Exploitation Summary
EIP tracks 4 public exploits for CVE-2008-0850. PoCs published by Alexandr Polyakov.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Dokeos versions prior to 1.8.4 SP2. The provided URL manipulates the 'id' parameter in 'whoisonline.php' to extract database information such as user credentials and version details.
Description
Multiple SQL injection vulnerabilities in Dokeos 1.8.4 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to whoisonline.php, (2) tracking_list_coaches_column parameter to main/mySpace/index.php, (3) tutor_name parameter to main/create_course/add_course.php, the (4) Referer HTTP header to index.php, and the (5) X-Fowarded-For HTTP header to main/admin/class_list.php.
Exploits (4)
This exploit demonstrates a SQL injection vulnerability in Dokeos versions prior to 1.8.4 SP2. The provided URL manipulates the 'id' parameter in 'whoisonline.php' to extract database information such as user credentials and version details.
The provided text describes multiple vulnerabilities in Dokeos, including SQL injection, XSS, and arbitrary file upload, but does not contain functional exploit code. It includes a sample HTTP request with a malformed Referer header, likely demonstrating an injection point.
The provided text describes multiple vulnerabilities in Dokeos, including SQL injection, XSS, and arbitrary file upload, but does not contain executable exploit code. It references a URL parameter for SQL injection but lacks a functional PoC.
This exploit demonstrates a SQL injection vulnerability in Dokeos by sending a malformed POST request to the course creation endpoint. The payload targets the 'tutor_name' parameter with a single quote to break the SQL query.