CVE-2000-0125

wwwthreads - SQL Injection

Title source: llm

Description

wwwthreads does not properly cleanse numeric data or table names that are passed to SQL queries, which allows remote attackers to gain privileges for wwwthreads forums.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rain forest puppy · perlremotecgi

https://www.exploit-db.com/exploits/19741

View Code ZIP pw:eip

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002031027120.15921-100000%40eight.wiretrip.net

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/967

Scores

EPSS 0.0322

EPSS Percentile 87.1%

Details

Status published

Products (1)

wired_community_software/wwwthreads

Published Feb 03, 2000

Tracked Since Feb 18, 2026