x0r

54 exploits Active since Oct 2008
CVE-2008-6293 EXPLOITDB WORKING POC
Acc Real Estate 4.0 - Unauthenticated Authentication Bypass via username_cookie
admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie to "admin."
CVE-2009-0453 EXPLOITDB text WORKING POC
Online Grades 3.2.4 - Info Disclosure
Online Grades 3.2.4 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.
CVE-2009-0452 EXPLOITDB text WORKING POC
Online Grades 3.2.4 - SQL Injection
Multiple SQL injection vulnerabilities in parents/login.php in Online Grades 3.2.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pass parameter.
CVE-2009-0399 EXPLOITDB text WORKING POC
Chipmunk Blogger Script - Privilege Escalation
Chipmunk Blogger Script allows remote attackers to gain administrator privileges via a direct request to admin/reguser.php. NOTE: this is only a vulnerability when the administrator does not properly follow installation directions.
CVE-2009-0106 EXPLOITDB text WORKING POC
phpauctions - SQL Injection via profile.php user_id Parameter
SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
CVE-2008-6749 EXPLOITDB text WORKING POC
FlexPHPDirectory 0.0.1 - SQL Injection via checkuser or checkpass Parameters
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPDirectory 0.0.1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) checkuser and (2) checkpass parameters.
CVE-2008-6292 EXPLOITDB text WORKING POC
Acc Autos 4.0 - Unauthenticated Authentication Bypass via Cookie Manipulation
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) username_cookie to "admin," (2) right_cookie to "1," and (3) id_cookie to "1."
CVE-2009-4807 EXPLOITDB text WORKING POC
Graugon PHP Article Publisher 1.0 - SQL Injection via c or id Parameter
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.
CVE-2009-0863 EXPLOITDB text WORKING POC
S-Cms 1.1 - SQL Injection via id Parameter
SQL injection vulnerability in admin/delete_page.php in S-Cms 1.1 Stable allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-113391 EXPLOITDB text WORKING POC
Weight Loss Recipe Book 3.1 - Authentication Bypass
CVE-2008-6623 EXPLOITDB text WORKING POC
webbdomain post_card < 1.02 - SQL Injection via Username Parameter
SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka Web Postcards) 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.
CVE-2008-4752 EXPLOITDB text WORKING POC
TlNews 2.2 - Unauthenticated Authentication Bypass via tlNews_login Cookie
TlNews 2.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin.
CVE-2008-5065 EXPLOITDB text WORKING POC
Easy-script Tlguesbook - Authentication Bypass
TlGuestBook 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlGuestBook_login cookie to admin.
EIP-2026-112638 EXPLOITDB text WRITEUP
The Rat CMS Alpha 2 - 'download.php' Priviledge Escalation
CVE-2008-7003 EXPLOITDB text WORKING POC
The Rat CMS Alpha 2 - SQL Injection via login.php user_id and password Parameters
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote attackers to execute arbitrary SQL commands via the (1) user_id and (2) password parameter.
CVE-2008-4783 EXPLOITDB text WORKING POC
tlAds 1.0 - Unauthenticated Authentication Bypass via tlAds_login Cookie
tlAds 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin."
CVE-2009-0750 EXPLOITDB text WORKING POC
smNews - SQL Injection via Username Parameter
SQL injection vulnerability in login.php in the smNews example script for txtSQL 2.2 Final allows remote attackers to execute arbitrary SQL commands via the username parameter.
EIP-2026-112499 EXPLOITDB text WORKING POC
SurfMyTV Script 1.0 - 'view.php?id' SQL Injection
EIP-2026-112046 EXPLOITDB text WORKING POC
SilverNews 2.04 - Authentication Bypass / Local File Inclusion / Remote Code Execution
CVE-2009-0864 EXPLOITDB text WORKING POC
S-Cms 1.1 Stable - Unauthenticated Authentication Bypass via Login Cookie
S-Cms 1.1 Stable allows remote attackers to bypass authentication and obtain administrative access via an OK value for the login cookie.
CVE-2008-6237 EXPLOITDB text WORKING POC
Scripts For Sites Hotscripts-like Site - SQL Injection via software-description.php id Parameter
SQL injection vulnerability in software-description.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2009-0722 EXPLOITDB text WORKING POC
Potato News 1.0.0 - Unauthenticated Path Traversal via User Cookie Parameter
Directory traversal vulnerability in admin.php in Potato News 1.0.0 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the user cookie parameter.
CVE-2009-0107 EXPLOITDB text WORKING POC
phpauctions - Cross-Site Scripting via profile.php user_id Parameter
Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.
CVE-2008-6581 EXPLOITDB text WORKING POC
PhpAddEdit 1.3 - Unauthenticated Authentication Bypass via addedit Cookie
login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.
EIP-2026-110713 EXPLOITDB text WORKING POC
PHP Krazy Image Host Script 1.01 - 'id' SQL Injection