frog

93 exploits Active since May 2002
CVE-2003-1251 EXPLOITDB text WORKING POC
N/X Web Content Management System 2002 - Remote Code Execution via c_path Parameter
The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via a c_path that references a URL on a remote web server that contains the code.
CVE-2002-2143 EXPLOITDB text WRITEUP
MySimple News 1.0 - Info Disclosure
The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html.
CVE-2002-2319 EXPLOITDB text WORKING POC
MySimpleNews - Remote Code Execution via users.php Parameter Injection
Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to inject arbitrary PHP code and HTML via the (1) LOGIN, (2) DATA, and (3) MESS parameters, which are inserted into news.php3.
EIP-2026-109783 EXPLOITDB text WORKING POC
MyRoom 3.5 GOLD - 'save_item.php' Arbitrary File Upload
CVE-2002-2304 EXPLOITDB text WORKING POC
MyPHPLinks 2.1.9 and 2.2.0 - SQL Injection via idsession Parameter
SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter.
EIP-2026-109303 EXPLOITDB text WORKING POC
Mambo Open Source 4.0.14 - 'PollBooth.php' Multiple SQL Injections
EIP-2026-109480 EXPLOITDB text WORKING POC
MiniBB 1.2 - Cross-Site Scripting
CVE-2002-1798 EXPLOITDB CRITICAL text WRITEUP
MidiCart PHP Unauthenticated Arbitrary File Upload and Information Disclosure
MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.
CVSS 9.1
CVE-2002-1798 EXPLOITDB CRITICAL text WRITEUP
MidiCart PHP Unauthenticated Arbitrary File Upload and Information Disclosure
MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.
CVSS 9.1
EIP-2026-109378 EXPLOITDB text WORKING POC
mcNews 1.x - File Disclosure
EIP-2026-109269 EXPLOITDB html WORKING POC
Mambo 4.5 Server - 'user.php' Script Unauthorized Access
CVE-2002-2335 EXPLOITDB text WRITEUP
Killer Protection 1.0 - Info Disclosure
Killer Protection 1.0 stores the vars.inc include file under the web root with insufficient access control, which allows remote attackers to obtain user names and passwords and log in using protection.php.
CVE-2003-1385 EXPLOITDB text WRITEUP
Invision Power Board 1.1.1 - Remote Code Execution via root_path Parameter
ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code, if register_globals is enabled, by modifying the root_path parameter to reference a URL on a remote web server that contains the code.
EIP-2026-107231 EXPLOITDB text WRITEUP
FreeNews 2.1 - Include Undefined Variable Command Execution
EIP-2026-107529 EXPLOITDB text WORKING POC
GuppY 2.4 - Remote File Access
EIP-2026-107527 EXPLOITDB text WRITEUP
GuppY 2.4 - Cross-Site Scripting
EIP-2026-107516 EXPLOITDB text WORKING POC
GTCatalog 0.8.16/0.9 - Remote File Inclusion
CVE-2002-1560 EXPLOITDB text WRITEUP
gBook 1.4 - Unauthenticated Authentication Bypass via Login Parameter
index.php in gBook 1.4 allows remote attackers to bypass authentication and gain administrative privileges by setting the login parameter to true.
CVE-2003-1313 EXPLOITDB text WORKING POC
EternalMart Mailing List Manager <1.32 - RCE
Multiple PHP remote file inclusion vulnerabilities in EternalMart Mailing List Manager (EMLM) 1.32 allow remote attackers to execute arbitrary PHP code via a URL in (1) the emml_admin_path parameter to admin/auth.php or (2) the emml_path parameter to emml_email_func.php.
CVE-2003-1406 EXPLOITDB text WRITEUP
D-Forum 1.00-1.11 - Remote Code Execution via my_header or my_footer Parameter
PHP remote file inclusion vulnerability in D-Forum 1.00 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the (1) my_header parameter to header.php3 or (2) my_footer parameter to footer.php3.
CVE-2003-1256 EXPLOITDB text WRITEUP
E-theni - Remote Code Execution via rep_include Parameter
aff_liste_langue.php in E-theni allows remote attackers to execute arbitrary PHP code by modifying the rep_include parameter to reference a URL on a remote web server that contains para_langue.php.
CVE-2003-1405 EXPLOITDB text WRITEUP
DotBr 0.1 - Remote Command Execution via cmd Parameter
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3.
CVE-2003-1405 EXPLOITDB text WORKING POC
DotBr 0.1 - Remote Command Execution via cmd Parameter
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3.
EIP-2026-106387 EXPLOITDB text WRITEUP
DCP-Portal 5.0.1 - 'lib.php?Root' Remote File Inclusion
EIP-2026-106386 EXPLOITDB text WRITEUP
DCP-Portal 5.0.1 - 'editor.php?Root' Remote File Inclusion