by_casper41

4 exploits Active since Apr 2008
EIP-2026-108159 EXPLOITDB text WRITEUP
Joomla! / Mambo Component com_utchat 0.2 - Multiple Remote File Inclusions
CVE-2008-1989 EXPLOITDB text WORKING POC
123 Flash Chat 6.8.0 module for e107 - Remote Code Execution via e107path Parameter
PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.
CVE-2008-3559 EXPLOITDB text WORKING POC
KAPhotoservice - Cross-Site Scripting via Search Filename or Order Page Parameter
Multiple cross-site scripting (XSS) vulnerabilities in KAPhotoservice allow remote attackers to inject arbitrary web script or HTML via the (1) filename parameter to search.asp and the (2) page parameter to order.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-3559 EXPLOITDB text WORKING POC
KAPhotoservice - Cross-Site Scripting via Search Filename or Order Page Parameter
Multiple cross-site scripting (XSS) vulnerabilities in KAPhotoservice allow remote attackers to inject arbitrary web script or HTML via the (1) filename parameter to search.asp and the (2) page parameter to order.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.