Skip to content

gosirys/Exploits

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Exploits

Early work, advisories and exploits from 2008-2011.
Mirror: https://www.exploit-db.com/?author=1482

EZ-Shop 1.02 - Lateral SQL Injection

Mirror: https://www.exploit-db.com/exploits/17170

S40 CMS 0.4.2b - Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/17129

WebFileExplorer 3.1 - Authentication Bypass

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1314
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1323
Mirror: https://www.exploit-db.com/exploits/8382

X-Forum 0.6.2 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1508
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1512
Mirror: https://www.exploit-db.com/exploits/8317

My Simple Forum 7.1 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8298

PhotoStand 1.2.0 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8289

Syzygy CMS 0.3 - Local File Inclusion / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8276

Demium CMS 0.2.1b - Multiple Vulnerabilities

Mirror: https://www.exploit-db.com/exploits/8124

Pyrophobia 2.1.3.1 - Local File Inclusion Command Execution

Mirror: https://www.exploit-db.com/exploits/8095

Free Arcade Script 1.0 - Local File Inclusion Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0731
Mirror: https://www.exploit-db.com/exploits/8094

Graugon Forum 1 - 'id' Command Injection / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8089

simplePms CMS 0.1.4 - Local File Inclusion / Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8061

CmsFaethon 2.2.0 - 'item' SQL Injection

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-5094
Mirror: https://www.exploit-db.com/exploits/8054

BlogWrite 0.91 - Remote File Disclosure / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8053

InselPhoto 1.1 - 'query' SQL Injection

Mirror: https://www.exploit-db.com/exploits/8045

Bloggeruniverse 2.0 Beta - 'id' SQL Injection

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-5090
Mirror: https://www.exploit-db.com/exploits/8043

Fluorine CMS 0.1 rc 1 - File Disclosure / SQL Injection / Command Execution

Mirror: https://www.exploit-db.com/exploits/8036

Hedgehog-CMS 1.21 - Local File Inclusion / Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8028

Simple PHP News 1.0 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0610
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0643
Mirror: https://www.exploit-db.com/exploits/7999

PHPbbBook 1.3 - 'bbcode.php?l' Local File Inclusion

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0442
Mirror: https://www.exploit-db.com/exploits/7980

TxtBlog 1.0 Alpha - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/7967

eVision CMS 2.0 - Remote Code Execution

Mirror: https://www.exploit-db.com/exploits/7947

LinPHA Photo Gallery 2.0 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/7837

Gallery Kys 1.0 - Admin Password Disclosure / Persistent Cross-Site Scripting

Mirror: https://www.exploit-db.com/exploits/7829

Fhimage 1.2.1 - Remote Command Execution (mq = off)

Mirror: https://www.exploit-db.com/exploits/7821

Fhimage 1.2.1 - Remote Index Change

Mirror: https://www.exploit-db.com/exploits/7820

PHP Photo Album 0.8b - 'preview' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7786
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0423

phosheezy 2.0 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0250
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0251
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0275
Mirror: https://www.exploit-db.com/exploits/7780

Photobase 1.2 - 'Language' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7733

Flexcustomer 0.0.6 - Admin Authentication Bypass / Possible PHP Code Writing

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6761
Mirror: https://www.exploit-db.com/exploits/7622

Silentum LoginSys 1.0.0 - Insecure Cookie Handling

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6763
Mirror: https://www.exploit-db.com/exploits/7601

Flexphplink Pro - Arbitrary File Upload

Mirror: https://www.exploit-db.com/exploits/7600
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6731

OwenPoll 1.0 - Insecure Cookie Handling

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6143
Mirror: https://www.exploit-db.com/exploits/7597

yourplace 1.0.2 - Multiple Vulnerabilities / Remote Code Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6769
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6770
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6771
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6772
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6773
Mirror: https://www.exploit-db.com/exploits/7545

myPHPscripts Login Session 2.0 - Cross-Site Scripting / Database Disclosure

Mirror: https://www.exploit-db.com/exploits/7526
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5854
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5855

Calendar Script 1.1 - Insecure Cookie Handling

Mirror: https://www.exploit-db.com/exploits/7513
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5738

2532/Gigs 1.2.2 Stable - Multiple Vulnerabilities

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6901
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6902
Mirror: https://www.exploit-db.com/exploits/7510

RSMScript 1.21 - Cross-Site Scripting / Insecure Cookie Handling

Mirror: https://www.exploit-db.com/exploits/7497
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6743

WorkSimple 1.2.1 - Remote File Inclusion / Sensitive Data Disclosure

Mirror: https://www.exploit-db.com/exploits/7481
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5764
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5765

ediatheka 4.2 - 'lang' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7458
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5894

Simple Text-File Login script (SiTeFiLo) 1.0.6 - File Disclosure / Remote File Inclusion

Mirror: https://www.exploit-db.com/exploits/7444
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5762
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5763

FlexPHPNews 0.0.6 / PRO - Authentication Bypass

Mirror: https://www.exploit-db.com/exploits/7443
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5927

Butterfly ORGanizer 2.0.1 - 'id' SQL Injection

Mirror: https://www.exploit-db.com/exploits/7411
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6311
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6328

ProQuiz 1.0 - Authentication Bypass

Mirror: https://www.exploit-db.com/exploits/7397
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6312
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6327

Nitrotech 0.0.3a - Remote File Inclusion / SQL Injection

Mirror: https://www.exploit-db.com/exploits/7218
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5333
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5334

wPortfolio 0.3 - Arbitrary File Upload

Mirror: https://www.exploit-db.com/exploits/7165
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5220

About

Archive: exploits/advisories from 2008-2011

Topics

Resources

License

Stars

Watchers

Forks

Languages