ZoRLu

253 exploits Active since Feb 2007
CVE-2008-6942 EXPLOITDB WORKING POC
ScriptsFeed Realtor Classifieds System - Authenticated Remote Code Execution via Profile Logo Upload
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
CVE-2008-6943 EXPLOITDB WORKING POC
ScriptsFeed Recipes Listing Portal - Authenticated Remote Code Execution via Recipe Photo Upload
Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/.
CVE-2008-6942 EXPLOITDB WORKING POC
ScriptsFeed Realtor Classifieds System - Authenticated Remote Code Execution via Profile Logo Upload
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
CVE-2008-6943 EXPLOITDB WORKING POC
ScriptsFeed Recipes Listing Portal - Authenticated Remote Code Execution via Recipe Photo Upload
Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/.
CVE-2008-4896 EXPLOITDB WORKING POC
Logz CMS 1.3.1 - Cross-Site Scripting via Art Parameter
Cross-site scripting (XSS) vulnerability in fichiers/add_url.php in Logz CMS 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the art parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-4073 EXPLOITDB WORKING POC
Zanfi Autodealers CMS AutOnline - SQL Injection via pageid Parameter
SQL injection vulnerability in index.php in Zanfi Autodealers CMS AutOnline allows remote attackers to execute arbitrary SQL commands via the pageid parameter in a DBpAGE action.
CVE-2009-4545 EXPLOITDB text WORKING POC
Logoshows BBS 2.0 - Info Disclosure
Logoshows BBS 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/globepersonnel.mdb.
CVE-2008-6684 EXPLOITDB text WORKING POC
Apartment Search Script - Unauthenticated Arbitrary File Upload via editimage.php GIF Header Bypass
Unrestricted file upload vulnerability in editimage.php in Apartment Search Script allows remote attackers to execute arbitrary code by uploading a file with an executable extension and a GIF header, then accessing this file via a direct request to a renamed file in Member_Admin/logo/.
CVE-2008-6943 EXPLOITDB text WORKING POC
ScriptsFeed Recipes Listing Portal - Authenticated Remote Code Execution via Recipe Photo Upload
Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/.
CVE-2008-6942 EXPLOITDB text WORKING POC
ScriptsFeed Realtor Classifieds System - Authenticated Remote Code Execution via Profile Logo Upload
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
CVE-2008-6914 EXPLOITDB text WORKING POC
Zeeproperty 1.0 - Authenticated Arbitrary File Upload via Profile Photo
Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile modification, then accessing a related file via a direct request to the file in companylogo/.
CVE-2008-6870 EXPLOITDB text WRITEUP
Merlix Educate Server - Information Disclosure via Direct Request to config.asp and users.asp
Merlix Educate Server allows remote attackers to bypass intended security restrictions and obtain sensitive information via a direct request to (1) config.asp and (2) users.asp.
CVE-2008-6316 EXPLOITDB text WORKING POC
phpmygallery 1.0 beta2 - Remote File Inclusion via Lang Parameter Path Traversal
Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.
CVE-2008-6315 EXPLOITDB text WORKING POC
PHPmyGallery 1.0 beta2 - Remote Code Execution via confdir Parameter
PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to execute arbitrary PHP code via a URL in the confdir parameter, a different issue than CVE-2008-6316.
CVE-2008-6270 EXPLOITDB text WORKING POC
Dragan Mitic Apoll 0.7 beta and 0.7.5 - SQL Injection via User Parameter
SQL injection vulnerability in admin/index.php in Dragan Mitic Apoll 0.7 beta and 0.7.5 allows remote attackers to execute arbitrary SQL command via the user parameter.
CVE-2008-7071 EXPLOITDB text WORKING POC
Chipmunk Topsites - SQL Injection via Username Parameter
SQL injection vulnerability in authenticate.php in Chipmunk Topsites allows remote attackers to execute arbitrary SQL commands via the username parameter, related to login.php. NOTE: some of these details are obtained from third party information.
CVE-2008-5652 EXPLOITDB text WORKING POC
MyioSoft EasyBookMarker 4.0 - SQL Injection
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.
CVE-2008-5599 EXPLOITDB text WORKING POC
Merlix Teamworx Server - SQL Injection
SQL injection vulnerability in default.asp in Merlix Teamworx Server allows remote attackers to execute arbitrary SQL commands via the password parameter (aka passwd field) in a login action. NOTE: some of these details are obtained from third party information.
CVE-2008-5214 EXPLOITDB text WORKING POC
ClanLite 2.2006.05.20 - Cross-Site Scripting via annee Parameter
Cross-site scripting (XSS) vulnerability in service/calendrier.php in ClanLite 2.2006.05.20 allows remote attackers to inject arbitrary web script or HTML via the annee parameter.
CVE-2008-5337 EXPLOITDB text WORKING POC
Bandwebsite 1.5 - SQL Injection
SQL injection vulnerability in lyrics.php in Bandwebsite (aka Bandsite portal system) 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-5289 EXPLOITDB text WRITEUP
Clean CMS 1.5 - SQL Injection via full_txt.php id Parameter
SQL injection vulnerability in full_txt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-5950 EXPLOITDB text WRITEUP
ASP Template Creature - Media Level < SQL Injection
SQL injection vulnerability in media/media_level.asp in ASP Template Creature allows remote attackers to execute arbitrary SQL commands via the mcatid parameter.
CVE-2008-5486 EXPLOITDB text WORKING POC
TurnkeyForms Text Link Sales - SQL Injection
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-118303 EXPLOITDB perl WORKING POC
Baby Web Server 2.7.2.0 - Arbitrary File Disclosure
CVE-2014-9448 EXPLOITDB perl WORKING POC
Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.