frog

93 exploits Active since May 2002
CVE-2002-2084 EXPLOITDB text WRITEUP
Portix-PHP 0.4.02 - Directory Traversal via l or topic Parameter
Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) l and (2) topic parameters.
CVE-2003-1086 EXPLOITDB text WORKING POC
pMachine Free and Pro - Remote File Inclusion via pm_path Parameter
PHP remote file inclusion vulnerability in pm/lib.inc.php in pMachine Free and pMachine Pro 2.2 and 2.2.1 allows remote attackers to execute arbitrary PHP code by modifying the pm_path parameter to reference a URL on a remote web server that contains the code.
CVE-2003-1532 EXPLOITDB text WORKING POC
PhpMyShop 1.00 - SQL Injection via Identifiant or Password Parameter
SQL injection vulnerability in compte.php in PhpMyShop 1.00 allows remote attackers to execute arbitrary SQL commands via the (1) identifiant and (2) password parameters.
CVE-2003-1533 EXPLOITDB text WORKING POC
PhpPass 2 - SQL Injection via uid and pwd Parameters
SQL injection vulnerability in accesscontrol.php in PhpPass 2 allows remote attackers to execute arbitrary SQL commands via the (1) uid and (2) pwd parameters.
CVE-2002-1887 EXPLOITDB text WORKING POC
phpMyNewsletter 0.6.10 - Remote File Inclusion via Customize.php l Parameter
PHP remote file inclusion vulnerability in customize.php for phpMyNewsletter 0.6.10 allows remote attackers to execute arbitrary PHP code via the l parameter.
CVE-2003-1401 EXPLOITDB text WRITEUP
php-Board 1.0 - Unauthenticated Sensitive Information Exposure via Plaintext Password Storage
login.php in php-Board 1.0 stores plaintext passwords in $username.txt with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information via a direct request.
CVE-2002-1995 EXPLOITDB text WRITEUP
phptonuke.php - Cross-Site Scripting via filnavn Parameter
Cross-site scripting (XSS) vulnerability in phptonuke.php for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the filnavn parameter.
EIP-2026-110850 EXPLOITDB text WORKING POC
PHP-Nuke 6.0/6.5 Forum Module - 'viewtopic.php' SQL Injection
EIP-2026-110849 EXPLOITDB text WORKING POC
PHP-Nuke 6.0/6.5 Forum Module - 'viewforum.php' SQL Injection
EIP-2026-110845 EXPLOITDB text WRITEUP
PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities
EIP-2026-110844 EXPLOITDB text WRITEUP
PHP-Nuke 6.0 - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-110841 EXPLOITDB php WORKING POC
PHP-Nuke 5.6/6.x News Module - 'index.php' SQL Injection
EIP-2026-110840 EXPLOITDB text WORKING POC
PHP-Nuke 5.6/6.x News Module - 'article.php' SQL Injection
EIP-2026-110839 EXPLOITDB text WORKING POC
PHP-Nuke 5.6/6.x - 'banners.php' Banner Manager Password Disclosure
CVE-2002-2134 EXPLOITDB text WORKING POC
PEEL 1.0b - Remote Code Execution via dirroot Parameter
haut.php in PEEL 1.0b allows remote attackers to execute arbitrary PHP code by modifying the dirroot parameter to reference a URL on a remote web server that contains the code in a lang.php file.
CVE-2004-1937 EXPLOITDB text WORKING POC
Nuked-KlaN 1.4b and 1.5b - Directory Traversal and Arbitrary File Read via User Langue Parameter
Multiple directory traversal vulnerabilities in Nuked-KlaN 1.4b and 1.5b allow remote attackers to read or include arbitrary files via .. sequences in (1) the user_langue parameter to index.php or (2) the langue parameter to update.php, or modify arbitrary GLOBAL variables by causing globals.php to be loaded before conf.inc.php via (3) .. sequences in the file parameter with the page parameter set to globals, or (4) ../globals.php in the user_langue parameter, as demonstrated by modifying $nuked[prefix] in the Suggest module.
CVE-2003-0304 EXPLOITDB python WORKING POC
One or Zero Helpdesk <1.4 rc4 - RCE
one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to create administrator accounts by directly calling the install.php Helpdesk Installation script.
CVE-2003-0303 EXPLOITDB text WORKING POC
one||zero Helpdesk <1.4 rc4 - SQL Injection
SQL injection vulnerability in one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to modify arbitrary ticket number descriptions via the sg parameter.
CVE-2002-1830 EXPLOITDB text WRITEUP
OpenBB 1.0.0 RC3 - Unauthenticated Authentication Bypass via Direct Request to moderator.php
Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to bypass authentication and access modifier options via a direct request to moderator.php with the action and ismod parameters.
CVE-2002-1829 EXPLOITDB text WRITEUP
OpenBB 1.0.0 RC3 - Cross-Site Scripting via myhome.php or IMG Tag
Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror attribute in an IMG tag (a variant of CVE-2002-0330), or (3) a glow tag.
EIP-2026-110250 EXPLOITDB text WORKING POC
OpenBB 1.0.0 RC3 - Cross-Site Scripting
CVE-2003-1278 EXPLOITDB text WORKING POC
OpenTopic 2.3.1 - Cross-Site Scripting via IMG Tag Injection
Cross-site scripting vulnerability (XSS) in OpenTopic 2.3.1 allows remote attackers to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into IMG tags.
EIP-2026-109781 EXPLOITDB text WORKING POC
myphpPageTool 0.4.3-1 - Remote File Inclusion
CVE-2002-2249 EXPLOITDB text WORKING POC
News Evolution 2.0 - Remote Code Execution via neurl Parameter
PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php.
CVE-2003-1251 EXPLOITDB text WORKING POC
N/X Web Content Management System 2002 - Remote Code Execution via c_path Parameter
The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via a c_path that references a URL on a remote web server that contains the code.