gemaglabin

5 exploits Active since Jan 2008
CVE-2008-0147 EXPLOITDB perl WORKING POC
SmallNuke 2.0.4 - SQL Injection via User Email Parameter
SQL injection vulnerability in index.php in SmallNuke 2.0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via (1) the user_email parameter and possibly (2) username parameter in a Members action.
CVE-2008-0224 EXPLOITDB perl WORKING POC
RunCMS 1.6.1 - SQL Injection via Client-Ip Parameter
SQL injection vulnerability in index.php in the Newbb_plus 0.92 and earlier module in RunCMS 1.6.1 allows remote attackers to execute arbitrary SQL commands via the Client-Ip parameter.
CVE-2008-0255 EXPLOITDB perl WORKING POC
iGaming CMS <= 1.3.1 - SQL Injection via Section Parameter
SQL injection vulnerability in archive.php in iGaming 1.5, and 1.3.1 and earlier, allows remote attackers to execute arbitrary SQL commands via the section parameter.
CVE-2008-0159 EXPLOITDB perl WORKING POC
eggblog < 3.1.0 - SQL Injection via eggblogpassword Cookie Parameter
SQL injection vulnerability in index.php in eggBlog 3.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the eggblogpassword parameter in a cookie.
CVE-2008-0157 EXPLOITDB perl WORKING POC
FlexBB < 0.6.3 - SQL Injection via flexbb_temp_id Cookie Parameter
SQL injection vulnerability in FlexBB 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the flexbb_temp_id parameter in a cookie.