AlQaTaRi

CVE-2008-6003 EXPLOITDB text WORKING POC

AJ Auction Pro Platinum 2 - SQL Injection

SQL injection vulnerability in sellers_othersitem.php in AJ Auction Pro Platinum 2 allows remote attackers to execute arbitrary SQL commands via the seller_id parameter.

View Code

CVE-2008-6004 EXPLOITDB text WORKING POC

AJ Auction Pro Platinum 2 - XSS

Cross-site scripting (XSS) vulnerability in search.php in AJ Auction Pro Platinum 2 allows remote attackers to inject arbitrary web script or HTML via the product parameter.

View Code