CVE-2007-1847

Xoops Repository Module - SQL Injection via viewcat.php cid Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1847. PoCs published by ajann.

AI-analyzed exploit summary This Perl script exploits a blind SQL injection vulnerability in XOOPS Module Repository's viewcat.php to extract admin credentials (username and password) from the xoops_users table. It constructs a malicious SQL query via URL manipulation and parses the response for sensitive data.

Description

SQL injection vulnerability in viewcat.php in the Repository module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ajann · perlwebappsphp
https://www.exploit-db.com/exploits/3612

This Perl script exploits a blind SQL injection vulnerability in XOOPS Module Repository's viewcat.php to extract admin credentials (username and password) from the xoops_users table. It constructs a malicious SQL query via URL manipulation and parses the response for sensitive data.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: XOOPS Module Repository (version unspecified)
No auth needed
Prerequisites: Target must have the vulnerable XOOPS Module Repository installed · Target must be accessible via HTTP · Attacker must know the path to the vulnerable module
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33344
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37373
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3612
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23221

Scores

EPSS 0.0130
EPSS Percentile 66.5%

Details

Status published
Products (1)
xoops/repository_module
Published Apr 03, 2007
Tracked Since Feb 18, 2026