CVE-2006-3341
MyAds module 2.04jp for Xoops - SQL Injection via lid Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-3341. PoCs published by KeyCoder.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in the Xoops myAds module, specifically in the 'annonces-p-f.php' file. The PoC shows how an attacker can extract user credentials from the 'xoops_users' table by manipulating the 'op' parameter.
Description
SQL injection vulnerability in annonces-p-f.php in MyAds module 2.04jp for Xoops allows remote attackers to execute arbitrary SQL commands via the lid parameter.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in the Xoops myAds module, specifically in the 'annonces-p-f.php' file. The PoC shows how an attacker can extract user credentials from the 'xoops_users' table by manipulating the 'op' parameter.