retrog

4 exploits Active since Mar 2007
CVE-2006-7079 EXPLOITDB CRITICAL php WORKING POC
exV2 content_management_system < 2.0.4.3 - Remote Code Execution via $xoopsOption['pagetype'] Variable Manipulation
Variable extraction vulnerability in include/common.php in exV2 2.0.4.3 and earlier allows remote attackers to overwrite arbitrary program variables and conduct directory traversal attacks to execute arbitrary code by modifying the $xoopsOption['pagetype'] variable.
CVSS 9.8
CVE-2007-2079 EXPLOITDB php WORKING POC
XAMPP < 1.6.0a - Remote Code Execution via ADONewConnection Host Parameter
The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP.
CVE-2007-2080 EXPLOITDB php WORKING POC
XAMPP 1.6.0a - SQL Injection via Test Scripts
Multiple SQL injection vulnerabilities in XAMPP 1.6.0a for Windows allow remote attackers to execute arbitrary SQL commands via unspecified vectors in certain test scripts.
CVE-2006-7080 EXPLOITDB php WORKING POC
exV2 CMS < 2.0.4.3 - Directory Traversal & File Deletion via Avatar Upload
Directory traversal vulnerability in the avatar upload feature in exV2 2.0.4.3 and earlier allows remote attackers to delete arbitrary files via ".." sequences in the old_avatar parameter.