CVE-2006-3884

Gonafish LinksCaffe 3.0 - SQL Injection via Multiple Parameters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3884. PoCs published by simo64.

AI-analyzed exploit summary The provided text describes SQL injection vulnerabilities in LinksCaffe, with example URLs demonstrating how unsanitized input in parameters like 'offset', 'limit', and 'newdays' can be exploited. It includes a basic UNION-based SQLi example but lacks executable exploit code.

Description

Multiple SQL injection vulnerabilities in links.php in Gonafish LinksCaffe 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) offset and (2) limit parameters, (3) newdays parameter in a new action, and the (4) link_id parameter in a deadlink action. NOTE: this issue can also be used for path disclosure by a forced SQL error, or to modify PHP files using OUTFILE.

Exploits (1)

exploitdb WRITEUP VERIFIED

by simo64 · textwebappsphp

https://www.exploit-db.com/exploits/28267

View Code ZIP pw:eip

The provided text describes SQL injection vulnerabilities in LinksCaffe, with example URLs demonstrating how unsanitized input in parameters like 'offset', 'limit', and 'newdays' can be exploited. It includes a basic UNION-based SQLi example but lacks executable exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: LinksCaffe (version not specified)

No auth needed

Prerequisites: Access to the vulnerable LinksCaffe application

MITRE ATT&CK