Yunus Emre Yilmaz

4 exploits Active since Mar 2006
CVE-2006-1021 EXPLOITDB text WORKING POC
PeHePe Membership Management System 3 - Cross-Site Scripting via sol_menu.php kuladi Parameter
Cross-site scripting (XSS) vulnerability in sol_menu.php in PeHePe Uyelik Sistemi (aka PeHePe MemberShip Management System) 3 allows remote attackers to inject arbitrary web script or HTML via the kuladi parameter ($kul_adi variable).
CVE-2006-1022 EXPLOITDB text WRITEUP
PeHePe Membership Management System 3 - Remote File Inclusion Code Execution
PHP remote file include vulnerability in sol_menu.php in PeHePe Uyelik Sistemi (aka PeHePe MemberShip Management System) 3 allows remote attackers to include and execute arbitrary PHP code via a URL in the uye_klasor parameter, along with a misafir[] parameter that is set to UYE_SEVIYE.
CVE-2006-0984 EXPLOITDB text WORKING POC
EJ3 TOPo 2.2.178 - Cross-Site Scripting via gTopNombre Parameter
Cross-site scripting (XSS) vulnerability in inc_header.php in EJ3 TOPo 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the gTopNombre parameter.
CVE-2006-2491 EXPLOITDB text WRITEUP
BoastMachine < 3.1 - Cross-Site Scripting via PHP_SELF Query String
Cross-site scripting (XSS) vulnerability in (1) index.php and (2) bmc/admin.php in BoastMachine (bMachine) 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly filtered when it is accessed using the $_SERVER["PHP_SELF"] variable.