CVE-2007-4966

GForge < 4.6_b2 - SQL Injection via skill_delete[] Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4966. PoCs published by Sumit Siddharth.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in GForge's editprofile.php script via the 'skill_delete' parameter. It allows an attacker to extract usernames and passwords from the backend database using a UNION-based SQL injection technique.

Description

SQL injection vulnerability in www/people/editprofile.php in GForge 4.6b2 and earlier allows remote attackers to execute arbitrary SQL commands via the skill_delete[] parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sumit Siddharth · textwebappsphp

https://www.exploit-db.com/exploits/4404

View Code ZIP pw:eip

This exploit demonstrates a SQL injection vulnerability in GForge's editprofile.php script via the 'skill_delete' parameter. It allows an attacker to extract usernames and passwords from the backend database using a UNION-based SQL injection technique.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: GForge up to version 4.6b2

Auth required

Prerequisites: Access to the vulnerable GForge instance · Valid session or authentication to exploit the endpoint

MITRE ATT&CK