preth00nker

7 exploits Active since Jul 2006
CVE-2006-4523 EXPLOITDB c++ WORKING POC
2Wire HomePortal and OfficePortal - Denial of Service via CRLF Sequence in GET Request
The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote attackers to cause a denial of service (crash) via a CRLF sequence in a GET request.
CVE-2007-2487 EXPLOITDB c WORKING POC
AtomixMP3 - Stack-Based Buffer Overflow via Long MP3 Filename
Stack-based buffer overflow in AtomixMP3 allows remote attackers to execute arbitrary code via a long filename in an MP3 file, a different vector than CVE-2006-6287.
CVE-2006-4293 EXPLOITDB text WRITEUP
cPanel 10 - Cross-Site Scripting via dir Parameter in dohtaccess.html or file Parameter in editit.html/showfile.html
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote attackers to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.
CVE-2006-4293 EXPLOITDB text WRITEUP
cPanel 10 - Cross-Site Scripting via dir Parameter in dohtaccess.html or file Parameter in editit.html/showfile.html
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote attackers to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.
CVE-2006-4293 EXPLOITDB text WRITEUP
cPanel 10 - Cross-Site Scripting via dir Parameter in dohtaccess.html or file Parameter in editit.html/showfile.html
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote attackers to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.
CVE-2006-3337 EXPLOITDB text WORKING POC
cPanel < 10.8.2_current_118 - Cross-Site Scripting via File Parameter
Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and earlier allows remote attackers to inject arbitrary web script or HTML via the file parameter.
CVE-2009-3962 EXPLOITDB c++ WORKING POC
2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, 2701HG-T - Denial of Service via %0d%0a Sequence in Page Parameter
The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.