CVE-2005-1224

DUware DUportal Pro 3.4 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 6 public exploits for CVE-2005-1224. PoCs published by Dcrab.

AI-analyzed exploit summary This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by injecting malicious input into the 'iChannel' parameter in various search.asp endpoints. The PoC provides multiple URLs with SQL injection payloads that can compromise the application or underlying database.

Description

Multiple SQL injection vulnerabilities in DUware DUportal Pro 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) nChannel parameter to default.asp, cat.asp, or detail.asp, (2) the iChannel parameter to search.asp, default.asp, result.asp, cat.asp, or detail.asp (3) the iCat parameter to cat.asp or detail.asp, (4) the iData parameter to detail.asp or result.asp, the (5) POL_ID, (6) POL_PARENT, (7) POL_CATEGORY, (8) CHA_NAME, or (9) CHA_ID parameters to inc_vote.asp, or the (10) tfm_order or (11) tfm_orderby parameters to toppages.asp, a different set of vulnerabilities than CVE-2005-1236.

Exploits (6)

exploitdb WORKING POC VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25477

This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by injecting malicious input into the 'iChannel' parameter in various search.asp endpoints. The PoC provides multiple URLs with SQL injection payloads that can compromise the application or underlying database.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the vulnerable DUportal Pro application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25479

This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by providing multiple URLs with injected SQL payloads. The payloads target the 'iData', 'iCat', 'iChannel', and 'nChannel' parameters in the 'result.asp' script.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the target application's URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25478

This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by providing multiple URLs with injected SQL payloads. The payloads target various parameters in the 'inc_vote.asp' script, showcasing how unsanitized input can be used to manipulate SQL queries.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the target application's poll voting functionality
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25481

This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by providing multiple URLs with injected SQL payloads. The URLs target various parameters in different modules of the application, showing how unsanitized input can be used to manipulate SQL queries.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the vulnerable DUportal Pro application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25476

This is a writeup detailing SQL injection vulnerabilities in DUportal Pro 3.4. It provides multiple example URLs demonstrating how unsanitized input in the 'iChannel' and 'nChannel' parameters can be exploited.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Dcrab · textwebappsasp
https://www.exploit-db.com/exploits/25480

This exploit demonstrates SQL injection vulnerabilities in DUportal Pro 3.4 by providing multiple URLs with injected parameters. The URLs target various endpoints where user-supplied input is not properly sanitized, allowing for SQL query manipulation.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: DUportal Pro 3.4
No auth needed
Prerequisites: Access to the target web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13285
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/453316/100/0/threaded
Various Sources x_refsource_misc
http://www.digitalparadox.org/advisories/duppro.txt
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111401172901705&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20197
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15031
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/30671

Scores

EPSS 0.0365
EPSS Percentile 88.2%

Details

Status published
Products (3)
duware/duportal 3.4
duware/duportal pro_3.4
duware/duportal sql_3.4
Published May 02, 2005
Tracked Since Feb 18, 2026