pokleyzz

14 exploits Active since Aug 2002
CVE-2003-0762 EXPLOITDB perl WORKING POC
Foxweb <2.5 - Remote Code Execution
Buffer overflow in (1) foxweb.dll and (2) foxweb.exe of Foxweb 2.5 allows remote attackers to execute arbitrary code via a long URL (PATH_INFO value).
EIP-2026-113286 EXPLOITDB perl WORKING POC
Webfroot Shoutbox 2.32 - Remote Command Execution
EIP-2026-113284 EXPLOITDB text WORKING POC
Webfroot Shoutbox 2.32 - 'URI' File Disclosure
CVE-2002-0516 EXPLOITDB bash WORKING POC
SquirrelMail <1.2.5 - Command Injection
SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.
CVE-2004-2350 EXPLOITDB php WORKING POC
phpBB 1.0-2.0.6 - SQL Injection via search_results Parameter
SQL injection vulnerability in search.php for phpBB 1.0 through 2.0.6 allows remote attackers to execute arbitrary SQL and gain privileges via the search_results parameter.
CVE-2004-0269 EXPLOITDB php WORKING POC
PHP-Nuke <= 6.9 - SQL Injection via Search Category or Web_Links Admin Parameter
SQL injection vulnerability in PHP-Nuke 6.9 and earlier, and possibly 7.x, allows remote attackers to inject arbitrary SQL code and gain sensitive information via (1) the category variable in the Search module or (2) the admin variable in the Web_Links module.
CVE-2005-2002 EXPLOITDB php WORKING POC
Mambo 4.5.2.2 - SQL Injection via User Rating Parameter
SQL injection vulnerability in content.php in Mambo 4.5.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user_rating parameter.
EIP-2026-107362 EXPLOITDB text WRITEUP
Geeklog 1.3.x - (Authenticated) SQL Injection
CVE-2002-1428 EXPLOITDB text WORKING POC
dotproject 0.2.1.5 - Unauthenticated Authentication Bypass via user_cookie Parameter
index.php in dotProject 0.2.1.5 allows remote attackers to bypass authentication via a cookie or URL with the user_cookie parameter set to 1.
EIP-2026-105686 EXPLOITDB text WORKING POC
Cafelog b2 0.6 - Remote File Inclusion
CVE-2003-0437 EXPLOITDB perl WORKING POC
mnogosearch 3.2.10 - Remote Code Execution via Long tmplt Parameter
Buffer overflow in search.cgi for mnoGoSearch 3.2.10 allows remote attackers to execute arbitrary code via a long tmplt parameter.
CVE-2003-0436 EXPLOITDB perl WORKING POC
mnogosearch 3.1.20 - Remote Code Execution via Long ul Parameter
Buffer overflow in search.cgi for mnoGoSearch 3.1.20 allows remote attackers to execute arbitrary code via a long ul parameter.
CVE-2002-1581 EXPLOITDB text WORKING POC
Mailreader.com <2.3.31 - Path Traversal
Directory traversal vulnerability in nph-mr.cgi in Mailreader.com 2.3.20 through 2.3.31 allows remote attackers to view arbitrary files via .. (dot dot) sequences and a null byte (%00) in the configLanguage parameter.
CVE-2003-1425 EXPLOITDB perl WORKING POC
cPanel 5.0 - Remote Code Execution via Guestbook.cgi Template Parameter
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.