x0r

54 exploits Active since Oct 2008
CVE-2009-0738 EXPLOITDB text WORKING POC
Auth Php 1.0 - SQL Injection via Username or Passwd Parameter
SQL injection vulnerability in login.php in Auth Php 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
CVE-2008-6294 EXPLOITDB text WORKING POC
Acc Statistics 1.1 - Unauthenticated Authentication Bypass via username_cookie
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."
CVE-2008-6861 EXPLOITDB text WORKING POC
Xigla Absolute Newsletter 6.0 and 6.1 - Unauthenticated Authentication Bypass via Cookie Manipulation
Xigla Software Absolute Newsletter 6.0 and 6.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
EIP-2026-100254 EXPLOITDB text WRITEUP
DMXReady BillboardManager 1.1 - Contents Change