CVE-2003-0752

AttilaPHP 3.0 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in global.php3 of AttilaPHP 3.0, and possibly earlier versions, allows remote attackers to bypass authentication via a modified cook_id parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by frog · textwebappsphp

https://www.exploit-db.com/exploits/23064

View Code ZIP pw:eip

References (1)

[Exploit, Vendor Advisory] http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0090.html

Scores

EPSS 0.0048

EPSS Percentile 64.8%

Classification

Status draft

Affected Products (1)

attila-php.net/attilaphp < 3.0

Timeline

Published Oct 20, 2003

Tracked Since Feb 18, 2026