Description
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by CWH Underground · textwebappsphp
https://www.exploit-db.com/exploits/5914
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43291
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/5914
Scores
EPSS
0.0036
EPSS Percentile
58.3%
Details
CWE
CWE-89
Status
published
Products (1)
cwh_underground/demo4_cms
01 beta
Published
Jul 02, 2008
Tracked Since
Feb 18, 2026