CVE-2005-0890

Dream4 Koobi CMS 4.2.3 - SQL Injection via Area Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-0890. PoCs published by CENSORED Search Vulnerabilities, mircia.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in Koobi CMS due to improper input sanitization. It includes a basic example URL demonstrating the vulnerability but lacks executable exploit code.

Description

SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter.

Exploits (3)

exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25556

The provided text describes an SQL injection vulnerability in Koobi CMS due to improper input sanitization. It includes a basic example URL demonstrating the vulnerability but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Koobi CMS (version unspecified)
No auth needed
Prerequisites: Access to the target application URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25555

The provided text describes an SQL injection vulnerability in Koobi CMS due to improper input sanitization. It includes example URLs demonstrating how an attacker could inject SQL code via the 'p' parameter.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Koobi CMS
No auth needed
Prerequisites: Access to the vulnerable Koobi CMS application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by mircia · textwebappsphp
https://www.exploit-db.com/exploits/25273

The provided text describes a SQL injection vulnerability in Koobi CMS, where unsanitized user input in the 'area' parameter can be exploited to manipulate SQL queries. No actual exploit code is present, only a description and example URL.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Koobi CMS
No auth needed
Prerequisites: Access to the vulnerable Koobi CMS instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12896
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1013558
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14696

Scores

EPSS 0.0116
EPSS Percentile 63.0%

Details

Status published
Products (1)
dream4/koobi_cms 4.2.3
Published May 02, 2005
Tracked Since Feb 18, 2026