CVE-2008-2194

deluxebb < 1.1 - SQL Injection via forums.php sort Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2194. PoCs published by EgiX.

AI-analyzed exploit summary This exploit demonstrates a blind SQL injection via the 'sort' parameter in DeluxeBB <= 1.2 and a PHP injection via admin credentials in the admincp.php log file. It extracts the admin's MD5 password hash and injects a PHP shell for remote command execution.

Description

SQL injection vulnerability in forums.php in DeluxeBB 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the sort parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by EgiX · phpwebappsphp
https://www.exploit-db.com/exploits/5550

This exploit demonstrates a blind SQL injection via the 'sort' parameter in DeluxeBB <= 1.2 and a PHP injection via admin credentials in the admincp.php log file. It extracts the admin's MD5 password hash and injects a PHP shell for remote command execution.

Classification
Working Poc 95%
Attack Type
Sqli | Rce
Complexity
Moderate
Reliability
Reliable
Target: DeluxeBB <= 1.2
Auth required
Prerequisites: MySQL >= 4.1 · Admin credentials or ability to extract them via SQLi
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30084
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/29062
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42224
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5550

Scores

EPSS 0.0097
EPSS Percentile 57.3%

Details

CWE
CWE-89
Status published
Products (1)
deluxebb/deluxebb < 1.1
Published May 14, 2008
Tracked Since Feb 18, 2026