Exploitation Summary
EIP tracks 8 public exploits for CVE-2005-2058. PoCs published by mh_p0rtal, GulfTech Security.
AI-analyzed exploit summary This PHP script exploits a SQL injection vulnerability in UBBCentral by injecting a UNION-based query to extract user credentials. It sends a crafted HTTP GET request to the vulnerable endpoint to retrieve the username and password of a specified user.
Description
Multiple SQL injection vulnerabilities in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to execute arbitrary SQL commands via the Number parameter to (1) download.php, (2) modifypost.php, (3) mailthread.php, or (4) notifymod.php, (5) month or (6) year parameter to calendar.php, (7) message parameter to viewmessage.php, (8) main parameter to addfav.php, or (9) posted parameter to grabnext.php.
Exploits (8)
This PHP script exploits a SQL injection vulnerability in UBBCentral by injecting a UNION-based query to extract user credentials. It sends a crafted HTTP GET request to the vulnerable endpoint to retrieve the username and password of a specified user.
This exploit demonstrates a SQL injection vulnerability in UBB.Threads by injecting a UNION-based query to extract user credentials from the database. The attack leverages unsanitized input in the 'message' parameter to manipulate the SQL query.
The provided text describes a SQL injection vulnerability in UBB.Threads, where the 'Number' parameter in the 'notifymod.php' script is vulnerable due to insufficient input sanitization. The example URL demonstrates how an attacker could inject malicious SQL queries.
The provided text describes a SQL injection vulnerability in UBB.Threads, detailing a vulnerable URL parameter. It does not contain executable exploit code but explains the vulnerability and potential impact.
The provided text describes a SQL injection vulnerability in UBB.Threads, where the application fails to sanitize user input in the 'grabnext.php' script. The example URL demonstrates how an attacker could inject malicious SQL queries via the 'posted' parameter.
The provided text describes a SQL injection vulnerability in UBB.Threads, where the 'Number' parameter in download.php is not properly sanitized. It includes a sample exploit URL but lacks executable code.
The provided text describes SQL injection vulnerabilities in UBB.Threads, specifically in the calendar.php file, where user-supplied input is not properly sanitized. It includes example URLs demonstrating the vulnerability but lacks executable exploit code.
The provided text describes a SQL injection vulnerability in UBB.Threads, where the 'main' parameter in the URL is not properly sanitized, allowing attackers to inject malicious SQL queries. The example URL demonstrates how an attacker could exploit this vulnerability to manipulate the database.