make0day

7 exploits Active since Feb 2009
EIP-2026-114621 EXPLOITDB text WORKING POC
ZeroBoardXE 1.1.5 (09.01.22) - Cross-Site Scripting
EIP-2026-114620 EXPLOITDB text WRITEUP
Zeroboard4 pl8 (07.12.17) - Multiple Vulnerabilities
CVE-2009-0441 EXPLOITDB text WORKING POC
TECHNOTE 7.2 - RCE
PHP remote file inclusion vulnerability in skin_shop/standard/2_view_body/body_default.php in TECHNOTE 7.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the shop_this_skin_path parameter, a different vector than CVE-2008-4138.
EIP-2026-111769 EXPLOITDB text WORKING POC
rgboard 4 5p1 (07.07.27) - Multiple Vulnerabilities
EIP-2026-109431 EXPLOITDB html WORKING POC
MetaBBS 0.11 - Administration Settings Authentication Bypass
EIP-2026-107442 EXPLOITDB text WORKING POC
GNUBoard 4.31.04 (09.01.30) - Multiple Local/Remote Vulnerabilities
CVE-2009-0444 EXPLOITDB text WORKING POC
GRBoard 1.8 - Code Injection
Multiple PHP remote file inclusion vulnerabilities in GRBoard 1.8, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) theme parameter to (a) 179_squarebox_pds_list/view.php, (b) 179_squarebox_minishop_expand/view.php, (c) 179_squarebox_gallery_list_pds/view.php, (d) 179_squarebox_gallery_list/view.php, (e) 179_squarebox_gallery/view.php, (f) 179_squarebox_board_swfupload/view.php, (g) 179_squarebox_board_expand/view.php, (h) 179_squarebox_board_basic_with_grcode/view.php, (i) 179_squarebox_board_basic/view.php, (j) 179_simplebar_pds_list/view.php, (k) 179_simplebar_notice/view.php, (l) 179_simplebar_gallery_list_pds/view.php, (m) 179_simplebar_gallery/view.php, and (n) 179_simplebar_basic/view.php in theme/; the (2) path parameter to (o) latest/sirini_gallery_latest/list.php; and the (3) grboard parameter to (p) include.php and (q) form_mail.php.