Exploitation Summary
EIP tracks 1 public exploit for CVE-2005-0343. PoCs published by deluxe89.
AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in PerlDesk's kb.cgi, extracting user credentials from the database via a UNION-based attack. It iterates through database records to dump usernames and passwords.
Description
SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by deluxe89 · perlwebappscgi
https://www.exploit-db.com/exploits/790
This exploit targets a SQL injection vulnerability in PerlDesk's kb.cgi, extracting user credentials from the database via a UNION-based attack. It iterates through database records to dump usernames and passwords.
Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
PerlDesk (version not specified)
No auth needed
Prerequisites:
Target must be running vulnerable PerlDesk with exposed kb.cgi · Network access to the target
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19245
Patch third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12512
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12471
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110782042532295&w=2
Exploit, Vendor Advisory x_refsource_misc
http://www.security-project.org/projects/board/showthread.php?p=5172#post5172
Scores
EPSS
0.0245
EPSS Percentile
82.3%
Details
Status
published
Products (1)
logicnow/perldesk
1.0
Published
May 02, 2005
Tracked Since
Feb 18, 2026