Description
SQL injection vulnerability in linkcategory.php in Phanatic Softwares Chimera Web Portal System 0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Aliaksandr Hartsuyeu · textwebappsphp
https://www.exploit-db.com/exploits/27017
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/22420
Exploit x_refsource_misc
http://evuln.com/vulns/7/exploit.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0025
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/420669/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23963
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16113
Exploit x_refsource_misc
http://evuln.com/vulns/7/summary.html
Scores
EPSS
0.0123
EPSS Percentile
79.2%
Details
Status
published
Products (1)
phanatic_softwares/chimera_web_portal
0.2
Published
Jan 09, 2006
Tracked Since
Feb 18, 2026