CVE-2009-1826

myGesuad 0.9.14 - Authenticated User Account Enumeration via Find Action

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1826. PoCs published by YEnH4ckEr.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in my-Gesuad 0.9.14, including SQL injection, authentication bypass, and XSS. It provides proof-of-concept URLs and payloads to exploit these flaws.

Description

modules/admuser.php in myGesuad 0.9.14 (aka 0.9) does not require administrative authentication, which allows remote authenticated users to list user accounts via a Find action.

Exploits (1)

exploitdb WORKING POC VERIFIED

by YEnH4ckEr · textwebappsphp

https://www.exploit-db.com/exploits/8708

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in my-Gesuad 0.9.14, including SQL injection, authentication bypass, and XSS. It provides proof-of-concept URLs and payloads to exploit these flaws.

Classification

Working Poc 95%

Attack Type

Sqli | Auth Bypass | Xss

Complexity

Trivial

Reliability

Reliable

Target: my-Gesuad 0.9.14

No auth needed

Prerequisites: magic quotes=OFF for auth bypass · registered user for SQLi

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Various Sources x_refsource_confirm

http://www.collector.ch/download/mygesuad-0.9.zip

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/1345

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/8708

Exploit x_refsource_confirm

http://www.collector.ch/drupal5/?q=node/39

Scores

EPSS 0.0209

EPSS Percentile 79.1%

Details

CWE

CWE-287

Status published

Products (1)

collector/mygesuad 0.9.14

Published May 29, 2009

Tracked Since Feb 18, 2026