H-T Team (HouSSamix, ToXiC350)

3 exploits Active since Sep 2007
CVE-2007-4979 EXPLOITDB text WORKING POC
KwsPHP 1.0 - SQL Injection via Sondages Module id Parameter
SQL injection vulnerability in index.php in the sondages module in KwsPHP 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a results action, a different module than CVE-2007-4956.2.
CVE-2007-4922 EXPLOITDB text WORKING POC
jeuxflash_module 1.0 - Authenticated SQL Injection via id Parameter
SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. NOTE: some details are obtained from third party information.
CVE-2008-0283 EXPLOITDB text WORKING POC
domphp < 0.81 - Remote Code Execution via Page Parameter
PHP remote file inclusion vulnerability in /aides/index.php in DomPHP 0.81 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.