CVE-2008-6624
WEBBDOMAIN Petition 1.02, 2.0, 3.0 - SQL Injection via Username Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-6624. PoCs published by Hakxer.
AI-analyzed exploit summary This exploit demonstrates an SQL injection-based authentication bypass in the WebBDomain Petition script. The provided credentials leverage a classic SQLi technique to bypass authentication.
Description
SQL injection vulnerability in getin.php in WEBBDOMAIN Petition 1.02, 2.0, and 3.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Hakxer · textwebappsphp
https://www.exploit-db.com/exploits/6983
This exploit demonstrates an SQL injection-based authentication bypass in the WebBDomain Petition script. The provided credentials leverage a classic SQLi technique to bypass authentication.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
WebBDomain Petition script (version unspecified)
No auth needed
Prerequisites:
Access to the login page of the vulnerable script
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32108
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46362
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/6983
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/49759
Scores
EPSS
0.0097
EPSS Percentile
57.1%
Details
CWE
CWE-89
Status
published
Products (4)
webbdomain/petition
1.0
webbdomain/petition
1.02
webbdomain/petition
2.0
webbdomain/petition
3.0
Published
Apr 06, 2009
Tracked Since
Feb 18, 2026