CVE-2005-3988

Pineapple Technologies Lore - SQL Injection

Title source: rule

Description

SQL injection vulnerability in article.php in Pineapple Technologies Lore 1.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by r0t · phpwebappsphp

https://www.exploit-db.com/exploits/26688

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/17842

[Third Party Advisory] http://pridels0.blogspot.com/2005/12/lore-sql-inj-vuln.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/21328

[Exploit] http://www.securityfocus.com/bid/15665

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/2682

Scores

EPSS 0.0042

EPSS Percentile 62.0%

Details

Status published

Products (1)

pineapple_technologies/lore 1.5.4

Published Dec 04, 2005

Tracked Since Feb 18, 2026