StAkeR

100 exploits Active since Jan 2006
CVE-2008-4786 EXPLOITDB perl WORKING POC
e107 easyshop_plugin - SQL Injection via category_id Parameter
SQL injection vulnerability in easyshop.php in the EasyShop plugin for e107 allows remote attackers to execute arbitrary SQL commands via the category_id parameter.
EIP-2026-106663 EXPLOITDB perl WORKING POC
e107 < 2.1.4 - 'keyword' Blind SQL Injection
CVE-2009-1409 EXPLOITDB perl WORKING POC
e107 <= 0.7.15 - SQL Injection via usersettings.php Hide Parameter
SQL injection vulnerability in usersettings.php in e107 0.7.15 and earlier, when "Extended User Fields" is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the hide parameter, a different vector than CVE-2005-4224 and CVE-2008-5320.
CVE-2008-6551 EXPLOITDB php WORKING POC
e-vision CMS <= 2.0.2 - Path Traversal via Adminlang Cookie or Module Parameter
Multiple directory traversal vulnerabilities in e-Vision CMS 2.0.2 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) an adminlang cookie to admin/ind_ex.php; or the module parameter to (2) 3rdparty/adminpart/add3rdparty.php, (3) polling/adminpart/addpolling.php, (4) contact/adminpart/addcontact.php, (5) brandnews/adminpart/addbrandnews.php, (6) newsletter/adminpart/addnewsletter.php, (7) game/adminpart/addgame.php, (8) tour/adminpart/addtour.php, (9) articles/adminpart/addarticles.php, (10) product/adminpart/addproduct.php, or (11) plain/adminpart/addplain.php in modules/.
CVE-2008-6146 EXPLOITDB perl WORKING POC
DeluxeBB < 1.2 - SQL Injection via Delete Action Parameter
SQL injection vulnerability in pm.php in DeluxeBB 1.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a delete##### parameter in a Delete action, a different vector than CVE-2005-2989.
CVE-2008-4203 EXPLOITDB text WORKING POC
CzarNews < 1.20 - SQL Injection via recook Cookie
SQL injection vulnerability in cn_users.php in CzarNews 1.20 and earlier allows remote attackers to execute arbitrary SQL commands via a recook cookie.
CVE-2008-4203 EXPLOITDB perl WORKING POC
CzarNews < 1.20 - SQL Injection via recook Cookie
SQL injection vulnerability in cn_users.php in CzarNews 1.20 and earlier allows remote attackers to execute arbitrary SQL commands via a recook cookie.
EIP-2026-106165 EXPLOITDB perl WORKING POC
Coppermine Photo Gallery 1.4.20 - 'IMG' Privilege Escalation
EIP-2026-106306 EXPLOITDB php WORKING POC
CuteNews 1.4.6 - 'ip ban' Authorized Cross-Site Scripting / Command Execution
CVE-2008-6165 EXPLOITDB php WORKING POC
CSPartner 0.1 - SQL Injection via Pseudo or Passe Parameters
SQL injection vulnerability in gestion.php in CSPartner 0.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the (1) pseudo and (2) passe parameters.
CVE-2008-4483 EXPLOITDB text WRITEUP
Crux Gallery < 1.32 - Remote File Inclusion via Theme Parameter
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
CVE-2009-1936 EXPLOITDB CRITICAL perl WORKING POC
cpCommerce 1.2.0-1.2.8 - Remote File Inclusion and Directory Traversal via GLOBALS[prefix] Parameter
_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote attackers to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrary files via the GLOBALS[prefix] parameter, a different vector than CVE-2003-1500.
CVSS 9.8
EIP-2026-106166 EXPLOITDB text WORKING POC
Coppermine Photo Gallery 1.4.20 - BBCode IMG Privilege Escalation
EIP-2026-105758 EXPLOITDB text WORKING POC
CAT2 - 'spaw_root' Local File Inclusion
CVE-2008-5737 EXPLOITDB text WORKING POC
Nodstrum MySQL Calendar <1.2 - SQL Injection
SQL injection vulnerability in index.php in Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the username parameter.
CVE-2008-7069 EXPLOITDB perl WORKING POC
All Club CMS <= 0.0.2 - Exposure of Sensitive Information via Direct Request to accms.dat
All Club CMS (ACCMS) 0.0.2 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain database configuration information, including credentials, via a direct request to accms.dat.
CVE-2009-4106 EXPLOITDB perl WORKING POC
Agoko CMS < 0.4 - Unauthenticated Arbitrary File Upload via admintools/editpage-2.php
Unrestricted file upload vulnerability in admintools/editpage-2.php in Agoko CMS 0.4 and earlier allows remote attackers to inject and execute arbitrary PHP code via the filename and text parameters.
EIP-2026-104815 EXPLOITDB php WORKING POC
2532/Gigs 1.2.2 Stable - Remote Command Execution
CVE-2006-0123 EXPLOITDB perl WORKING POC
ADN Forum 1.0b - SQL Injection via fid or pagid Parameter
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
CVE-2008-4524 EXPLOITDB perl WORKING POC
AdaptCMS 1.3 - SQL Injection via Check User Feature
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote attackers to execute arbitrary SQL commands via the user_name parameter.
CVE-2009-1259 EXPLOITDB perl WORKING POC
Insane Visions AdaptBB 1.0 - SQL Injection via topic_id Parameter
SQL injection vulnerability in inc/bb/topic.php in Insane Visions AdaptBB 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the topic_id parameter in a topic action to index.php.
CVE-2008-6907 EXPLOITDB text WORKING POC
2532gigs 1.2.2 - SQL Injection via Username and Password Parameters
Multiple SQL injection vulnerabilities in checkuser.php in 2532designs 2532|Gigs 1.2.2 Stable, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters, as accessible from a form generated by index.php.
EIP-2026-103649 EXPLOITDB perl WORKING POC
SeaMonkey 1.1.14 - Denial of Service
EIP-2026-103531 EXPLOITDB text WORKING POC
Konqueror 4.1 - Cross-Site Scripting / Remote Crash
CVE-2008-6257 EXPLOITDB text WORKING POC
Openasp 3.0 - SQL Injection via idpage Parameter
SQL injection vulnerability in default.asp in Openasp 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idpage parameter in the pages module.