CVE-2008-7077
SailPlanner 0.3a - SQL Injection via Username and Password Fields
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-7077. PoCs published by JIKO.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in an unspecified web application. It provides example payloads for bypassing authentication but lacks executable exploit code.
Description
Multiple SQL injection vulnerabilities in SailPlanner 0.3a allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by JIKO · textwebappsphp
https://www.exploit-db.com/exploits/7267
This is a writeup describing a SQL injection vulnerability in an unspecified web application. It provides example payloads for bypassing authentication but lacks executable exploit code.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
Unspecified web application (relative.nl projects)
No auth needed
Prerequisites:
Access to the login page of the vulnerable application
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32521
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/7267
Vendor Advisory x_refsource_misc
http://www.juniper.net/security/auto/vulnerabilities/vuln32521.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46932
Scores
EPSS
0.0097
EPSS Percentile
57.3%
Details
CWE
CWE-89
Status
published
Products (1)
relative/sailplanner
0.3a
Published
Aug 25, 2009
Tracked Since
Feb 18, 2026