Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-5177. PoCs published by Sniper456.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Mambads <= 1.5 via the 'caid' parameter. It allows an attacker to extract user credentials from the 'mos_users' table by injecting a UNION-based SQL query.
Description
SQL injection vulnerability in index.php in the MambAds (com_mambads) 1.5 and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the caid parameter.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in Mambads <= 1.5 via the 'caid' parameter. It allows an attacker to extract user credentials from the 'mos_users' table by injecting a UNION-based SQL query.