CVE-2005-3045

My Little Forum <1.6 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1225

View Code ZIP pw:eip

References (4)

[Exploit, Vendor Advisory] http://rgod.altervista.org/mylittle15_16b.html

[Vendor Advisory] http://secunia.com/advisories/16913/

[Exploit] http://www.securityfocus.com/bid/14908

[Mailing List] http://marc.info/?l=bugtraq&m=112741430006983&w=2

Scores

EPSS 0.0056

EPSS Percentile 68.2%

Details

Status published

Products (2)

my_little_homepage/my_little_forum 1.3

my_little_homepage/my_little_forum 1.5

Published Sep 24, 2005

Tracked Since Feb 18, 2026