pokleyzz sakamaniaka - Security Researcher - Exploit Intelligence Platform

CVE-2002-0516 EXPLOITDB bash WORKING POC

SquirrelMail <1.2.5 - Command Injection

SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.

View Code

CVE-2002-2015 EXPLOITDB text WORKING POC

PostNuke 0.703 - Remote File Inclusion via user.php caselist Parameter

PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist parameter.

View Code

CVE-2002-0539 EXPLOITDB text WORKING POC

Demarc PureSecure 1.05 - SQL Injection via s_key Cookie

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.

View Code

CVE-2002-0492 EXPLOITDB text WORKING POC

DCShop 1.002 Beta - Arbitrary File Deletion via Database Parameter Null Character

dcshop.cgi in DCShop 1.002 Beta allows remote attackers to delete arbitrary setup files via a null character in the database parameter.

View Code