Hussin X

137 exploits Active since Feb 2007
CVE-2008-2893 EXPLOITDB text WORKING POC
Ajhyip AJ Square Aj-hyip - SQL Injection
SQL injection vulnerability in news.php in AJ Square aj-hyip (aka AJ HYIP Acme) allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-2532.
CVE-2008-2860 EXPLOITDB text WORKING POC
AJ Square AJ Auction - SQL Injection
SQL injection vulnerability in category.php in AJSquare AJ Auction Pro web 2.0 allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.
CVE-2008-3719 EXPLOITDB text WORKING POC
SFS Affiliate Directory - SQL Injection
SQL injection vulnerability in directory.php in SFS Affiliate Directory allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action.
EIP-2026-104867 EXPLOITDB text WORKING POC
6rbScript - 'news.php' SQL Injection
CVE-2008-6454 EXPLOITDB text WORKING POC
6rbscript - SQL Injection
SQL injection vulnerability in section.php in 6rbScript 3.3 allows remote attackers to execute arbitrary SQL commands via the singerid parameter in a singers action.
CVE-2008-3944 EXPLOITDB text WORKING POC
ACG-PTP 1.0.6 - SQL Injection
SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action.
CVE-2008-4144 EXPLOITDB text WORKING POC
Discountedscripts E-gold Script Shop - SQL Injection
SQL injection vulnerability in index.php in ACG-ScriptShop E-Gold Script Shop allows remote attackers to execute arbitrary SQL commands via the cid parameter in a showcat action.
CVE-2008-3748 EXPLOITDB text WORKING POC
Active PHP Bookmarks <1.2.06 - SQL Injection
SQL injection vulnerability in view_group.php in Active PHP Bookmarks (APB) 1.1.02 and 1.2.06 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-3725 EXPLOITDB text WORKING POC
YourFreeWorld Ad Board Script - SQL Injection
SQL injection vulnerability in trr.php in YourFreeWorld Ad Board Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-6101 EXPLOITDB text WORKING POC
Adult Banner Exchange Website - SQL Injection
SQL injection vulnerability in click.php in Adult Banner Exchange Website allows remote attackers to execute arbitrary SQL commands via the targetid parameter.
CVE-2009-4229 EXPLOITDB text WRITEUP
ActiveWebSoftwares Active Bids - SQL Injection
Multiple SQL injection vulnerabilities in ActiveWebSoftwares Active Bids allow remote attackers to execute arbitrary SQL commands via (1) the catid parameter in the PATH_INFO to the default URI or (2) the catid parameter to default.asp. NOTE: this might overlap CVE-2009-0429.3. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-100097 EXPLOITDB text WRITEUP
ActiveTrade 2.0 - 'default.asp' Blind SQL Injection