Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-5996. PoCs published by Khashayar Fereidani.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in Links Directory Script. It provides injection addresses and example SQL queries to extract admin credentials.
Description
SQL injection vulnerability in searchresult.php in Softbiz Link Directory Script allows remote attackers to execute arbitrary SQL commands via the sbcat_id parameter, a related issue to CVE-2007-5449.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Khashayar Fereidani · textwebappsphp
https://www.exploit-db.com/exploits/4620
This is a writeup describing a SQL injection vulnerability in Links Directory Script. It provides injection addresses and example SQL queries to extract admin credentials.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
Links Directory Script by SoftbizScripts
No auth needed
Prerequisites:
Access to the vulnerable searchresult.php endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/38398
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/4620
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26402
Scores
EPSS
0.0099
EPSS Percentile
57.8%
Details
CWE
CWE-89
Status
published
Products (1)
softbizscripts/link_directory_script
1.0
Published
Nov 15, 2007
Tracked Since
Feb 18, 2026