CVE-2005-4141

ASPMForum - SQL Injection via harf or baslik Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-4141. PoCs published by dj_eyes2005.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in ASPMForum, where the 'harf' parameter in 'kullanicilistesi.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to data disclosure or modification.

Description

Multiple SQL injection vulnerabilities in ASPMForum allow remote attackers to execute arbitrary SQL commands via the (1) harf parameter in kullanicilistesi.asp and (2) baslik parameter in forum.asp.

Exploits (2)

exploitdb WRITEUP VERIFIED

by dj_eyes2005 · textwebappsasp

https://www.exploit-db.com/exploits/26760

View Code ZIP pw:eip

The provided text describes a SQL injection vulnerability in ASPMForum, where the 'harf' parameter in 'kullanicilistesi.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to data disclosure or modification.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: ASPMForum (version not specified)

No auth needed

Prerequisites: Access to the vulnerable ASPMForum instance

MITRE ATT&CK

T1105 - Ingress Tool Transfer

devstral-2 · analyzed Feb 16, 2026 Full analysis →