[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP Quick Arcade 3.0.21 - Multiple Vulnerabilities

Author: ITSecTeam
type: webapps
platform: php
port: 
date_added: 2010-04-26 
date_updated:  
verified: 0 
codes: OSVDB-64310;CVE-2010-1662;OSVDB-64253;OSVDB-64252;CVE-2010-1661 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comphp_quick_arcade.zip
PHP Quick Arcade 3.0.21 Multiple Vulnerabilites
-----------------------------------------------------------
#Title: PHP-Quick-Arcade 3.0.21 Multiple Vulnerabilites
#Vendor: http://quickarcade.jcink.com/
-----------------------------------------------------------
#AUTHOR: ITSecTeam
#Email: Bug@ITSecTeam.com
#Website: http://www.itsecteam.com
#Forum : http://forum.ITSecTeam.com
#Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability47.htm
#Thanks: Pejvak,M3hr@n.s,r3dm0v3,am!rkh@n
-----------------------------------------------------------
# POC 1
-----------------------------------------------------------
www.Site.com/Arcade.php
Send Your Query With Cookie => phpqa_user_c
phpqa_user_c= Sql Injection
Can Use tamper data in mozila
-----------------------------------------------------------
# POC 2
-----------------------------------------------------------
This Bug Worked With Register_Global = On
www.Site.com/acpmoderate.php?id=Sql Injection
-----------------------------------------------------------
# POC 3
-----------------------------------------------------------
Cross Site Scripting (XSS)
www.Site.com/acpmoderate.php?serv=Xss Code
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.