolo WebManager (GWM) 1.0 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in (1) the plugin parameter to admin/plugins.php or (2) the com parameter to index.php.
EIP-2026-107548 EXPLOITDB perl WORKING POC
H2O-CMS 3.4 - Remote Command Execution
EIP-2026-107547 EXPLOITDB perl WORKING POC
H2O-CMS 3.4 - PHP Code Injection / Cookie Authentication Bypass
CVE-2008-5966 EXPLOITDB php WORKING POC
globsy < 1.0 - Arbitrary File Write via globsy_edit.php
globsy_edit.php in Globsy 1.0 and earlier allows remote attackers to create or overwrite arbitrary files via a filename in the file parameter and file contents in the data parameter.
CVE-2008-6249 EXPLOITDB text WORKING POC
Galatolo WebManager < 1.3a - SQL Injection via id Parameter
SQL injection vulnerability in plugins/users/index.php in Galatolo WebManager 1.3a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-2177 EXPLOITDB text WORKING POC
Fuzzylime CMS <3.03a - Path Traversal
code/display.php in fuzzylime (cms) 3.03a and earlier, when magic_quotes_gpc is disabled, allows remote attackers to conduct directory traversal attacks and overwrite arbitrary files via a "....//" (dot dot) in the s parameter, which is collapsed into a "../" value.
EIP-2026-107130 EXPLOITDB perl WORKING POC
Flatnuke 2.7.1 - 'level' Privilege Escalation
EIP-2026-106802 EXPLOITDB perl WORKING POC
EggBlog 4.1.1 - Local Directory Traversal
EIP-2026-106508 EXPLOITDB perl WORKING POC
Dokeos Lms 1.8.5 - 'Include' Remote Code Execution