CVE-2005-3879

Softbiz Resource Repository Script <= 1.1 - SQL Injection via sbres_id or sbcat_id Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2005-3879. PoCs published by r0t.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in Softbiz Resource Repository Script, specifically in the 'showcats.php' file via the 'sbcat_id' parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Description

Multiple SQL injection vulnerabilities in Softbiz Resource Repository Script 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) sbres_id parameter in (a) details_res.php, (b) refer_friend.php, and (c) report_link.php, and (2) the sbcat_id parameter in (d) showcats.php.

Exploits (4)

exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26614

The provided text describes a SQL injection vulnerability in Softbiz Resource Repository Script, specifically in the 'showcats.php' file via the 'sbcat_id' parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Softbiz Resource Repository Script
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26616

The provided text describes a SQL injection vulnerability in Softbiz Resource Repository Script, specifically in the 'report_link.php' file where the 'sbres_id' parameter is not properly sanitized. The writeup references a SecurityFocus BID but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Softbiz Resource Repository Script
No auth needed
Prerequisites: Access to the vulnerable 'report_link.php' endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26615

The provided text describes a SQL injection vulnerability in Softbiz Resource Repository Script, specifically in the 'refer_friend.php' file via the 'sbres_id' parameter. It lacks executable exploit code but details the vulnerability and potential impact.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Softbiz Resource Repository Script
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by r0t · textwebappsphp
https://www.exploit-db.com/exploits/26613

The provided text describes a SQL injection vulnerability in Softbiz Resource Repository Script, specifically in the 'details_res.php' file via the 'sbres_id' parameter. It lacks executable exploit code but confirms the vulnerability's existence and potential impact.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Softbiz Resource Repository Script
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21136
Exploit, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17555
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2617
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21134
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15585
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23208
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21135
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21133

Scores

EPSS 0.0396
EPSS Percentile 89.1%

Details

Status published
Products (2)
softbiz/resource_repository_script 1.1
softbizscripts/resource_repository_script 1.1
Published Nov 29, 2005
Tracked Since Feb 18, 2026