CVE-2004-1843

Member Management System 2.1 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-1843. PoCs published by Manuel Lopez.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in Member Management System version 2.1, specifically in the 'ID' parameter of 'resend.asp' and 'news_view.asp' scripts. It lacks executable exploit code but provides a URL example for potential exploitation.

Description

SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID parameter to (1) resend.asp or (2) news_view.asp.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Manuel Lopez · textwebappsasp
https://www.exploit-db.com/exploits/23852

The provided text describes a SQL injection vulnerability in Member Management System version 2.1, specifically in the 'ID' parameter of 'resend.asp' and 'news_view.asp' scripts. It lacks executable exploit code but provides a URL example for potential exploitation.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Member Management System 2.1
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Manuel Lopez · textwebappsasp
https://www.exploit-db.com/exploits/23851

The writeup describes a SQL injection vulnerability in Member Management System 2.1, where the 'ID' parameter in 'resend.asp' and 'news_view.asp' scripts is vulnerable to malicious SQL syntax injection. No exploit code is provided, only a description and example URL.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Member Management System 2.1
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15551
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107999697625786&w=2
Exploit, Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11179
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9931
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1009508

Scores

EPSS 0.0124
EPSS Percentile 65.3%

Details

Status published
Published Mar 20, 2004
Tracked Since Feb 18, 2026