CVE-2005-3875

Enterprise Connector < 1.0.2 - SQL Injection via MessageID Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-3875. PoCs published by r0t.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in Enterprise Connector, specifically in the /send.php endpoint via the messageid parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Description

Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in (1) send.php or (2) a delete action in messages.php.

Exploits (2)

exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26602

The provided text describes a SQL injection vulnerability in Enterprise Connector, specifically in the /send.php endpoint via the messageid parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Enterprise Connector (version not specified)
No auth needed
Prerequisites: Access to the /send.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26603

The provided text describes a SQL injection vulnerability in Enterprise Connector, specifically in the messages.php file via the messageid parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Enterprise Connector (version not specified)
No auth needed
Prerequisites: Access to the vulnerable messages.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21141
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21142
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2602
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15578
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17743

Scores

EPSS 0.0124
EPSS Percentile 65.4%

Details

Status published
Products (1)
enterprise_heart/enterprise_connector < 1.0.2
Published Nov 29, 2005
Tracked Since Feb 18, 2026