ZoRLu

253 exploits Active since Feb 2007
CVE-2009-1587 EXPLOITDB text WORKING POC
PHP Site Lock 2.0 - Unauthenticated Authentication Bypass via Cookie Manipulation
index.php in PHP Site Lock 2.0 allows remote attackers to bypass authentication and obtain administrative access by setting the login_id, group_id, login_name, user_id, and user_type cookies to certain values.
CVE-2009-4724 EXPLOITDB text WORKING POC
PaymentProcessorScript.net - SQL Injection
SQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote attackers to execute arbitrary SQL commands via the cid parameter.
CVE-2008-6117 EXPLOITDB text WORKING POC
PG Job Site Pro - SQL Injection via poll_view_id Parameter
SQL injection vulnerability in homepage.php in PG Job Site Pro allows remote attackers to execute arbitrary SQL commands via the poll_view_id parameter in a results action.
CVE-2008-5306 EXPLOITDB text WORKING POC
PG Real Estate Solution - SQL Injection
SQL injection vulnerability in admin/index.php in PG Real Estate Solution allows remote attackers to execute arbitrary SQL commands via the login_lg parameter (username). NOTE: some of these details are obtained from third party information.
CVE-2008-6596 EXPLOITDB text WORKING POC
PHCDownload 1.1 - SQL Injection via Admin Index Hash Parameter
SQL injection vulnerability in admin/index.php in PHCDownload 1.1 allows remote attackers to execute arbitrary SQL commands via the hash parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-6597 EXPLOITDB text WRITEUP
PHCDownload 1.1 - Cross-Site Scripting via Step Parameter
Cross-site scripting (XSS) vulnerability in upload/install/index.php in PHCDownload 1.1 allows remote attackers to inject arbitrary web script or HTML via the step parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-110668 EXPLOITDB text WORKING POC
PHP Classifieds 6.20 - Multiple Cross-Site Scripting / Authentication Bypass Vulnerabilities
CVE-2008-4767 EXPLOITDB text WRITEUP
PHP-Nuke DownloadsPlus Module - Unrestricted File Upload and Remote Code Execution via .htm .html or .txt Extensions
Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary code by uploading a file with (1) .htm, (2) .html, or (3) .txt extensions, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: it is unclear how allowing the upload of .html or .txt files supports arbitrary code execution; this might be legitimate functionality.
EIP-2026-110154 EXPLOITDB text WORKING POC
Online Password Manager 4.1 - Insecure Cookie Handling
CVE-2008-1511 EXPLOITDB CRITICAL text WRITEUP
ooComments 1.0 - Remote File Inclusion via PathToComment Parameter
Multiple PHP remote file inclusion vulnerabilities in ooComments 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the PathToComment parameter for (1) classes/class_admin.php and (2) classes/class_comments.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS 9.8
CVE-2008-1511 EXPLOITDB CRITICAL text WRITEUP
ooComments 1.0 - Remote File Inclusion via PathToComment Parameter
Multiple PHP remote file inclusion vulnerabilities in ooComments 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the PathToComment parameter for (1) classes/class_admin.php and (2) classes/class_comments.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS 9.8
CVE-2008-5655 EXPLOITDB text WORKING POC
MyioSoft EasyBookMarker 4.0 - SQL Injection
Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) delete_folder and (2) delete_link parameters to unspecified vectors, possibly to (a) plugins/bookmarker/bookmarker_backend.php or (b) ajaxp.php, different vectors than CVE-2008-5654. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-5653 EXPLOITDB text WORKING POC
MyioSoft AjaxPortal 3.0 - SQL Injection
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.
EIP-2026-109677 EXPLOITDB text WRITEUP
My Web Doc 2000 Administration Pages - Multiple Authentication Bypass Vulnerabilities
CVE-2008-1955 EXPLOITDB text WRITEUP
MyBoard 1.0.12 - Cross-Site Scripting via rep.php id Parameter
Cross-site scripting (XSS) vulnerability in rep.php in Martin BOUCHER MyBoard 1.0.12 allows remote attackers to inject arbitrary web script or HTML via the id parameter. information.
EIP-2026-109914 EXPLOITDB text WORKING POC
News-Template 0.5beta - 'print.php' Multiple Cross-Site Scripting Vulnerabilities
CVE-2008-5654 EXPLOITDB text WORKING POC
MyioSoft EasyCalendar 4.0 - SQL Injection
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some of these details are obtained from third party information.
CVE-2008-4897 EXPLOITDB text WORKING POC
Logz podcast CMS 1.3.1 - SQL Injection via art Parameter
SQL injection vulnerability in fichiers/add_url.php in Logz podcast CMS 1.3.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the art parameter.
CVE-2008-5600 EXPLOITDB text WORKING POC
Merlix Teamworx Server - Info Disclosure
Merlix Teamworx Server stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for teamworx.mdb.
CVE-2008-6606 EXPLOITDB text WORKING POC
MatPo Link 1.2 Beta - SQL Injection via id Parameter
SQL injection vulnerability in view.php in MatPo Link 1.2 Beta allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2014-8995 EXPLOITDB text WORKING POC
Maarch LetterBox 2.8 - SQL Injection
SQL injection vulnerability in Maarch LetterBox 2.8 allows remote attackers to execute arbitrary SQL commands via the UserId cookie.
CVE-2009-4546 EXPLOITDB text WORKING POC
Logoshows BBS 2.0 - Authentication Bypass via Cookie Manipulation
globepersonnel_login.asp in Logoshows BBS 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) pb_username (aka pb%5Fusername) and (2) level cookies.
EIP-2026-109085 EXPLOITDB text WORKING POC
Le Forum - 'Fichier_Acceuil' Remote File Inclusion
CVE-2008-6269 EXPLOITDB text WORKING POC
Joovili 3.1.4 - Unauthenticated Authentication Bypass via Cookie Manipulation
Joovili 3.1.4 allows remote attackers to bypass authentication and gain privileges as other users, including the administrator, by setting the (1) session_id, session_logged_in, and session_username cookies for user privileges; (2) session_admin_id, session_admin_username, and session_admin cookies for admin privileges; and (3) session_staff_id, session_staff_username, and session_staff cookies for staff users.
CVE-2005-4879 EXPLOITDB text WORKING POC
Jax Guestbook 3.1, 3.31, 3.50 - Cross-Site Scripting via gmt_ofs and language Parameters
Multiple cross-site scripting (XSS) vulnerabilities in jax_guestbook.php in Jax Guestbook 3.1 and 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) gmt_ofs and (2) language parameters. NOTE: the page parameter is already covered by CVE-2006-1913. NOTE: it was later reported that 3.50 is also affected.