CVE-2005-3290

Accelerated Mortgage Manager - SQL Injection via Password Field

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3290. PoCs published by imready4chillin.

AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in Accelerated Mortgage Manager by bypassing authentication with a crafted password input. The payload ' or ''=' exploits improper input sanitization to manipulate the SQL query.

Description

SQL injection vulnerability in Accelerated Mortgage Manager allows remote attackers to execute arbitrary SQL commands via the password field.

Exploits (1)

exploitdb WORKING POC VERIFIED
by imready4chillin · textwebappsphp
https://www.exploit-db.com/exploits/26346

This exploit demonstrates an SQL injection vulnerability in Accelerated Mortgage Manager by bypassing authentication with a crafted password input. The payload ' or ''=' exploits improper input sanitization to manipulate the SQL query.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Accelerated Mortgage Manager
No auth needed
Prerequisites: Access to the login interface of the target application
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15097
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21581

Scores

EPSS 0.0109
EPSS Percentile 61.8%

Details

Status published
Products (1)
accelerated_enterprise_solutions/accelerated_mortgage_manager
Published Oct 23, 2005
Tracked Since Feb 18, 2026