UNIQUE-KEY

6 exploits Active since Mar 2007
CVE-2007-1440 EXPLOITDB html WORKING POC
JGBBS 3.0 Beta 1 - SQL Injection via Search Author Parameter
SQL injection vulnerability in search.asp in JGBBS 3.0 Beta 1 allows remote attackers to execute arbitrary SQL commands via the author parameter.
CVE-2007-2367 EXPLOITDB perl WORKING POC
Wserve HTTP Server <4.6 - Buffer Overflow
Buffer overflow in wserve_console.exe in Wserve HTTP Server (whttp) 4.6 allows remote attackers to cause a denial of service (forced application exit) via a long directory name in the URI.
CVE-2007-3311 EXPLOITDB perl WORKING POC
Xoops Articles Module < 1.02 - SQL Injection via print.php id Parameter
SQL injection vulnerability in print.php in the Articles 1.02 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-1845 EXPLOITDB perl WORKING POC
PHP-Fusion Expanded Calendar Module 2.00 - SQL Injection via m_month Parameter
SQL injection vulnerability in show_event.php in the Expanded Calendar (calendar_panel) 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the m_month parameter.
CVE-2007-1417 EXPLOITDB text WRITEUP
HC NEWSSYSTEM 1.0-4 - SQL Injection via ID Parameter
SQL injection vulnerability in index.php in HC NEWSSYSTEM 1.0-4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a komm aktion.
CVE-2007-1572 EXPLOITDB html WORKING POC
JGBBS < 3.0 - SQL Injection via search.asp title parameter
SQL injection vulnerability in search.asp in JGBBS 3.0 Beta 1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter, a different vector than CVE-2007-1440. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.