indoushka

307 exploits Active since Apr 2004
EIP-2026-111147 EXPLOITDB text WORKING POC
PHPMyCart 1.3 - Cross-Site Scripting / Authentication Bypass
EIP-2026-111007 EXPLOITDB text WRITEUP
PHPCart 3.1.2 - 'search.php' Cross-Site Scripting
EIP-2026-110924 EXPLOITDB text WORKING POC
phpAuction - Cross-Site Scripting
EIP-2026-110934 EXPLOITDB text WRITEUP
phPay 2.2a - Backup
CVE-2009-4469 EXPLOITDB text WORKING POC
phpPowerCards 2.0 - Cross-Site Scripting via PATH_INFO, archiv, or subcat Parameter
Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, the (2) archiv parameter, and the (3) subcat parameter.
EIP-2026-111204 EXPLOITDB text WRITEUP
PHPShop 0.6 - Bypass
EIP-2026-110780 EXPLOITDB text WORKING POC
PHP Uploader Downloader 2.0 - Cross-Site Scripting
EIP-2026-110779 EXPLOITDB text WRITEUP
PHP Uploader Downloader 2.0 - Arbitrary File Upload
EIP-2026-110667 EXPLOITDB text WRITEUP
PHP Classifieds 6.09 - E-mail Dump
EIP-2026-110655 EXPLOITDB text WORKING POC
PHP Banner Exchange 1.2 - 'signupconfirm.php' Cross-Site Scripting
EIP-2026-110698 EXPLOITDB text WRITEUP
PHP File Uploader - Arbitrary File Upload
EIP-2026-110618 EXPLOITDB text WORKING POC
PhotoKorn 1.542 - Cross-Site Scripting / Remote File Inclusion
EIP-2026-110701 EXPLOITDB text WORKING POC
PHP Football 1.0 - Cross-Site Scripting
EIP-2026-110641 EXPLOITDB text WORKING POC
PHP Advanced Transfer Manager 1.10 - Arbitrary File Upload
CVE-2005-0952 EXPLOITDB text WORKING POC
PaFileDB 3.1 - Cross-Site Scripting via id Parameter
Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
EIP-2026-110507 EXPLOITDB text WORKING POC
PBBoard 2.0.5 - Multiple Vulnerabilities
EIP-2026-110712 EXPLOITDB text WORKING POC
PHP Jokesite 2.0 - exec Command
EIP-2026-110551 EXPLOITDB text WORKING POC
Persian E107 - Cross-Site Scripting
CVE-2012-1200 EXPLOITDB text WRITEUP
Nova CMS - Remote File Inclusion via Multiple Parameter Injection
Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote attackers to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to administrator/modules/moduleslist.php, (3) filename parameter to includes/function/gets.php, or (4) conf[blockfile] parameter to includes/function/usertpl.php.
EIP-2026-110390 EXPLOITDB text WRITEUP
osCSS 1.2.1 - Database Backups Disclosure
EIP-2026-109989 EXPLOITDB text WORKING POC
Nuked-klaN 1.7.7 - Remote File Inclusion
EIP-2026-110354 EXPLOITDB text WORKING POC
osCommerce - Arbitrary File Upload / File Disclosure
EIP-2026-110371 EXPLOITDB text WRITEUP
osCommerce 2.2rc2a - Bypass/Create and Download Backup
EIP-2026-110389 EXPLOITDB text WORKING POC
osCSS 1.2.1 - Arbitrary File Upload
EIP-2026-109992 EXPLOITDB text WORKING POC
Nuked-klaN SP4 - Remote File Inclusion