wishnusakti

5 exploits Active since Apr 2010
CVE-2010-1607 EXPLOITDB text WORKING POC
com_wmi 1.5.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in wmi.php in the Webmoney Web Merchant Interface (aka WMI or com_wmi) component 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
CVE-2010-1718 EXPLOITDB text WORKING POC
com_archeryscores 1.0.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in archeryscores.php in the Archery Scores (com_archeryscores) component 1.0.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
EIP-2026-108353 EXPLOITDB text WORKING POC
Joomla! Component com_frontenduseraccess - Local File Inclusion
CVE-2010-1653 EXPLOITDB text WORKING POC
Graphics (com_graphics) 1.0.6 and 1.5.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
CVE-2014-8295 EXPLOITDB text WORKING POC
Bacula-Web 5.2.10 - SQL Injection via Joblogs JobID Parameter
SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to execute arbitrary SQL commands via the jobid parameter.