Author: Hussin X

Country:

Reported research: 51

Advisories

Risk	Topic & Details
Med.	Windows Scripts WScript.Shell - access bypass Local \| 2010-01-09
Med.	Active Trade 2.0 remote blind SQL injection Remote \| 2009-11-19
Med.	Online Email Manager Insecure Cookie Handling Vulnerability (CVE assigned) Remote \| 2009-04-17
Med.	Online Guestbook Pro (display) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-04-17
High	WEBBDOMAIN Post Card <= 1.02 (catid) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-04-09
Med.	SoftComplex PHP Image Gallery (ctg) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-20
High	6rbScript 3.3 (singerid) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-03-15
High	SaturnCMS (view) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-27
High	E-topbiz AdManager 4 (group) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-26
High	SFS EZ BIZ PRO (track.php id) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-25
High	Pro Traffic One (poll_results.php id) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-21
High	Full PHP Emlak Script (arsaprint.php id) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-17
High	Link Trader (ratelink.php lnkid) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-11
High	Availscript Article Script (view.php v) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-02-06
High	BookMarks Favourites Script (view_group.php id) SQL Injection Vuln (CVE assigned) Remote \| 2009-02-02
High	ZEEMATRI 3.0 (bannerclick.php adid) SQL Injection Vulnerability (CVE assigned) Remote \| 2009-01-03
High	Webmaster Marketplace (member.php u) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-18
High	phpstore Wholesale (track.php?id) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-14
High	PozScripts Business Directory Script (cid) Remote SQL Injection Vuln (CVE assigned) Remote \| 2008-12-13
High	NetArtMedia Real Estate Portal 1.2 (ad_id) SQL Injection Vuln (CVE assigned) Remote \| 2008-12-03
Med.	WebStudio eCatalogue (pageid) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-02
High	WebStudio eHotel (pageid) Blind SQL Injection Vulnerability (CVE assigned) Remote \| 2008-12-02
High	Online Booking Manager 2.2 (id) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-11-23
High	YourFreeWorld Scrolling Text Ads (id) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-11-04
High	YourFreeWorld Autoresponder Hosting (id) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-11-04
High	YourFreeWorld Shopping Cart (index.php c) Blind SQL Injection Vuln (CVE assigned) Remote \| 2008-11-04
High	YourFreeWorld Classifieds Hosting (id) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-11-04
High	PozScripts Classified Auctions (gotourl.php id) SQL Injection Vuln (CVE assigned) Remote \| 2008-10-29
High	ZEELYRICS 2.0 (bannerclick.php adid) SQL Injection Vulnerability (CVE assigned) Remote \| 2008-10-24
High	zeeproperty (adid) Remote SQL Injection Vulnerability (CVE assigned) Remote \| 2008-10-21

Author: Hussin X

Country:

Reported research: 51

Advisories

Med.

Windows Scripts WScript.Shell - access bypass

Local | 2010-01-09

Med.

Active Trade 2.0 remote blind SQL injection

Remote | 2009-11-19

Med.

Online Email Manager Insecure Cookie Handling Vulnerability (CVE assigned)

Remote | 2009-04-17

Med.

Online Guestbook Pro (display) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-04-17

High

WEBBDOMAIN Post Card <= 1.02 (catid) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-04-09

Med.

SoftComplex PHP Image Gallery (ctg) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-20

High

6rbScript 3.3 (singerid) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-03-15

High

SaturnCMS (view) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-27

High

E-topbiz AdManager 4 (group) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-26

High

SFS EZ BIZ PRO (track.php id) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-25

High

Pro Traffic One (poll_results.php id) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-21

High

Full PHP Emlak Script (arsaprint.php id) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-17

High

Link Trader (ratelink.php lnkid) Remote SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-11

High

Availscript Article Script (view.php v) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-02-06

High

BookMarks Favourites Script (view_group.php id) SQL Injection Vuln (CVE assigned)

Remote | 2009-02-02

High

ZEEMATRI 3.0 (bannerclick.php adid) SQL Injection Vulnerability (CVE assigned)

Remote | 2009-01-03

High

Webmaster Marketplace (member.php u) SQL Injection Vulnerability (CVE assigned)

Remote | 2008-12-18

High

phpstore Wholesale (track.php?id) SQL Injection Vulnerability (CVE assigned)

Remote | 2008-12-14

High

PozScripts Business Directory Script (cid) Remote SQL Injection Vuln (CVE assigned)

Remote | 2008-12-13

High

NetArtMedia Real Estate Portal 1.2 (ad_id) SQL Injection Vuln (CVE assigned)

Remote | 2008-12-03

Med.

WebStudio eCatalogue (pageid) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2008-12-02

High

WebStudio eHotel (pageid) Blind SQL Injection Vulnerability (CVE assigned)

Remote | 2008-12-02

High

Online Booking Manager 2.2 (id) SQL Injection Vulnerability (CVE assigned)

Remote | 2008-11-23

High

YourFreeWorld Scrolling Text Ads (id) SQL Injection Vulnerability (CVE assigned)

Remote | 2008-11-04

High

YourFreeWorld Autoresponder Hosting (id) SQL Injection Vulnerability (CVE assigned)

Remote | 2008-11-04

High

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)