ahmadbady

82 exploits Active since Jun 2008
EIP-2026-110610 EXPLOITDB text WRITEUP
photo graffix 3.4 - Multiple Vulnerabilities
CVE-2008-5771 EXPLOITDB text WORKING POC
PHP Weather 2.2.2 - Path Traversal
Directory traversal vulnerability in test.php in PHP Weather 2.2.2 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.
EIP-2026-110766 EXPLOITDB text WORKING POC
PHP Support Tickets 2.2 - Arbitrary File Upload
CVE-2008-5570 EXPLOITDB text WORKING POC
PHP Multiple Newsletters <2.7 - Path Traversal
Directory traversal vulnerability in index.php in PHP Multiple Newsletters 2.7, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
EIP-2026-110650 EXPLOITDB html WORKING POC
PHP Article Publisher - Remote Change Admin Password
CVE-2008-6869 EXPLOITDB text WRITEUP
Oramon 2.0.1 - Unauthenticated Sensitive Information Exposure via Direct Request
Oramon Oracle Database Monitoring Tool 2.0.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for config/oramon.ini.
EIP-2026-109647 EXPLOITDB html WORKING POC
MunkyScripts Simple Gallery - SQL Injection
CVE-2010-1351 EXPLOITDB html WORKING POC
Nodesforum 1.033 and 1.045 - Remote Code Execution via PHP File Inclusion
Multiple PHP remote file inclusion vulnerabilities in Nodesforum 1.033 and 1.045, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) _nodesforum_path_from_here_to_nodesforum_folder parameter to erase_user_data.php and the (2) _nodesforum_code_path parameter to pre_output.php. NOTE: some of these details are obtained from third party information.
EIP-2026-109816 EXPLOITDB html WORKING POC
n-cms-equipe 1.1c.Debug - Multiple Local File Inclusions
EIP-2026-109774 EXPLOITDB text WORKING POC
MyOWNspace 8.2 - Multiple Local File Inclusions
CVE-2008-6956 EXPLOITDB text WORKING POC
mxCamArchive 2.2 - Authenticated PHP Code Injection via Description Parameter
Static code injection vulnerability in admin/admin.php in mxCamArchive 2.2 allows remote authenticated administrators to inject arbitrary PHP code into an unspecified program via the description parameter, which is executed by invocation of index.php. NOTE: some of these details are obtained from third party information.
CVE-2008-5062 EXPLOITDB text WORKING POC
Mini Web Calendar 1.2 - Path Traversal via cal_pdf.php thefile Parameter
Directory traversal vulnerability in php/cal_pdf.php in Mini Web Calendar (mwcal) 1.2 allows remote attackers to read arbitrary files via directory traversal sequences in the thefile parameter.
CVE-2009-1510 EXPLOITDB text WORKING POC
KoschtIT Image Gallery 1.82 - Path Traversal via File Parameter
Multiple directory traversal vulnerabilities in KoschtIT Image Gallery 1.82 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the file parameter to (1) ki_makepic.php and (2) ki_nojsdisplayimage.php in ki_base/.
CVE-2009-2378 EXPLOITDB text WORKING POC
Jax FormMailer 3.0.0 - Remote Code Execution via BASE_DIR Parameter
PHP remote file inclusion vulnerability in formmailer.admin.inc.php in Jax FormMailer 3.0.0 allows remote attackers to execute arbitrary PHP code via a URL in the BASE_DIR[jax_formmailer] parameter.
CVE-2009-1771 EXPLOITDB text WORKING POC
Flyspeck CMS 6.8 - Unauthenticated Admin Account Creation via updateExistingContent Action
index.php in Flyspeck CMS 6.8 does not require administrative authentication for the updateExistingContent action, which allows remote attackers to create or modify admin accounts via the (1) users[fullname], (2) users[email], (3) users[role_id], (4) users[username], and (5) users[password] parameters.
CVE-2010-0968 EXPLOITDB text WRITEUP
Geekhelps ADMP 1.01 - SQL Injection
SQL injection vulnerability in bannershow.php in Geekhelps ADMP 1.01 allows remote attackers to execute arbitrary SQL commands via the click parameter.
CVE-2009-2338 EXPLOITDB text WORKING POC
FreeWebshop.org <2.2.9 R2 - Path Traversal
Directory traversal vulnerability in includes/startmodules.inc.php in FreeWebshop.org 2.2.9 R2, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang_file parameter.
CVE-2008-3566 EXPLOITDB text WORKING POC
ZoneO-soft freeForum 1.7 - Cross-Site Scripting via acuparam Parameter or PATH_INFO
Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote attackers to inject arbitrary web script or HTML via the acuparam parameter to (1) the default URI or (2) index.php, or (3) the PATH_INFO to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-106926 EXPLOITDB text WORKING POC
Evaria ECMS 1.1 - 'DOCUMENT_ROOT' Multiple Remote File Inclusions
CVE-2008-3163 EXPLOITDB text WRITEUP
DodosMail 2.5 - Path Traversal via dodosmail_header_file Parameter
Directory traversal vulnerability in dodosmail.php in DodosMail 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dodosmail_header_file parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2009-1447 EXPLOITDB text WRITEUP
e-cart Free Shopping Cart - Unauthenticated Arbitrary File Upload and Remote Code Execution via Image Editor
Unrestricted file upload vulnerability in admin/editor/image.php in e-cart.biz Free Shopping Cart allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.
EIP-2026-106431 EXPLOITDB text WORKING POC
DewNewPHPLinks 2.1.0.1 - Local File Inclusion
EIP-2026-106336 EXPLOITDB text WRITEUP
Dacio's Image Gallery 1.6 - Multiple Remote Vulnerabilities
EIP-2026-106335 EXPLOITDB text WORKING POC
Dacio's Image Gallery 1.6 - Directory Traversal / Authentication Bypass / Arbitrary File Upload
EIP-2026-105879 EXPLOITDB text WORKING POC
ClanWeb 1.4.2 - Remote Change Password / Add Admin