kaMtiEz

61 exploits Active since Sep 2009
CVE-2010-1051 EXPLOITDB WORKING POC
AudiStat 1.3 - SQL Injection via Year or Month Parameter
Multiple SQL injection vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) year and (2) month parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2010-0677 EXPLOITDB text WRITEUP
Katalog Stron Hurricane 1.3.5 - SQL Injection via Index.php Get Parameter
SQL injection vulnerability in index.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the get parameter.
CVE-2010-1050 EXPLOITDB text WORKING POC
AudiStat 1.3 - SQL Injection via mday Parameter
SQL injection vulnerability in index.php in AudiStat 1.3 allows remote attackers to execute arbitrary SQL commands via the mday parameter.
EIP-2026-113928 EXPLOITDB text WRITEUP
WordPress Plugin NextGEN Smooth Gallery 0.12 - Blind SQL Injection
EIP-2026-113715 EXPLOITDB text WORKING POC
WordPress Plugin EditorMonkey 2.5 - 'FCKeditor' Arbitrary File Upload
CVE-2010-0673 EXPLOITDB text WORKING POC
Copperleaf Photolog 0.16 - SQL Injection via postid Parameter
SQL injection vulnerability in cplphoto.php in the Copperleaf Photolog plugin 0.16, and possibly earlier, for WordPress allows remote attackers to execute arbitrary SQL commands via the postid parameter.
CVE-2009-4432 EXPLOITDB text WORKING POC
CodeMight VideoCMS 3.1 - SQL Injection
SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows remote attackers to execute arbitrary SQL commands via the v parameter in a video action.
EIP-2026-112514 EXPLOITDB text WORKING POC
Swiss Mango CMS - SQL Injection
CVE-2010-1856 EXPLOITDB text WRITEUP
RepairShop2 1.9.023 Trial - Cross-Site Scripting via prod Parameter
Cross-site scripting (XSS) vulnerability in index.php in RepairShop2 1.9.023 Trial, when magic_quotes_gpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the prod parameter in a products.details action.
CVE-2010-0799 EXPLOITDB text WORKING POC
phpunity.newsmanager - Path Traversal
Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.
CVE-2010-1089 EXPLOITDB text WORKING POC
PHP Trouble Ticket 2.2 - SQL Injection
SQL injection vulnerability in vedi_faq.php in PHP Trouble Ticket 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-111053 EXPLOITDB text WORKING POC
PhpFood CMS 2.00 - SQL Injection
EIP-2026-110008 EXPLOITDB text WORKING POC
Obsession-Design Image-Gallery 1.1 - 'display.php' Cross-Site Scripting
EIP-2026-109782 EXPLOITDB text WORKING POC
MYRE Classified - 'cat' SQL Injection
EIP-2026-109227 EXPLOITDB text WORKING POC
LuxCal Web Calendar 2.4.2/2.5.0 - SQL Injection
EIP-2026-109474 EXPLOITDB text WORKING POC
MindSculpt CMS - SQL Injection
CVE-2009-3491 EXPLOITDB text WORKING POC
Kinfusion SportFusion 0.2.2-0.2.3 - SQL Injection via cid[0] Parameter
SQL injection vulnerability in the Kinfusion SportFusion (com_sportfusion) component 0.2.2 through 0.2.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid[0] parameter in a teamdetail action to index.php.
CVE-2010-0678 EXPLOITDB text WRITEUP
Katalog Stron Hurricane 1.3.5 - Remote Code Execution via includes_directory Parameter
PHP remote file inclusion vulnerability in includes/moderation.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the includes_directory parameter.
EIP-2026-108829 EXPLOITDB text WORKING POC
Joomla! Component Photo Blog alpha 3 < alpha 3a - SQL Injection
CVE-2011-4570 EXPLOITDB text WORKING POC
Time Returns (com_timereturns) 2.0 - SQL Injection via id Parameter
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a timereturns action to index.php.
CVE-2009-4789 EXPLOITDB text WRITEUP
MojoBlog RC 0.15 - Remote Code Execution via mosConfig_absolute_path Parameter
Multiple PHP remote file inclusion vulnerabilities in the MojoBlog component RC 0.15 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) wp-comments-post.php and (2) wp-trackback.php.
CVE-2010-2507 EXPLOITDB text WORKING POC
com_picasa2gallery < 1.2.8 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Picasa2Gallery (com_picasa2gallery) component 1.2.8 and earlier for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1877 EXPLOITDB text WORKING POC
JTM Reseller (com_jtm) 1.9 Beta - SQL Injection via Author Parameter
SQL injection vulnerability in the JTM Reseller (com_jtm) component 1.9 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter in a search action to index.php.
CVE-2009-3438 EXPLOITDB text WORKING POC
JoomlaFacebook (com_facebook) - SQL Injection via id Parameter
SQL injection vulnerability in the JoomlaFacebook (com_facebook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a student action to index.php.
EIP-2026-108788 EXPLOITDB text WORKING POC
Joomla! Component Minitek FAQ Book 1.3 - 'id' SQL Injection