snatcher

6 exploits Active since Apr 2006
CVE-2006-1837 EXPLOITDB php WORKING POC
Fuju News 1.0 - SQL Injection via ID Parameter
SQL injection vulnerability in archiv2.php in Fuju News 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.
CVE-2006-1694 EXPLOITDB php WORKING POC
XBrite Members <1.1 - SQL Injection
SQL injection vulnerability in members.php in XBrite Members 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-1838 EXPLOITDB php WORKING POC
Fuju News 1.0 - Unauthenticated Authentication Bypass via Cookie
edit_kategorie.php in Fuju News 1.0 allows remote attackers to bypass authentication by setting the authorized cookie.
CVE-2006-1710 EXPLOITDB text WRITEUP
Design Nation DNGuestbook 2.0 - SQL Injection
SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) email and (2) id parameters.
CVE-2006-1708 EXPLOITDB php WORKING POC
Clansys 1.1 - SQL Injection via member.php showid Parameter
SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php.
CVE-2006-1917 EXPLOITDB php WORKING POC
Blackorpheus ClanMemberSkript 1.0 - SQL Injection via userID Parameter
SQL injection vulnerability in member.php in Blackorpheus ClanMemberSkript 1.0 allows remote attackers to execute arbitrary SQL commands via the userID parameter.