r0t3d3Vil

117 exploits Active since Nov 2005
CVE-2005-4016 EXPLOITDB text WRITEUP
Widget Property 1.1.19 - SQL Injection via property_id Parameter
SQL injection vulnerability in Widget Property 1.1.19 allows remote attackers to execute arbitrary SQL commands via the (1) property_id, (2) zip_code, (3) property_type_id, (4) price, and (5) city_id parameters to property.php.
CVE-2005-4240 EXPLOITDB text WRITEUP
VCD-db <= 0.98 - SQL Injection via Search Parameter
SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter.
CVE-2005-4241 EXPLOITDB text WRITEUP
VCD-db <= 0.98 - Cross-Site Scripting via Batch Parameter
Cross-site scripting (XSS) vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter.
CVE-2005-4035 EXPLOITDB text WRITEUP
Web4Future eCommerce Enterprise Edition <2.1 - SQL Injection
Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; and the (4) grp and (5) cat parameters to index.php.
CVE-2005-4035 EXPLOITDB text WRITEUP
Web4Future eCommerce Enterprise Edition <2.1 - SQL Injection
Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; and the (4) grp and (5) cat parameters to index.php.
CVE-2005-4035 EXPLOITDB text WRITEUP
Web4Future eCommerce Enterprise Edition <2.1 - SQL Injection
Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; and the (4) grp and (5) cat parameters to index.php.
CVE-2005-3833 EXPLOITDB text WRITEUP
Tunez <= 1.21 - SQL Injection via song_id Parameter
SQL injection vulnerability in songinfo.php in Tunez 1.21 and earlier allows remote attackers to execute arbitrary SQL commands via the song_id parameter.
CVE-2005-3834 EXPLOITDB text WRITEUP
Tunez 1.21 - Cross-Site Scripting via searchFor Parameter
Cross-site scripting (XSS) vulnerability in search.php in Tunez 1.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchFor parameter.
CVE-2005-4496 EXPLOITDB text WRITEUP
SyntaxCMS < 1.2.1 - Cross-Site Scripting via Search Query Parameter
Cross-site scripting (XSS) vulnerability in search in SyntaxCMS 1.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
CVE-2005-4019 EXPLOITDB text WRITEUP
Relative Real Estate Systems <1.02 - SQL Injection
SQL injection vulnerability in index.php in Relative Real Estate Systems 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the mls parameter.
CVE-2005-4489 EXPLOITDB text WRITEUP
Scoop < 1.1_rc1 - Cross-Site Scripting via Type and Count Parameters
Cross-site scripting (XSS) vulnerability in Scoop 1.1 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) type and (2) count parameters, and (3) the query string in a story.
CVE-2005-4018 EXPLOITDB text WRITEUP
Landshop Real Estate Commerce System <= 0.6.3 - SQL Injection via ls.php Parameters
SQL injection vulnerability in ls.php in Landshop Real Estate Commerce System 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) start, (2) search_order, (3) search_type, (4) search_area, and (5) keyword parameters.
CVE-2005-4489 EXPLOITDB text WRITEUP
Scoop < 1.1_rc1 - Cross-Site Scripting via Type and Count Parameters
Cross-site scripting (XSS) vulnerability in Scoop 1.1 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) type and (2) count parameters, and (3) the query string in a story.
CVE-2005-4228 EXPLOITDB text WRITEUP
phpwebgallery < 1.7.2 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to comments.php, (4) the search parameter to category.php, and (5) image_id parameter to picture.php. NOTE: it was later reported that the comments.php/sort_by vector also affects 1.7.2 and earlier.
CVE-2005-4228 EXPLOITDB text WRITEUP
phpwebgallery < 1.7.2 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to comments.php, (4) the search parameter to category.php, and (5) image_id parameter to picture.php. NOTE: it was later reported that the comments.php/sort_by vector also affects 1.7.2 and earlier.
CVE-2005-4001 EXPLOITDB text WRITEUP
phpYellowTM Pro and Lite Edition 5.33 - SQL Injection via Haystack or Ckey Parameter
Multiple SQL injection vulnerabilities in phpYellowTM Pro Edition and Lite Edition 5.33 allow remote attackers to execute arbitrary SQL commands via the (1) haystack parameter to search_result.php or (2) ckey parameter to print_me.php.
CVE-2005-4228 EXPLOITDB text WRITEUP
phpwebgallery < 1.7.2 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to comments.php, (4) the search parameter to category.php, and (5) image_id parameter to picture.php. NOTE: it was later reported that the comments.php/sort_by vector also affects 1.7.2 and earlier.
CVE-2005-4001 EXPLOITDB text WRITEUP
phpYellowTM Pro and Lite Edition 5.33 - SQL Injection via Haystack or Ckey Parameter
Multiple SQL injection vulnerabilities in phpYellowTM Pro Edition and Lite Edition 5.33 allow remote attackers to execute arbitrary SQL commands via the (1) haystack parameter to search_result.php or (2) ckey parameter to print_me.php.
CVE-2005-4479 EXPLOITDB text WRITEUP
phpslash <= 0.8.1 - SQL Injection via article.php story_id Parameter
SQL injection vulnerability in article.php in phpSlash 0.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the story_id parameter.
CVE-2005-4239 EXPLOITDB text WORKING POC
PHP JackKnife < 2.21 - Cross-Site Scripting via sKeywords Parameter
Cross-site scripting (XSS) vulnerability in Search/DisplayResults.php in PHP JackKnife 2.21 and earlier allows remote attackers to inject arbitrary web script or HTML via URL-encoded values in the sKeywords parameter.
CVE-2005-4478 EXPLOITDB text WRITEUP
papoo < 2.1.2 - SQL Injection via menuid forumid or reporeid_print Parameter
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the (2) forumid and (3) reporeid_print parameters to (c) print.php.
CVE-2005-3948 EXPLOITDB text WRITEUP
phpalbum < 0.2.3 - Directory Traversal via cmd or var1 Parameters
Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.
CVE-2005-4477 EXPLOITDB text WRITEUP
papaya CMS <= 4.0.4 - Cross-Site Scripting via bab[searchfor] Parameter
Cross-site scripting (XSS) vulnerability in papaya CMS 4.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the bab[searchfor] parameter.
CVE-2005-4478 EXPLOITDB text WRITEUP
papoo < 2.1.2 - SQL Injection via menuid forumid or reporeid_print Parameter
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the (2) forumid and (3) reporeid_print parameters to (c) print.php.
CVE-2005-4329 EXPLOITDB text WRITEUP
PHP Arena paFileDB Extreme Edition <RC 5 - SQL Injection
SQL injection vulnerability in pafiledb.php in PHP Arena paFileDB Extreme Edition RC 5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) newsid and (2) id parameter.