The_5p3ctrum - Security Researcher - Exploit Intelligence Platform

CVE-2008-5629 EXPLOITDB text WORKING POC

Turnkey Arcade Script - SQL Injection

SQL injection vulnerability in index.php in Turnkey Arcade Script allows remote attackers to execute arbitrary SQL commands via the id parameter in a play action.

View Code

CVE-2009-3973 EXPLOITDB text WORKING POC

Turnkey Arcade Script - SQL Injection

SQL injection vulnerability in index.php in Turnkey Arcade Script allows remote attackers to execute arbitrary SQL commands via the id parameter in a browse action, a different vector than CVE-2008-5629.

View Code

CVE-2008-6274 EXPLOITDB text WRITEUP

FamilyProject 2.0 - SQL Injection via Login or Password Parameter

Multiple SQL injection vulnerabilities in index.php in FamilyProject 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the logmbr parameter (aka login field) or (2) the mdpmbr parameter (aka pass or "Mot de passe" field). NOTE: some of these details are obtained from third party information.

View Code

CVE-2008-6281 EXPLOITDB text WRITEUP

bluo_cms 1.2 - SQL Injection via id Parameter

SQL injection vulnerability in index.php in Bluo CMS 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.

View Code