CVE-2005-1203

eGroupware <1.0.0.007 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-1203. PoCs published by GulfTech Security.

AI-analyzed exploit summary The provided text describes a vulnerability in eGroupWare involving SQL injection and XSS due to improper input validation. It includes a sample URL demonstrating the SQL injection vector but lacks executable exploit code.

Description

Multiple SQL injection vulnerabilities in index.php in eGroupware before 1.0.0.007 allow remote attackers to execute arbitrary SQL commands via the (1) filter or (2) cats_app parameter.

Exploits (2)

exploitdb WRITEUP VERIFIED
by GulfTech Security · textwebappsphp
https://www.exploit-db.com/exploits/25437

The provided text describes a vulnerability in eGroupWare involving SQL injection and XSS due to improper input validation. It includes a sample URL demonstrating the SQL injection vector but lacks executable exploit code.

Classification
Writeup 80%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Theoretical
Target: eGroupWare (version not specified)
No auth needed
Prerequisites: Access to the vulnerable eGroupWare instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by GulfTech Security · textwebappsphp
https://www.exploit-db.com/exploits/25436

The provided text describes input validation vulnerabilities in eGroupWare, specifically SQL injection and XSS flaws. It includes example URLs demonstrating the SQL injection vulnerability but lacks executable exploit code.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: eGroupWare (version not specified)
No auth needed
Prerequisites: Access to the vulnerable eGroupWare instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Patch, Vendor Advisory x_refsource_confirm
http://sourceforge.net/project/shownotes.php?release_id=320768
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13212
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/15753
Patch, Vendor Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200504-24.xml
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111401760125555&w=2
Exploit, Patch third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14982

Scores

EPSS 0.0320
EPSS Percentile 86.5%

Details

Status published
Products (4)
egroupware/egroupware 1.0
egroupware/egroupware 1.0.1
egroupware/egroupware 1.0.3
egroupware/egroupware 1.0.6
Published May 02, 2005
Tracked Since Feb 18, 2026