CVE-2006-0870

Mini-Nuke CMS < 1.8.2 - SQL Injection via pages.asp id Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0870. PoCs published by nukedx.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in MiniNuke CMS via the 'pages.asp' page. It extracts user credentials (MD5 hashes) by injecting a UNION-based SQL query.

Description

SQL injection vulnerability in pages.asp in Mini-Nuke CMS System 1.8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: version 2.3 was later reported to be vulnerable as well.

Exploits (1)

exploitdb WORKING POC VERIFIED
by nukedx · perlwebappsasp
https://www.exploit-db.com/exploits/1514

This exploit targets a SQL injection vulnerability in MiniNuke CMS via the 'pages.asp' page. It extracts user credentials (MD5 hashes) by injecting a UNION-based SQL query.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: MiniNuke CMS (all versions)
No auth needed
Prerequisites: Target must be running MiniNuke CMS with vulnerable 'pages.asp' endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16730
Exploit x_refsource_misc
http://www.nukedx.com/?viewdoc=9
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/431714/100/0/threaded
Exploit, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18439
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24803
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17636
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/425599/100/0/threaded
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/431602/100/0/threaded
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/428361/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23438

Scores

EPSS 0.0213
EPSS Percentile 79.6%

Details

Status published
Products (1)
mini-nuke/mini-nuke_cms < 1.8.2
Published Feb 23, 2006
Tracked Since Feb 18, 2026