CVE-2006-1708

Clansys 1.1 - SQL Injection via member.php showid Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1708. PoCs published by snatcher.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Clansys 1.1, allowing an attacker to retrieve user credentials (username and base64-encoded password) by manipulating the 'showid' parameter in the 'member.php' file. The exploit constructs a malicious SQL query using a UNION-based injection to extract data from the 'member' table.

Description

SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by snatcher · phpwebappsphp

https://www.exploit-db.com/exploits/1662

View Code ZIP pw:eip

This exploit demonstrates a SQL injection vulnerability in Clansys 1.1, allowing an attacker to retrieve user credentials (username and base64-encoded password) by manipulating the 'showid' parameter in the 'member.php' file. The exploit constructs a malicious SQL query using a UNION-based injection to extract data from the 'member' table.

Classification

Working Poc 100%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Clansys 1.1

No auth needed

Prerequisites: Target must be running Clansys 1.1 with exposed 'member.php' file · SQL injection vulnerability in the 'showid' parameter

MITRE ATT&CK