Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-6128. PoCs published by ka0x.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in WorkingOnWeb 2.0.1400, allowing an attacker to extract sensitive information such as MySQL user credentials, database names, and version details via crafted HTTP GET requests.
Description
SQL injection vulnerability in events.php in WorkingOnWeb 2.0.1400 allows remote attackers to execute arbitrary SQL commands via the idevent parameter.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in WorkingOnWeb 2.0.1400, allowing an attacker to extract sensitive information such as MySQL user credentials, database names, and version details via crafted HTTP GET requests.