CVE-2008-0770

EIP tracks 1 public exploit for CVE-2008-0770. PoCs published by RST/GHC.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in ibProArcade <= v3.3.0 by manipulating the 'overwrite_sort' and 'overwrite_order' parameters to extract database information, including user credentials. It uses a GUI interface to facilitate the attack and includes functions to test vulnerability, retrieve database table prefixes, and extract data from specified columns.

SQL injection vulnerability in arcade.php in ibProArcade 3.3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the g_display_order cookie parameter.