n0m3rcy

2 exploits Active since Apr 2005

CVE-2006-2152 EXPLOITDB perl WORKING POC

phpBB Advanced Guestbook <2.4.0 - RCE

PHP remote file inclusion vulnerability in admin/addentry.php in phpBB Advanced Guestbook 2.4.0 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via the phpbb_root_path parameter.

View Code

CVE-2005-1287 EXPLOITDB text WORKING POC

BK Forum < 4 - SQL Injection via Member ID or Forum Parameter

Multiple SQL injection vulnerabilities in BK Forum 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to member.asp, (2) forum parameter to forum.asp, or (3) various parameters in register.asp.

View Code