cr4wl3r

143 exploits Active since Jan 2006
CVE-2010-2137 EXPLOITDB text WORKING POC
ProMan < 0.1.1 - Remote Code Execution via _center.php Page Parameter
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
CVE-2010-1742 EXPLOITDB text WORKING POC
Scratcher - Cross-Site Scripting via Show Parameter
Cross-site scripting (XSS) vulnerability in projects.php in Scratcher allows remote attackers to inject arbitrary web script or HTML via the show parameter.
CVE-2010-1266 EXPLOITDB text WORKING POC
WebMaid CMS < 0.2-6 - Remote File Inclusion via Multiple Template Parameters
Multiple PHP remote file inclusion vulnerabilities in WebMaid CMS 0.2-6 Beta and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) template, (2) menu, (3) events, and (4) SITEROOT parameters to template/babyweb/index.php; the (5) modules and (6) copyright parameters to template/calm/footer.php; the (7) menu parameter to template/calm/top.php; and the (8) modules, (9) copyright, and (10) menu parameters to template/wm025/footer.php.
CVE-2009-4224 EXPLOITDB text WORKING POC
SweetRice < 0.5.4 - Remote File Inclusion via root_dir Parameter
Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, 0.5.3, and earlier allow remote attackers to execute arbitrary PHP code via a URL in the root_dir parameter to (1) _plugin/subscriber/inc/post.php and (2) as/lib/news_modify.php.
CVE-2010-1946 EXPLOITDB text WORKING POC
openMairie Openregistrecil 1.02 - Remote Code Execution via path_om Parameter
Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php, (3) dossier.class.php, (4) norme_simplifiee.class.php, (5) registre.class.php, (6) autorisation_unique.class.php, (7) demande_avis.class.php, (8) droit.class.php, (9) organisme.class.php, (10) service.class.php, (11) categorie_donnee.class.php, (12) destinataire.class.php, (13) profil.class.php, (14) tabdyn_visu.class.php, (15) categorie_personne.class.php, (16) dispense.class.php, (17) modificatif.class.php, (18) reference.class.php, and (19) utilisateur.class.php in obj/.
CVE-2010-1945 EXPLOITDB text WORKING POC
openMairie Openfoncier 2.00 - Remote File Inclusion via path_om Parameter
Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php, (4) bible.class.php, and (5) blocnote.class.php in obj/.
CVE-2010-1928 EXPLOITDB text WORKING POC
openMairie openPlanning 1.00 - Remote File Inclusion via soustab.php dsn[phptype] Parameter
Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
CVE-2010-1926 EXPLOITDB text WORKING POC
openMairie openCourrier 2.02 and 2.03 beta - Remote File Inclusion via dsn[phptype] Parameter
Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069. NOTE: some of these details are obtained from third party information.
CVE-2010-1920 EXPLOITDB text WORKING POC
OpenMairie openAnnuaire 2.00 - Remote File Inclusion via dsn[phptype] Parameter
Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE-2007-2069.
CVE-2010-1466 EXPLOITDB text WORKING POC
openUrgence Vaccin 1.03 - Path Traversal
Directory traversal vulnerability in scr/soustab.php in openUrgence Vaccin 1.03 allows remote attackers to read arbitrary files via the dsn[phptype] parameter.
EIP-2026-117186 EXPLOITDB perl WORKING POC
FoxPlayer 1.7.0 - '.m3u' Local Buffer Overflow
EIP-2026-117367 EXPLOITDB perl WORKING POC
jetAudio 8.0.0.2 Basic - '.m3u' Local Stack Overflow
EIP-2026-116637 EXPLOITDB perl WORKING POC
yPlay 1.0.76 - '.mp3' Local Crash (PoC)
EIP-2026-116503 EXPLOITDB perl WORKING POC
VKPlayer 1.0 - '.mid' Denial of Service
EIP-2026-116538 EXPLOITDB html WORKING POC
Winamp 5.57 - 'Browser' IE Denial of Service
EIP-2026-116563 EXPLOITDB perl WORKING POC
WinSmMuPl 1.2.5 - '.mp3' Local Crash (PoC)
EIP-2026-115998 EXPLOITDB perl WORKING POC
Opera 10.10 - Remote Code Execution Denial of Service
CVE-2010-0718 EXPLOITDB perl WORKING POC
Microsoft Windows Media Player <11.0.5721.5145 - Buffer Overflow
Buffer overflow in Microsoft Windows Media Player 9 and 11.0.5721.5145 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted .mpg file.
EIP-2026-116064 EXPLOITDB perl WORKING POC
Pico MP3 Player 1.0 - '.mp3' / '.pls' Local Crash (PoC)
EIP-2026-115600 EXPLOITDB perl WORKING POC
Media Player Classic 6.4.9.1 - '.avi' Buffer Overflow
EIP-2026-115524 EXPLOITDB perl WORKING POC
KOL Wave Player 1.0 - '.wav' Local Buffer Overflow (PoC)
EIP-2026-115341 EXPLOITDB perl WORKING POC
GOM Player 2.1.21.4846 - '.wav' Buffer Overflow
EIP-2026-115482 EXPLOITDB perl WORKING POC
jetAudio 8.0.0.2 Basic - '.asx' Local Crash
EIP-2026-115525 EXPLOITDB perl WORKING POC
KOL WaveIOX 1.04 - '.wav' Local Buffer Overflow (PoC)
EIP-2026-115042 EXPLOITDB perl WORKING POC
Chasys Media Player 1.1 - '.mid' Local Buffer Overflow