Skip to content

gosirys/Exploits

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
2532Gigs 1.2.2 Stable - Multiple Vulnerabilities.txt
2532Gigs 1.2.2 Stable - Multiple Vulnerabilities.txt
 
 
BlogWrite 0.91 - Remote File Disclosure SQL Injection.pl
BlogWrite 0.91 - Remote File Disclosure SQL Injection.pl
 
 
Bloggeruniverse 2.0 Beta - SQL Injection.pl
Bloggeruniverse 2.0 Beta - SQL Injection.pl
 
 
Butterfly ORGanizer 2.0.1 SQL Injection.txt
Butterfly ORGanizer 2.0.1 SQL Injection.txt
 
 
Calendar Script 1.1 - Insecure Cookie Handling.txt
Calendar Script 1.1 - Insecure Cookie Handling.txt
 
 
CmsFaethon 2.2.0 - SQL Injection.pl
CmsFaethon 2.2.0 - SQL Injection.pl
 
 
Demium CMS 0.2.1b - Multiple Vulnerabilities.txt
Demium CMS 0.2.1b - Multiple Vulnerabilities.txt
 
 
EZ-Shop 1.02 - Lateral SQL Injection.txt
EZ-Shop 1.02 - Lateral SQL Injection.txt
 
 
Fhimage 1.2.1 - Remote Command Execution.pl
Fhimage 1.2.1 - Remote Command Execution.pl
 
 
Fhimage 1.2.1 - Remote Index Change.pl
Fhimage 1.2.1 - Remote Index Change.pl
 
 
FlexPHPNews 0.0.6 PRO - Authentication Bypass.txt
FlexPHPNews 0.0.6 PRO - Authentication Bypass.txt
 
 
Flexcustomer 0.0.6 - Admin Authentication Bypass Possible PHP Code Writing.txt
Flexcustomer 0.0.6 - Admin Authentication Bypass Possible PHP Code Writing.txt
 
 
Flexphplink Pro - Arbitrary File Upload.pl
Flexphplink Pro - Arbitrary File Upload.pl
 
 
Fluorine CMS 0.1 rc 1 - File Disclosure SQL Injection Command Execution.pl
Fluorine CMS 0.1 rc 1 - File Disclosure SQL Injection Command Execution.pl
 
 
Free Arcade Script 1.0 - Local File Inclusion Command Execution.pl
Free Arcade Script 1.0 - Local File Inclusion Command Execution.pl
 
 
Gallery Kys 1.0 - Admin Password Disclosure Persistent Cross-Site Scripting.txt
Gallery Kys 1.0 - Admin Password Disclosure Persistent Cross-Site Scripting.txt
 
 
Graugon Forum 1 - 'id' Command Injection SQL Injection.pl
Graugon Forum 1 - 'id' Command Injection SQL Injection.pl
 
 
Hedgehog-CMS 1.21 - Local File Inclusion Remote Command Execution.pl
Hedgehog-CMS 1.21 - Local File Inclusion Remote Command Execution.pl
 
 
InselPhoto 1.1 - SQL Injection.pl
InselPhoto 1.1 - SQL Injection.pl
 
 
LICENSE
LICENSE
 
 
LinPHA Photo Gallery 2.0 - Remote Command Execution.pl
LinPHA Photo Gallery 2.0 - Remote Command Execution.pl
 
 
Mediatheka 4.2 Local File Inclusion.txt
Mediatheka 4.2 Local File Inclusion.txt
 
 
My Simple Forum 7.1 - Remote Command Execution.pl
My Simple Forum 7.1 - Remote Command Execution.pl
 
 
Nitrotech 0.0.3a - Remote File Inclusion SQL Injection.txt
Nitrotech 0.0.3a - Remote File Inclusion SQL Injection.txt
 
 
OwenPoll 1.0 - Insecure Cookie Handling.txt
OwenPoll 1.0 - Insecure Cookie Handling.txt
 
 
PHP Photo Album 0.8b - Local File Inclusion.txt
PHP Photo Album 0.8b - Local File Inclusion.txt
 
 
PHPbbBook 1.3 - Local File Inclusion.pl
PHPbbBook 1.3 - Local File Inclusion.pl
 
 
PhotoStand 1.2.0 - Remote Command Execution.pl
PhotoStand 1.2.0 - Remote Command Execution.pl
 
 
Photobase 1.2 - Local File Inclusion.txt
Photobase 1.2 - Local File Inclusion.txt
 
 
ProQuiz 1.0 - Authentication Bypass.txt
ProQuiz 1.0 - Authentication Bypass.txt
 
 
Pyrophobia 2.1.3.1 - Local File Inclusion Command Execution.pl
Pyrophobia 2.1.3.1 - Local File Inclusion Command Execution.pl
 
 
README.md
README.md
 
 
RSMScript 1.21 - Cross-Site Scripting Insecure Cookie Handling.txt
RSMScript 1.21 - Cross-Site Scripting Insecure Cookie Handling.txt
 
 
S40 CMS 0.4.2b - Local File Inclusion.txt
S40 CMS 0.4.2b - Local File Inclusion.txt
 
 
SiTeFiLo 1.0.6 - File Disclosure Remote File Inclusion.txt
SiTeFiLo 1.0.6 - File Disclosure Remote File Inclusion.txt
 
 
Silentum LoginSys 1.0.0 - Insecure Cookie Handling.txt
Silentum LoginSys 1.0.0 - Insecure Cookie Handling.txt
 
 
Simple PHP News 1.0 - Remote Command Execution.pl
Simple PHP News 1.0 - Remote Command Execution.pl
 
 
Syzygy CMS 0.3 - Local File Inclusion SQL Injection.pl
Syzygy CMS 0.3 - Local File Inclusion SQL Injection.pl
 
 
TxtBlog 1.0 Alpha - Remote Command Execution.pl
TxtBlog 1.0 Alpha - Remote Command Execution.pl
 
 
WebFileExplorer 3.1 - Authentication Bypass.txt
WebFileExplorer 3.1 - Authentication Bypass.txt
 
 
WorkSimple 1.2.1 - Remote File Inclusion Sensitive Data Disclosure.txt
WorkSimple 1.2.1 - Remote File Inclusion Sensitive Data Disclosure.txt
 
 
X-Forum 0.6.2 - Remote Command Execution.pl
X-Forum 0.6.2 - Remote Command Execution.pl
 
 
eVision CMS 2.0 - Remote Code Execution.pl
eVision CMS 2.0 - Remote Code Execution.pl
 
 
myPHPscripts Login Session 2.0 - Cross-Site Scripting Database Disclosure.txt
myPHPscripts Login Session 2.0 - Cross-Site Scripting Database Disclosure.txt
 
 
phosheezy 2.0 - Remote Command Execution.pl
phosheezy 2.0 - Remote Command Execution.pl
 
 
simplePms CMS 0.1.4 - Local File Inclusion Remote Command Execution.pl
simplePms CMS 0.1.4 - Local File Inclusion Remote Command Execution.pl
 
 
wPortfolio 0.3 - Arbitrary File Upload.pl
wPortfolio 0.3 - Arbitrary File Upload.pl
 
 
yourplace 1.0.2 - Multiple Vulnerabilities Remote Code Execution.txt
yourplace 1.0.2 - Multiple Vulnerabilities Remote Code Execution.txt
 
 

Repository files navigation

Exploits

Early work, advisories and exploits from 2008-2011.
Mirror: https://www.exploit-db.com/?author=1482

EZ-Shop 1.02 - Lateral SQL Injection

Mirror: https://www.exploit-db.com/exploits/17170

S40 CMS 0.4.2b - Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/17129

WebFileExplorer 3.1 - Authentication Bypass

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1314
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1323
Mirror: https://www.exploit-db.com/exploits/8382

X-Forum 0.6.2 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1508
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-1512
Mirror: https://www.exploit-db.com/exploits/8317

My Simple Forum 7.1 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8298

PhotoStand 1.2.0 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8289

Syzygy CMS 0.3 - Local File Inclusion / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8276

Demium CMS 0.2.1b - Multiple Vulnerabilities

Mirror: https://www.exploit-db.com/exploits/8124

Pyrophobia 2.1.3.1 - Local File Inclusion Command Execution

Mirror: https://www.exploit-db.com/exploits/8095

Free Arcade Script 1.0 - Local File Inclusion Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0731
Mirror: https://www.exploit-db.com/exploits/8094

Graugon Forum 1 - 'id' Command Injection / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8089

simplePms CMS 0.1.4 - Local File Inclusion / Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8061

CmsFaethon 2.2.0 - 'item' SQL Injection

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-5094
Mirror: https://www.exploit-db.com/exploits/8054

BlogWrite 0.91 - Remote File Disclosure / SQL Injection

Mirror: https://www.exploit-db.com/exploits/8053

InselPhoto 1.1 - 'query' SQL Injection

Mirror: https://www.exploit-db.com/exploits/8045

Bloggeruniverse 2.0 Beta - 'id' SQL Injection

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-5090
Mirror: https://www.exploit-db.com/exploits/8043

Fluorine CMS 0.1 rc 1 - File Disclosure / SQL Injection / Command Execution

Mirror: https://www.exploit-db.com/exploits/8036

Hedgehog-CMS 1.21 - Local File Inclusion / Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/8028

Simple PHP News 1.0 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0610
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0643
Mirror: https://www.exploit-db.com/exploits/7999

PHPbbBook 1.3 - 'bbcode.php?l' Local File Inclusion

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0442
Mirror: https://www.exploit-db.com/exploits/7980

TxtBlog 1.0 Alpha - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/7967

eVision CMS 2.0 - Remote Code Execution

Mirror: https://www.exploit-db.com/exploits/7947

LinPHA Photo Gallery 2.0 - Remote Command Execution

Mirror: https://www.exploit-db.com/exploits/7837

Gallery Kys 1.0 - Admin Password Disclosure / Persistent Cross-Site Scripting

Mirror: https://www.exploit-db.com/exploits/7829

Fhimage 1.2.1 - Remote Command Execution (mq = off)

Mirror: https://www.exploit-db.com/exploits/7821

Fhimage 1.2.1 - Remote Index Change

Mirror: https://www.exploit-db.com/exploits/7820

PHP Photo Album 0.8b - 'preview' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7786
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0423

phosheezy 2.0 - Remote Command Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0250
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0251
CVE: https://nvd.nist.gov/vuln/detail/CVE-2009-0275
Mirror: https://www.exploit-db.com/exploits/7780

Photobase 1.2 - 'Language' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7733

Flexcustomer 0.0.6 - Admin Authentication Bypass / Possible PHP Code Writing

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6761
Mirror: https://www.exploit-db.com/exploits/7622

Silentum LoginSys 1.0.0 - Insecure Cookie Handling

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6763
Mirror: https://www.exploit-db.com/exploits/7601

Flexphplink Pro - Arbitrary File Upload

Mirror: https://www.exploit-db.com/exploits/7600
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6731

OwenPoll 1.0 - Insecure Cookie Handling

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6143
Mirror: https://www.exploit-db.com/exploits/7597

yourplace 1.0.2 - Multiple Vulnerabilities / Remote Code Execution

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6769
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6770
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6771
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6772
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6773
Mirror: https://www.exploit-db.com/exploits/7545

myPHPscripts Login Session 2.0 - Cross-Site Scripting / Database Disclosure

Mirror: https://www.exploit-db.com/exploits/7526
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5854
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5855

Calendar Script 1.1 - Insecure Cookie Handling

Mirror: https://www.exploit-db.com/exploits/7513
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5738

2532/Gigs 1.2.2 Stable - Multiple Vulnerabilities

CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6901
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6902
Mirror: https://www.exploit-db.com/exploits/7510

RSMScript 1.21 - Cross-Site Scripting / Insecure Cookie Handling

Mirror: https://www.exploit-db.com/exploits/7497
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6743

WorkSimple 1.2.1 - Remote File Inclusion / Sensitive Data Disclosure

Mirror: https://www.exploit-db.com/exploits/7481
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5764
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5765

ediatheka 4.2 - 'lang' Local File Inclusion

Mirror: https://www.exploit-db.com/exploits/7458
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5894

Simple Text-File Login script (SiTeFiLo) 1.0.6 - File Disclosure / Remote File Inclusion

Mirror: https://www.exploit-db.com/exploits/7444
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5762
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5763

FlexPHPNews 0.0.6 / PRO - Authentication Bypass

Mirror: https://www.exploit-db.com/exploits/7443
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5927

Butterfly ORGanizer 2.0.1 - 'id' SQL Injection

Mirror: https://www.exploit-db.com/exploits/7411
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6311
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6328

ProQuiz 1.0 - Authentication Bypass

Mirror: https://www.exploit-db.com/exploits/7397
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6312
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-6327

Nitrotech 0.0.3a - Remote File Inclusion / SQL Injection

Mirror: https://www.exploit-db.com/exploits/7218
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5333
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5334

wPortfolio 0.3 - Arbitrary File Upload

Mirror: https://www.exploit-db.com/exploits/7165
CVE: https://nvd.nist.gov/vuln/detail/CVE-2008-5220

About

Archive: exploits/advisories from 2008-2011

Topics

php exploit rce sqli cve

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Languages