x0r

54 exploits Active since Oct 2008
CVE-2008-6293 EXPLOITDB WORKING POC
Accscripts Acc Real Estate - Access Control
admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie to "admin."
CVE-2009-0453 EXPLOITDB text WORKING POC
Online Grades 3.2.4 - Info Disclosure
Online Grades 3.2.4 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.
CVE-2009-0452 EXPLOITDB text WORKING POC
Online Grades 3.2.4 - SQL Injection
Multiple SQL injection vulnerabilities in parents/login.php in Online Grades 3.2.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pass parameter.
CVE-2009-0399 EXPLOITDB text WORKING POC
Chipmunk Blogger Script - Privilege Escalation
Chipmunk Blogger Script allows remote attackers to gain administrator privileges via a direct request to admin/reguser.php. NOTE: this is only a vulnerability when the administrator does not properly follow installation directions.
CVE-2009-0106 EXPLOITDB text WORKING POC
PHPAuctions - SQL Injection
SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
CVE-2008-6749 EXPLOITDB text WORKING POC
China-on-site Flexphpdirectory - SQL Injection
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPDirectory 0.0.1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) checkuser and (2) checkpass parameters.
CVE-2008-6292 EXPLOITDB text WORKING POC
Accscripts Acc Autos - Access Control
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) username_cookie to "admin," (2) right_cookie to "1," and (3) id_cookie to "1."
CVE-2009-4807 EXPLOITDB text WORKING POC
Graugon Php Article Publisher - SQL Injection
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.
CVE-2009-0863 EXPLOITDB text WORKING POC
Matteoiammarrone S-cms - SQL Injection
SQL injection vulnerability in admin/delete_page.php in S-Cms 1.1 Stable allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-113391 EXPLOITDB text WORKING POC
Weight Loss Recipe Book 3.1 - Authentication Bypass
CVE-2008-6623 EXPLOITDB text WORKING POC
Webbdomain Post Card < 1.02 - SQL Injection
SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka Web Postcards) 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.
CVE-2008-4752 EXPLOITDB text WORKING POC
Tech Logic Tlnews - Authentication Bypass
TlNews 2.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin.
CVE-2008-5065 EXPLOITDB text WORKING POC
Easy-script Tlguesbook - Authentication Bypass
TlGuestBook 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlGuestBook_login cookie to admin.
EIP-2026-112638 EXPLOITDB text WRITEUP
The Rat CMS Alpha 2 - 'download.php' Priviledge Escalation
CVE-2008-7003 EXPLOITDB text WORKING POC
The-rat-cms - SQL Injection
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote attackers to execute arbitrary SQL commands via the (1) user_id and (2) password parameter.
CVE-2008-4783 EXPLOITDB text WORKING POC
Easy-script Tlads - Authentication Bypass
tlAds 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin."
CVE-2009-0750 EXPLOITDB text WORKING POC
txtSQL 2.2 Final - SQL Injection
SQL injection vulnerability in login.php in the smNews example script for txtSQL 2.2 Final allows remote attackers to execute arbitrary SQL commands via the username parameter.
EIP-2026-112499 EXPLOITDB text WORKING POC
SurfMyTV Script 1.0 - 'view.php?id' SQL Injection
EIP-2026-112046 EXPLOITDB text WORKING POC
SilverNews 2.04 - Authentication Bypass / Local File Inclusion / Remote Code Execution
CVE-2009-0864 EXPLOITDB text WORKING POC
Matteoiammarrone S-cms - Authentication Bypass
S-Cms 1.1 Stable allows remote attackers to bypass authentication and obtain administrative access via an OK value for the login cookie.
CVE-2008-6237 EXPLOITDB text WORKING POC
Scripts-for-sites Hotscripts-like Site - SQL Injection
SQL injection vulnerability in software-description.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-0722 EXPLOITDB text WORKING POC
Potato News 1.0.0 - Path Traversal
Directory traversal vulnerability in admin.php in Potato News 1.0.0 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the user cookie parameter.
CVE-2009-0107 EXPLOITDB text WORKING POC
PHPAuctions - XSS
Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.
CVE-2008-6581 EXPLOITDB text WORKING POC
Phpaddedit - Authentication Bypass
login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.
EIP-2026-110713 EXPLOITDB text WORKING POC
PHP Krazy Image Host Script 1.01 - 'id' SQL Injection