Exploitation Summary
EIP tracks 1 public exploit for CVE-2006-3329. PoCs published by Luny.
AI-analyzed exploit summary The provided text describes SQL and HTML injection vulnerabilities in 'phpclassifieds.info' due to improper input sanitization. It outlines potential impacts but does not include functional exploit code.
Description
SQL injection vulnerability in search.php in PHP/MySQL Classifieds (PHP Classifieds) allows remote attackers to execute arbitrary SQL commands via the rate parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Luny · textwebappsphp
https://www.exploit-db.com/exploits/28125
The provided text describes SQL and HTML injection vulnerabilities in 'phpclassifieds.info' due to improper input sanitization. It outlines potential impacts but does not include functional exploit code.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
phpclassifieds.info (version unspecified)
No auth needed
Prerequisites:
Access to the vulnerable search.php endpoint
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/18713
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/438667/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27453
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016407
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/1179
Scores
EPSS
0.0110
EPSS Percentile
61.4%
Details
Status
published
Products (1)
deltascripts/php_classifieds
6.04
Published
Jun 30, 2006
Tracked Since
Feb 18, 2026