CVE-2005-2562

Gravity Board X 1.1 - SQL Injection via Login Field

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2562. PoCs published by rgod.

AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in Gravity Board X (GBX) by bypassing authentication via crafted login credentials. The payload leverages improper input sanitization to trigger an SQL error condition, allowing unauthorized access.

Description

SQL injection vulnerability in Gravity Board X (GBX) 1.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the login field.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · textwebappsphp

https://www.exploit-db.com/exploits/26106

View Code ZIP pw:eip

This exploit demonstrates an SQL injection vulnerability in Gravity Board X (GBX) by bypassing authentication via crafted login credentials. The payload leverages improper input sanitization to trigger an SQL error condition, allowing unauthorized access.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Gravity Board X (GBX)

No auth needed

Prerequisites: Access to the login page of Gravity Board X

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/14497

Exploit vdb-entry x_refsource_sectrack

http://securitytracker.com/alerts/2005/Aug/1014631.html

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=112351740803443&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/21740

Scores

EPSS 0.0263

EPSS Percentile 83.5%

Details

Status published

Products (1)

gravity_board_x_development_team/gravity_board_x 1.1

Published Aug 16, 2005

Tracked Since Feb 18, 2026