CVE-2007-4253

Envolution < 1.1.0 - SQL Injection via News Module Topic Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4253. PoCs published by k1tk4t.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in Envolution CMS <= v1.1.0 to extract user credentials (username and MD5 password hash) from the database by manipulating the 'topic' parameter in the News module.

Description

SQL injection vulnerability in the News module in modules.php in Envolution 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2005-4263.

Exploits (1)

exploitdb WORKING POC VERIFIED

by k1tk4t · perlwebappsphp

https://www.exploit-db.com/exploits/4256

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in Envolution CMS <= v1.1.0 to extract user credentials (username and MD5 password hash) from the database by manipulating the 'topic' parameter in the News module.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Envolution CMS <= v1.1.0

No auth needed

Prerequisites: Target URL · Path to Envolution installation · Valid member ID

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/25203

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/39199

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/475654/100/0/threaded

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/4256

Scores

EPSS 0.0103

EPSS Percentile 59.1%

Details

Status published

Products (1)

envolution/envolution < 1.1.0

Published Aug 08, 2007

Tracked Since Feb 18, 2026