h4ck3r

CVE-2023-53935 EXPLOITDB MEDIUM text WORKING POC

WBiz Desk 1.2 - SQL Injection via Ticket PHP tk Parameter

WBiz Desk 1.2 contains a SQL injection vulnerability that allows non-admin users to manipulate database queries through the 'tk' parameter in ticket.php. Attackers can inject crafted SQL statements using UNION-based techniques to extract sensitive database information by sending malformed requests to the ticket endpoint.

CVSS 5.4

View Code

CVE-2023-53917 EXPLOITDB MEDIUM text WORKING POC

Affiliate Me <5.0.1 - SQL Injection

Affiliate Me version 5.0.1 contains a SQL injection vulnerability in the admin.php endpoint that allows authenticated administrators to manipulate database queries. Attackers can exploit the 'id' parameter with crafted union-based queries to extract sensitive user information including usernames and password hashes.

CVSS 6.5

View Code

CVE-2007-5314 EXPLOITDB text WORKING POC

xkiosk_web 3.0.1i - Remote Code Execution via PEARPATH Parameter

PHP remote file inclusion vulnerability in system/funcs/xkurl.php in xKiosk WEB 3.0.1i, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the PEARPATH parameter.

View Code

EIP-2026-113390 EXPLOITDB text WRITEUP

Weekly Drawing Contest 0.0.1 - 'Check_Vote.php' Local File Inclusion

View Code

EIP-2026-112443 EXPLOITDB text WORKING POC

Storyteller CMS - 'var' Local File Inclusion

View Code

CVE-2010-4905 EXPLOITDB text WRITEUP

Softbiz Article Directory Script - SQL Injection

SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote attackers to execute arbitrary SQL commands via the sbiz_id parameter.

View Code

EIP-2026-110926 EXPLOITDB text WORKING POC

PHPAuctions - 'viewfaqs.php' SQL Injection

View Code

EIP-2026-110674 EXPLOITDB text WRITEUP

PHP Coupon Script 6.0 - 'bus' Blind SQL Injection

View Code

CVE-2008-5637 EXPLOITDB text WORKING POC

ParsBlogger - SQL Injection via blog.asp wr Parameter

SQL injection vulnerability in blog.asp in ParsBlogger (Pb) allows remote attackers to execute arbitrary SQL commands via the wr parameter.

View Code

EIP-2026-110652 EXPLOITDB text WORKING POC

PHP auctions - 'viewfaqs.php' Blind SQL Injection

View Code

EIP-2026-110665 EXPLOITDB text WRITEUP

PHP Classified ads software - 'cid' Blind SQL Injection

View Code

CVE-2010-4911 EXPLOITDB text WRITEUP

PHP Classifieds Ads - SQL Injection

SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote attackers to execute arbitrary SQL commands via the sid parameter.

View Code

EIP-2026-110710 EXPLOITDB text WORKING POC

PHP Joke Site Software - 'sbjoke_id' SQL Injection

View Code

EIP-2026-110716 EXPLOITDB text WORKING POC

PHP Link Directory Software - 'sbcat_id' SQL Injection

View Code

CVE-2011-0646 EXPLOITDB text WRITEUP

PHP LOW BIDS - SQL Injection via viewfaqs.php cat Parameter

SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote attackers to execute arbitrary SQL commands via the cat parameter.

View Code

EIP-2026-110754 EXPLOITDB text WORKING POC

PHP Script Directory Software - 'sbcat_id' SQL Injection

View Code

CVE-2007-5069 EXPLOITDB text WRITEUP

Nuke Mobile Entertainment 1 - Remote File Inclusion via module_name Parameter

Directory traversal vulnerability in data/compatible.php in the Nuke Mobile Entertainment 1 addon for PHP-Nuke allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter.

View Code

CVE-2010-4860 EXPLOITDB text WORKING POC

MyPhpAuction 2010 - SQL Injection via product_desc.php id Parameter

SQL injection vulnerability in product_desc.php in MyPhpAuction 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter.

View Code

CVE-2007-5674 EXPLOITDB text WORKING POC

InstaGuide Weather 1.0 - Path Traversal via PageName Parameter

Directory traversal vulnerability in index.php in InstaGuide Weather (aka Weather for PHP) 1.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the PageName parameter.

View Code

CVE-2007-1509 EXPLOITDB text WRITEUP

Holtstraeter Rot 13 - Directory Traversal via enkrypt.php datei Parameter

Directory traversal vulnerability in enkrypt.php in Sascha Schroeder krypt (aka Holtstraeter Rot 13) allows remote attackers to read arbitrary files via a .. (dot dot) in the datei parameter.

View Code

CVE-2007-5890 EXPLOITDB text WRITEUP

easyGB 2.1.1 - Directory Traversal via DatabaseType Parameter

Directory traversal vulnerability in index.php in easyGB 2.1.1 allows remote attackers to include arbitrary files via the DatabaseType parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2008-6991 EXPLOITDB text WORKING POC

cmsbright - SQL Injection via id_rub_page Parameter

SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the id_rub_page parameter.

View Code

CVE-2010-0458 EXPLOITDB text WORKING POC

NetArt Media Blog System 1.5 - SQL Injection via cat or note Parameter

Multiple SQL injection vulnerabilities in NetArt Media Blog System 1.5 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to index.php and the (2) note parameter to blog.php.

View Code

CVE-2011-0516 EXPLOITDB text WRITEUP

E-PROMPT C BetMore Site Suite 4.0-4.2.0 - SQL Injection via bid Parameter

SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site Suite 4.0 through 4.2.0 allows remote attackers to execute arbitrary SQL commands via the bid parameter.

View Code

CVE-2007-1427 EXPLOITDB text WORKING POC

AssetMan < 2.4a - Unauthenticated Directory Traversal via PDF File Parameter

Directory traversal vulnerability in download_pdf.php in AssetMan 2.4a and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the pdf_file parameter.

View Code