The_Bat_Hacker

CVE-2006-5281 EXPLOITDB text WORKING POC

n@board < 3.1.9e - Remote File Inclusion via Skin Parameter

PHP remote file inclusion vulnerability in naboard_pnr.php in n@board 3.1.9e and earlier allows remote attackers to execute arbitrary PHP code via a URL in the skin parameter.

View Code

CVE-2006-5429 EXPLOITDB text WORKING POC

BRIM < 1.2.1 - Remote File Inclusion via Renderer Parameter

Multiple PHP remote file inclusion vulnerabilities in Barry Nauta BRIM 1.2.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the renderer parameter in template.tpl.php in (1) templates/barrel/, (2) templates/sidebar/, (3) templates/text-only, (4) templates/slashdot/, (5) templates/penguin/, (6) templates/pda/, (7) templates/oerdec/, (8) templates/nifty/, (9) templates/mylook, and (10) templates/barry/.

View Code