CVE-2009-2123

Elvin 1.2.0 - SQL Injection

Title source: llm

Description

Multiple SQL injection vulnerabilities in Elvin 1.2.0 allow remote attackers to execute arbitrary SQL commands via the (1) inUser (aka Username) and (2) inPass (aka Password) parameters to (a) inc/login.ei, reachable through login.php; and the (3) id parameter to (b) show_bug.php and (c) show_activity.php. NOTE: it was later reported that vector 3c also affects 1.2.2.

Exploits (2)

exploitdb WRITEUP VERIFIED

by SirGod · textwebappsphp

https://www.exploit-db.com/exploits/8953

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by 599eme Man · textwebappsphp

https://www.exploit-db.com/exploits/9342

View Code ZIP pw:eip

References (3)

[Vendor Advisory] http://secunia.com/advisories/35486

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/8953

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/9342

Scores

EPSS 0.0034

EPSS Percentile 56.2%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

elvinbts/elvinbts

Timeline

Published Jun 19, 2009

Tracked Since Feb 18, 2026