bd0rk

65 exploits Active since Sep 1999
EIP-2026-110422 EXPLOITDB html WORKING POC
Ovidentia maillist Module 4.0 - Remote File Inclusion
EIP-2026-110420 EXPLOITDB text WORKING POC
Ovidentia bulletindoc Module 2.9 - Multiple Remote File Inclusions
EIP-2026-110419 EXPLOITDB text WORKING POC
Ovidentia absences Module 2.64 - Remote File Inclusion
EIP-2026-110423 EXPLOITDB perl WORKING POC
Ovidentia NewsLetter Module 2.2 - 'admin.php' Remote File Inclusion
EIP-2026-110425 EXPLOITDB text WORKING POC
Ovidentia troubleticketsModule 7.6 - Remote File Inclusion
EIP-2026-109660 EXPLOITDB text WRITEUP
MXBB Profile Control Panel 0.91c - Module Remote File Inclusion
CVE-2007-1961 EXPLOITDB html WORKING POC
PHPBB 2.2 - RCE
PHP remote file inclusion vulnerability in mutant_functions.php in the Mutant 0.9.2 portal for phpBB 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
CVE-2007-2189 EXPLOITDB text WORKING POC
PHP <mxBB FAP 2.0 RC1 - RCE
PHP remote file inclusion vulnerability in admin/admin_album_otf.php in the MX Smartor Full Album Pack (FAP) 2.0 RC1 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
CVE-2006-6065 EXPLOITDB text WORKING POC
CalSnails Module for MxBB Portal <1.06 - RCE
PHP remote file inclusion vulnerability in includes/mx_common.php in the CalSnails Module for MxBB Portal 1.06 allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
CVE-2006-6545 EXPLOITDB text WORKING POC
ErrorDocs <1.0.0 - RCE
PHP remote file inclusion vulnerability in includes/common.php in the ErrorDocs 1.0.0 and earlier module for mxBB (mx_errordocs) allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
CVE-2007-2493 EXPLOITDB php WORKING POC
FAQ & RULES <2.0.0 - RCE
PHP remote file inclusion vulnerability in faq.php in the FAQ & RULES 2.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
CVE-2007-2313 EXPLOITDB perl WORKING POC
Shotcast 1.0 RC2 - RCE
PHP remote file inclusion vulnerability in getinfo1.php in the Shotcast 1.0 RC2 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.
CVE-2008-1712 EXPLOITDB perl WORKING POC
mxBB mx_blogs <2.0.0 - RCE
PHP remote file inclusion vulnerability in includes/functions_weblog.php in mxBB mx_blogs 2.0.0 beta allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.
CVE-2007-5178 EXPLOITDB text WRITEUP
Mxbb MX Glance - Code Injection
contrib/mx_glance_sdesc.php in the mx_glance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mx_root_path parameter. NOTE: some sources incorrectly state that phpbb_root_path is the affected parameter.
CVE-2006-6295 EXPLOITDB text WRITEUP
MxBB Portal <1.06 - RCE
PHP remote file inclusion vulnerability in includes/mx_common.php in the mx_tinies 1.3.0 Module for MxBB Portal 1.06 allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
EIP-2026-109659 EXPLOITDB text WORKING POC
mxBB Module pafiledb 2.0.1b - Remote File Inclusion
CVE-2006-6566 EXPLOITDB text WORKING POC
mxBB 0.91c - RCE
PHP remote file inclusion vulnerability in includes/profilcp_constants.php in the Profile Control Panel (CPanel) module for mxBB 0.91c allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
CVE-2007-1340 EXPLOITDB perl WORKING POC
Weltennetz News-Letterman 1.1 - RCE
PHP remote file inclusion vulnerability in eintrag.php in Weltennetz News-Letterman 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the sqllog parameter.
EIP-2026-109952 EXPLOITDB text WORKING POC
nodesforum 1.059 - Remote File Inclusion
EIP-2026-109479 EXPLOITDB perl WORKING POC
Mini-CMS / News Script Light 1.0 - Remote File Inclusion
EIP-2026-109336 EXPLOITDB text WRITEUP
MatPo.de Kontakt Formular 1.4 - 'function.php' Remote File Inclusion
CVE-2007-6655 EXPLOITDB text WORKING POC
Kontakt Formular 1.4 - RCE
PHP remote file inclusion vulnerability in includes/function.php in Kontakt Formular 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter.
CVE-2010-4878 EXPLOITDB text WRITEUP
Kontakt Formular 1.1 - RCE
PHP remote file inclusion vulnerability in formmailer.php in Kontakt Formular 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the script_pfad parameter.
CVE-2006-6726 EXPLOITDB text WORKING POC
PHP <0.02 beta - RCE
PHP remote file inclusion vulnerability in inertianews_main.php in inertianews 0.02 beta allows remote attackers to execute arbitrary PHP code via a URL in the inews_path parameter.
CVE-2009-5093 EXPLOITDB text WORKING POC
Php4scripte Gastebuch - Path Traversal
Directory traversal vulnerability in gastbuch.php in Gästebuch (Gastebuch) 1.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the start parameter.