Hussin X

137 exploits Active since Feb 2007
EIP-2026-110792 EXPLOITDB text WORKING POC
PHP-AddressBook 3.1.5 - 'edit.php' SQL Injection
EIP-2026-110485 EXPLOITDB text WORKING POC
ParsBlogger - 'links.asp' SQL Injection
CVE-2008-5194 EXPLOITDB text WORKING POC
SoftVisions obm 2.2 - SQL Injection
SQL injection vulnerability in checkavail.php in SoftVisions Software Online Booking Manager (obm) 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
EIP-2026-110092 EXPLOITDB text WORKING POC
Online Email Manager - Insecure Cookie Handling
CVE-2008-5309 EXPLOITDB text WORKING POC
NetArt Media Real Estate Portal 1.2 - SQL Injection
SQL injection vulnerability in NetArt Media Real Estate Portal 1.2 allows remote attackers to execute arbitrary SQL commands via the ad_id parameter in the re_send_email module to index.php.
CVE-2008-2869 EXPLOITDB text WORKING POC
E-topbiz Link Ads 1 - SQL Injection
SQL injection vulnerability in out.php in E-topbiz Link ADS 1 allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
CVE-2008-4055 EXPLOITDB text WORKING POC
Texmedia Million Pixel Script - SQL Injection
SQL injection vulnerability in tops_top.php in Million Pixel Ad Script (Million Pixel Script) allows remote attackers to execute arbitrary SQL commands via the id_cat parameter.
CVE-2008-3943 EXPLOITDB text WORKING POC
eZoneScripts Living Local 1.1 - SQL Injection
SQL injection vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to execute arbitrary SQL commands via the r parameter.
EIP-2026-109168 EXPLOITDB text WORKING POC
list Web - 'addlink.php?id' SQL Injection
CVE-2008-6102 EXPLOITDB text WORKING POC
Link Trader Script - SQL Injection
SQL injection vulnerability in ratelink.php in Link Trader Script allows remote attackers to execute arbitrary SQL commands via the lnkid parameter.
EIP-2026-108846 EXPLOITDB text WORKING POC
Joomla! Component Regional Booking - 'id' Blind SQL Injection
CVE-2008-5875 EXPLOITDB text WRITEUP
Joomla! - SQL Injection
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.
CVE-2008-5875 EXPLOITDB text WRITEUP
Joomla! - SQL Injection
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.
CVE-2008-2874 EXPLOITDB text WORKING POC
Softbizscripts Softbiz Jokes And Funny Pics Script - SQL Injection
SQL injection vulnerability in index.php in Softbiz Jokes & Funny Pics Script allows remote attackers to execute arbitrary SQL commands via the sbjoke_id parameter, a different vector than CVE-2008-1050.
EIP-2026-107952 EXPLOITDB text WORKING POC
IranMC Arad Center - SQL Injection
CVE-2008-6405 EXPLOITDB text WORKING POC
Greatclone Hotscripts Clone - SQL Injection
SQL injection vulnerability in showcategory.php in Hotscripts Clone allows remote attackers to execute arbitrary SQL commands via the cid parameter.
EIP-2026-107490 EXPLOITDB text WORKING POC
Greatclone GC Auction Platinum - 'category.php' SQL Injection
CVE-2008-3585 EXPLOITDB text WORKING POC
PozScripts GreenCart - SQL Injection
Multiple SQL injection vulnerabilities in PozScripts GreenCart PHP Shopping Cart allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) product_desc.php and (2) store_info.php.
CVE-2008-3372 EXPLOITDB text WORKING POC
Getacoder Clone - SQL Injection
SQL injection vulnerability in search_form.php in Getacoder Clone allows remote attackers to execute arbitrary SQL commands via the sb_protype parameter.
CVE-2008-3413 EXPLOITDB text WORKING POC
Greatclone GC Auction Platinum - SQL Injection
SQL injection vulnerability in category.php in Greatclone GC Auction Platinum allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.
CVE-2008-3942 EXPLOITDB text WORKING POC
Full PHP Emlak Script - SQL Injection
SQL injection vulnerability in landsee.php in Full PHP Emlak Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-6133 EXPLOITDB text WORKING POC
Full PHP Emlak Script - SQL Injection
SQL injection vulnerability in arsaprint.php in Full PHP Emlak Script allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3942.
EIP-2026-107245 EXPLOITDB text WORKING POC
Freewebscript'z Games - Authentication Bypass
EIP-2026-106840 EXPLOITDB text WORKING POC
Elkagroup - 'pid' SQL Injection
CVE-2008-4743 EXPLOITDB text WORKING POC
Quidascript Faq Management Script - SQL Injection
SQL injection vulnerability in index.php in QuidaScript FAQ Management Script allows remote attackers to execute arbitrary SQL commands via the catid parameter.