Sumit Siddharth

5 exploits Active since Nov 2006
CVE-2007-1897 EXPLOITDB perl WORKING POC
WordPress < 2.1.2 - Authenticated SQL Injection via XML-RPC mt.setPostCategories Method
SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users to execute arbitrary SQL commands via a string parameter value in an XML RPC mt.setPostCategories method call, related to the post_id variable.
CVE-2006-5669 EXPLOITDB text WORKING POC
Gepi < 1.4.4 - Remote File Inclusion via gestion/savebackup.php filename Parameter
PHP remote file inclusion vulnerability in gestion/savebackup.php in Gepi 1.4.0 and earlier, and possibly other versions before 1.4.4, allows remote attackers to execute arbitrary PHP code via a URL in the filename parameter.
CVE-2007-4966 EXPLOITDB text WORKING POC
GForge < 4.6_b2 - SQL Injection via skill_delete[] Parameter
SQL injection vulnerability in www/people/editprofile.php in GForge 4.6b2 and earlier allows remote attackers to execute arbitrary SQL commands via the skill_delete[] parameter.
EIP-2026-103798 EXPLOITDB text WORKING POC
Oracle 10g - 'SYS.LT.COMPRESSWORKSPACETREE' SQL Injection (2)
EIP-2026-103519 EXPLOITDB text WORKING POC
Intel Graphics Accelerator Driver - Remote Denial of Service