CVE-2005-0700

Aztek Forum 4.0 - Unauthenticated Database File Exposure via Export Index Action

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0700. PoCs published by sirius_black.

AI-analyzed exploit summary This exploit targets a database dump vulnerability in Forum-Aztek v4.0 by crafting a malicious HTTP request to export user data, including hashed passwords. It requires an admin login and forum directory path to trigger the unauthorized data leak.

Description

The export_index action in myadmin.php for Aztek Forum 4.0 allows remote attackers to obtain database files, possibly by setting the ATK_ADMIN cookie.

Exploits (1)

exploitdb WORKING POC VERIFIED

by sirius_black · cwebappsphp

https://www.exploit-db.com/exploits/860

View Code ZIP pw:eip

This exploit targets a database dump vulnerability in Forum-Aztek v4.0 by crafting a malicious HTTP request to export user data, including hashed passwords. It requires an admin login and forum directory path to trigger the unauthorized data leak.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Forum-Aztek v4.0

Auth required

Prerequisites: admin login credentials · forum directory path

MITRE ATT&CK

T1592 - Gather Victim Host Information T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/12745

Exploit, Vendor Advisory x_refsource_misc

http://www.frsirt.com/exploits/20050307.aztek.c.php

Scores

EPSS 0.0248

EPSS Percentile 82.5%

Details

Status published

Products (1)

aztek_forum/aztek_forum 4.0

Published Mar 07, 2005

Tracked Since Feb 18, 2026