nuclear

16 exploits Active since Jul 2008
CVE-2008-5778 EXPLOITDB WORKING POC
Free Links Directory Script 1.2a - SQL Injection
SQL injection vulnerability in report.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
CVE-2008-5779 EXPLOITDB WORKING POC
Free Links Directory Script <1.2a - SQL Injection
SQL injection vulnerability in lpro.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-5088 EXPLOITDB text WORKING POC
IdeaCart 0.02 - SQL Injection via cID Parameter
SQL injection vulnerability in secure/index.php in IdeaCart 0.02 allows remote attackers to execute arbitrary SQL commands via the cID parameter.
CVE-2009-0293 EXPLOITDB text WORKING POC
Wazzum Dating Software - SQL Injection
SQL injection vulnerability in profile_view.php in Wazzum Dating Software, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the userid parameter.
EIP-2026-111766 EXPLOITDB text WORKING POC
Revou Twitter Clone - Cross-Site Scripting / SQL Injection
CVE-2008-6313 EXPLOITDB text WORKING POC
phpAddEdit 1.3 - Path Traversal and Remote File Inclusion via editform Parameter
Directory traversal vulnerability in addedit-render.php in phpAddEdit 1.3, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a URL in the editform parameter. NOTE: PHP remote file inclusion attacks are also likely.
CVE-2008-3599 EXPLOITDB text WORKING POC
OpenImpro 1.1 - SQL Injection via image.php id Parameter
SQL injection vulnerability in image.php in OpenImpro 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-0384 EXPLOITDB text WORKING POC
OwnRS CMS 1.2 - SQL Injection via autor.php id Parameter
SQL injection vulnerability in autor.php in OwnRS CMS 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-5089 EXPLOITDB text WORKING POC
IdeaCart 0.02 and 0.02a - Path Traversal via Page Parameter
Directory traversal vulnerability in index.php in IdeaCart 0.02 and 0.02a allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.
CVE-2009-0327 EXPLOITDB text WORKING POC
Free Bible Search PHP Script 1.0 - SQL Injection
SQL injection vulnerability in readbible.php in Free Bible Search PHP Script 1.0 allows remote attackers to execute arbitrary SQL commands via the version parameter.
CVE-2009-0299 EXPLOITDB text WORKING POC
Groone GLinks 2.1 - SQL Injection via Cat Parameter
SQL injection vulnerability in index.php in Groone GLinks 2.1 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
CVE-2008-5928 EXPLOITDB text WORKING POC
Free Links Directory Script 1.2a - SQL Injection
SQL injection vulnerability in redir.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-5779 EXPLOITDB text WORKING POC
Free Links Directory Script <1.2a - SQL Injection
SQL injection vulnerability in lpro.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-106415 EXPLOITDB text WORKING POC
Den Dating 9.01 - 'txtlookgender' SQL Injection
CVE-2008-3355 EXPLOITDB text WORKING POC
Camera Life 2.6.2 - SQL Injection via id Parameter in sitemap.xml.php
SQL injection vulnerability in sitemap.xml.php in Camera Life 2.6.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
CVE-2009-0324 EXPLOITDB text WORKING POC
BibCiter 1.4 - SQL Injection via idp, idc, or idu Parameter
Multiple SQL injection vulnerabilities in BibCiter 1.4 allow remote attackers to execute arbitrary SQL commands via the (1) idp parameter to reports/projects.php, the (2) idc parameter to reports/contacts.php, and the (3) idu parameter to reports/users.php.