CVE-2006-0939

DCI-Taskeen 1.03 - SQL Injection via id or action Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-0939. PoCs published by Linux_Drox.

AI-analyzed exploit summary The provided text describes SQL injection vulnerabilities in DCI-Taskeen, detailing vulnerable parameters in the `cat.php` file. It includes example URLs demonstrating how unsanitized input can be exploited.

Description

SQL injection vulnerability in DCI-Taskeen 1.03 allows remote attackers to execute arbitrary SQL commands via the (1) id or (2) action parameter to (a) basket.php, or (3) id or (4) page parameter to (b) cat.php.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Linux_Drox · textwebappsphp
https://www.exploit-db.com/exploits/27314

The provided text describes SQL injection vulnerabilities in DCI-Taskeen, detailing vulnerable parameters in the `cat.php` file. It includes example URLs demonstrating how unsanitized input can be exploited.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: DCI-Taskeen
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Linux_Drox · textwebappsphp
https://www.exploit-db.com/exploits/27313

The provided text describes SQL injection vulnerabilities in DCI-Taskeen, specifically in the 'basket.php' file via the 'action' and 'id' parameters. It outlines the vulnerable endpoints but does not include executable exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: DCI-Taskeen (version not specified)
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24963
Exploit mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/426082
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16828
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/495
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015685

Scores

EPSS 0.0114
EPSS Percentile 62.4%

Details

Status published
Products (1)
dci-designs/dci-taskeen 1.03
Published Mar 01, 2006
Tracked Since Feb 18, 2026