ZeN

8 exploits Active since Jan 2001
CVE-2008-3326 EXPLOITDB text WRITEUP
Moodle <1.6.7, <1.7.5 - XSS
Cross-site scripting (XSS) vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter (blog entry title).
CVE-2008-4602 EXPLOITDB text WORKING POC
Qualityunit Post Affiliate Pro - Path Traversal
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. (dot dot) in the md parameter.
CVE-2008-5678 EXPLOITDB text WRITEUP
FDI OLIB7 WebView 2.5.1.1 - Info Disclosure
Fretwell-Downing Informatics (FDI) OLIB7 WebView 2.5.1.1 allows remote authenticated users to obtain sensitive information from files via the infile parameter to the default URI under cgi/, as demonstrated by the (1) get_settings.ini, (2) setup.ini, and (3) text.ini files.
CVE-2013-4786 EXPLOITDB HIGH perl WORKING POC
IPMI 2.0 - Info Disclosure
The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.
CVSS 7.5
CVE-2000-1134 EXPLOITDB c WORKING POC
Unix Shell < - Local File Overwrite
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
EIP-2026-102792 EXPLOITDB text WORKING POC
BSD 'lpr' 0.54 -4 - Arbitrary Command Execution
EIP-2026-100815 EXPLOITDB perl WORKING POC
HSPell 1.1 - 'cilla.cgi' Remote Command Execution
EIP-2026-100816 EXPLOITDB text WORKING POC
HTMPL 1.11 - Command Execution