Stack

155 exploits Active since Mar 2006
CVE-2008-6372 EXPLOITDB text WRITEUP
Ocean12 FAQ Manager Pro 1.0 - SQL Injection via ID Parameter in Cat Action
SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details are obtained from third party information.
CVE-2008-6815 EXPLOITDB text WRITEUP
myktools 2.4 - Unauthenticated Database Backup Exposure via mykdownload.php
mykdownload.php in MyKtools 2.4 does not require administrative authentication, which allows remote attackers to read a database backup by making a direct request, and then sending an unspecified request to the download page for the backup.
CVE-2008-7049 EXPLOITDB text WORKING POC
NatterChat 1.1 and 1.12 - SQL Injection via Username and Password Parameters
Multiple SQL injection vulnerabilities in login.asp in NatterChat 1.1 and 1.12 allow remote attackers to execute arbitrary SQL commands via the (1) txtUsername parameter (aka Username) and (2) txtPassword parameter (aka Password) in a form generated by home.asp. NOTE: due to lack of details, it is not clear whether this is related to CVE-2004-2206.
CVE-2008-7047 EXPLOITDB text WRITEUP
NatterChat 1.1 - Unauthenticated Authentication Bypass via Direct Admin Endpoint Access
NatterChat 1.1 allows remote attackers to bypass authentication and gain administrator privileges to read or delete rooms and messages via a direct request to admin/home.asp.
CVE-2008-6738 EXPLOITDB text WORKING POC
MyShoutPro 1.2 - Unauthenticated Authentication Bypass via admin_access Cookie
MyShoutPro 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin_access cookie to 1.
CVE-2008-5040 EXPLOITDB text WORKING POC
Graphiks MyForum 1.3 - Unauthenticated Authentication Bypass via Cookie Manipulation
Graphiks MyForum 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the (1) myforum_login and (2) myforum_pass cookies to 1.
CVE-2008-3507 EXPLOITDB text WORKING POC
LiteNews 0.1 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.
EIP-2026-109429 EXPLOITDB text WORKING POC
Messages Library 2.0 - Insecure Cookie Handling
EIP-2026-109428 EXPLOITDB python WORKING POC
Messages Library 2.0 - Arbitrary Delete Message
CVE-2008-0459 EXPLOITDB text WRITEUP
Liquidsilvercms - Path Traversal
Directory traversal vulnerability in update/index.php in Liquid-Silver CMS 0.35, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the update parameter.
EIP-2026-109065 EXPLOITDB perl WORKING POC
LanSuite 3.3.2 - 'FCKeditor' Arbitrary File Upload
CVE-2008-7027 EXPLOITDB text WORKING POC
Libra File Manager <= 1.18 - Unauthenticated Authentication Bypass via Cookie Manipulation
Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1.
CVE-2008-1758 EXPLOITDB text WORKING POC
KwsPHP ConcoursPhoto Module - SQL Injection via C_ID Parameter
SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the C_ID parameter to index.php.
CVE-2008-4617 EXPLOITDB text WORKING POC
pyxicom actualite 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in the actualite module 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-2607 EXPLOITDB python WORKING POC
com_pinboard - SQL Injection via Task Parameter
SQL injection vulnerability in the com_pinboard component for Joomla! allows remote attackers to execute arbitrary SQL commands via the task parameter in a showpic action to index.php.
EIP-2026-108374 EXPLOITDB php WORKING POC
Joomla! Component com_iJoomla_archive - Blind SQL Injection
CVE-2008-2643 EXPLOITDB perl WORKING POC
Joomla com_biblestudy < 6.0.7b - SQL Injection via id Parameter
SQL injection vulnerability in the Bible Study (com_biblestudy) component before 6.0.7c for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a mediaplayer action to index.php.
CVE-2008-7007 EXPLOITDB text WORKING POC
Free PHP VX Guestbook 1.06 - Unauthenticated Authentication Bypass via Cookie Manipulation
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the (1) admin_name and (2) admin_pass cookie values to 1.
EIP-2026-107593 EXPLOITDB php WORKING POC
HIOX Random Ad 1.3 - Arbitrary Add Admin
EIP-2026-107592 EXPLOITDB php WORKING POC
HIOX Browser Statistics 2.0 - Arbitrary Add Admin
EIP-2026-107546 EXPLOITDB text WORKING POC
H2O-CMS 3.4 - Insecure Cookie Handling
CVE-2008-2700 EXPLOITDB perl WORKING POC
Galatolo WebManager 1.0 - SQL Injection via view.php id Parameter
SQL injection vulnerability in view.php in Galatolo WebManager 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-107223 EXPLOITDB php WORKING POC
FreeCMS.us 0.2 - 'FCKeditor' Arbitrary File Upload
CVE-2008-2459 EXPLOITDB perl WORKING POC
EntertainmentScript 1.4.0 - Path Traversal via Page Parameter
Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
CVE-2008-6411 EXPLOITDB text WORKING POC
explay_cms < 2.1 - Unauthenticated Authentication Bypass via Login Cookie
Explay CMS 2.1 and earlier allows remote attackers to bypass authentication and gain administrative access by setting the login cookie to 1.