x0kster

10 exploits Active since Apr 2005
CVE-2005-0413 EXPLOITDB text WORKING POC
MyPHP Forum 1.0 - SQL Injection via forum.php fid Parameter
Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the fid in forum.php, (2) the member parameter in member.php, (3) the email parameter in forgot.php, or (4) the nbuser or nbpass parameters in include.php. NOTE: it was later reported that vector 2 exists in 3.0 and earlier.
CVE-2005-3365 EXPLOITDB php WORKING POC
DCP-Portal <= 6 - SQL Injection via register.php name parameter
Multiple SQL injection vulnerabilities in DCP-Portal 6 and earlier allow remote attackers to execute arbitrary SQL commands, possibly requiring encoded characters, via (1) the name parameter in register.php, (2) the email parameter in lostpassword.php, (3) the year parameter in calendar.php, and the (4) cid parameter to index.php. NOTE: the mid parameter for forums.php is already associated with CVE-2005-0454. NOTE: the index.php/cid vector was later reported to affect 6.11.
CVE-2007-5060 EXPLOITDB html WORKING POC
XCMS - Cross-Site Request Forgery via Password Change Functionality
Cross-site request forgery (CSRF) vulnerability in the cpass functionality in an admin action in index.php in XCMS allows remote attackers to change arbitrary passwords via certain password_ and rpassword_ parameters, possibly related to timestamp values.
CVE-2007-6652 EXPLOITDB text WORKING POC
xcms < 1.83 - Remote Code Execution via testo_0 Parameter in cpie.php
cpie.php in XCMS 1.83 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct direct static code injection attacks and execute arbitrary code via the testo_0 parameter in a cpie admin action to index.php, which writes to dati/generali/footer.dtb (aka the XCMS footer).
CVE-2007-6664 EXPLOITDB perl WORKING POC
WebPortal CMS <0.6.0 - SQL Injection
SQL injection vulnerability in index.php in WebPortal CMS 0.6.0 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter.
CVE-2007-5052 EXPLOITDB text WRITEUP
Vigile CMS 1.8 - Cross-Site Scripting via Wiki Title Parameter or Download Cat Parameter
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Vigile CMS 1.8 allow remote attackers to inject arbitrary web script or HTML via a request to the wiki module with (1) the title parameter or (2) a "title=" sequence in the PATH_INFO, or a request to the download module with (3) the cat parameter or (4) a "cat=" sequence in the PATH_INFO.
CVE-2008-0133 EXPLOITDB php WORKING POC
Tribisur < 2.1 - SQL Injection via cat_main.php id Parameter or forum.php cat Parameter
Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to cat_main.php and the (2) cat parameter to forum.php in a liste action.
CVE-2007-6586 EXPLOITDB text WORKING POC
nicLOR-CMS - SQL Injection via sezione_news.php id Parameter
SQL injection vulnerability in sezione_news.php in nicLOR-CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a sezione page action to index.php.
CVE-2007-6667 EXPLOITDB text WORKING POC
MyPHP Forum < 3.0 - SQL Injection via FAQ ID Parameter
SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413.
CVE-2007-6575 EXPLOITDB text WORKING POC
MMSLamp - SQL Injection via idpro Parameter
SQL injection vulnerability in default.php in MMSLamp allows remote attackers to execute arbitrary SQL commands via the idpro parameter in a prodotti_dettaglio action.