CVE-2007-1293

Rigter Portal System 6.2 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1293. PoCs published by s0cratex.

AI-analyzed exploit summary This exploit performs a blind SQL injection attack against RPS 6.2 to extract admin credentials by brute-forcing each character of the username and password via ASCII values. It leverages a time-based condition to infer successful character matches.

Description

SQL injection vulnerability in Rigter Portal System (RPS) 6.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the categoria parameter to the top-level URI (index.php), possibly related to ver_descarga.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by s0cratex · phpwebappsphp

https://www.exploit-db.com/exploits/3403

View Code ZIP pw:eip

This exploit performs a blind SQL injection attack against RPS 6.2 to extract admin credentials by brute-forcing each character of the username and password via ASCII values. It leverages a time-based condition to infer successful character matches.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: RPS 6.2

No auth needed

Prerequisites: magic_quotes_gpc = Off · target application accessible via HTTP · knowledge of the admin ID (default: 1)

MITRE ATT&CK