ilker Kandemir

17 exploits Active since Jan 2007
CVE-2007-2628 EXPLOITDB perl WORKING POC
Justin Koivisto SecurityAdmin <4.0.2 - RCE
PHP remote file inclusion vulnerability in include/logout.php in Justin Koivisto SecurityAdmin for PHP (aka PHPSecurityAdmin, PSA) 4.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the PSA_PATH parameter.
CVE-2007-0298 EXPLOITDB text WORKING POC
LunarPoll - Remote File Inclusion via PollDir Parameter
PHP remote file inclusion vulnerability in show.php in LunarPoll, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the PollDir parameter.
CVE-2009-4550 EXPLOITDB php WORKING POC
Kunena Forum <1.5.4 - SQL Injection
SQL injection vulnerability in the Kunena Forum (com_kunena) component 1.5.3 and 1.5.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the func parameter to index.php.
CVE-2007-4341 EXPLOITDB text WORKING POC
Omnistar Lib2 PHP 0.2 - Remote File Inclusion via DOCUMENT_ROOT Parameter
PHP remote file inclusion vulnerability in adm/my_statistics.php in Omnistar Lib2 PHP 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.
CVE-2008-2676 EXPLOITDB perl WORKING POC
iJoomla News Portal (com_news_portal) < 1.0 - SQL Injection via Itemid Parameter
SQL injection vulnerability in the iJoomla News Portal (com_news_portal) component 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
CVE-2007-0335 EXPLOITDB text WORKING POC
Jax Petition Book 1.0.3.06 - Directory Traversal via Languagepack Parameter
Multiple directory traversal vulnerabilities in Jax Petition Book 1.0.3.06 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the languagepack parameter to (1) jax_petitionbook.php or (2) smileys.php.
CVE-2007-0335 EXPLOITDB text WRITEUP
Jax Petition Book 1.0.3.06 - Directory Traversal via Languagepack Parameter
Multiple directory traversal vulnerabilities in Jax Petition Book 1.0.3.06 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the languagepack parameter to (1) jax_petitionbook.php or (2) smileys.php.
CVE-2007-4101 EXPLOITDB text WRITEUP
Madoa Poll 1.1 - Remote File Inclusion via Madoa Parameter
Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php, (2) vote.php, and (3) admin.php.
EIP-2026-107331 EXPLOITDB text WORKING POC
Gallarific 1.1 - '/gallery.php' Arbitrary Delete/Edit Category
CVE-2007-4101 EXPLOITDB text WRITEUP
Madoa Poll 1.1 - Remote File Inclusion via Madoa Parameter
Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php, (2) vote.php, and (3) admin.php.
CVE-2007-4101 EXPLOITDB text WRITEUP
Madoa Poll 1.1 - Remote File Inclusion via Madoa Parameter
Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php, (2) vote.php, and (3) admin.php.
CVE-2007-4338 EXPLOITDB php WORKING POC
Ryan Haudenschilt Family Connections <0.9 - RCE
index.php in Ryan Haudenschilt Family Connections (FCMS) before 0.9 allows remote attackers to access an arbitrary account by placing the account's name in the value of an fcms_login_id cookie. NOTE: this can be leveraged for code execution via a POST with PHP code in the content parameter.
CVE-2008-2574 EXPLOITDB text WRITEUP
FlashBlog 0.31 beta - Unauthenticated Arbitrary File Upload via imgupload.php
Unrestricted file upload vulnerability in admin/Editor/imgupload.php in FlashBlog 0.31 beta allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in tus_imagenes/.
CVE-2007-2259 EXPLOITDB text WORKING POC
EsForum 3.0 - SQL Injection via idsalon Parameter
SQL injection vulnerability in forum.php in EsForum 3.0 allows remote attackers to execute arbitrary SQL commands via the idsalon parameter.
EIP-2026-106879 EXPLOITDB text WORKING POC
eNews 0.1 - 'delete.php' Arbitrary Delete Post
CVE-2007-0305 EXPLOITDB text WORKING POC
Okul Web Otomasyon Sistemi 4.0.1 - SQL Injection via etkinlikbak.asp id Parameter
SQL injection vulnerability in etkinlikbak.asp in Okul Web Otomasyon Sistemi 4.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-2561 EXPLOITDB text WORKING POC
fipsCMS 2.1 - SQL Injection via pid Parameter
SQL injection vulnerability in index.asp in fipsCMS 2.1 allows remote attackers to execute arbitrary SQL commands via the pid parameter, a different vector than CVE-2006-6115.