CVE-2009-3504

Alibaba Clone 3.0 - SQL Injection via offers_buy.php id Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3504. PoCs published by Easy Laster.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Alibaba Clone Version 3.0 (Special) by extracting admin credentials from the database via a crafted UNION-based SQL query. It targets the 'offers_buy.php' script with an 'id' parameter to leak the admin username and password.

Description

SQL injection vulnerability in offers_buy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Easy Laster · rubywebappsphp

https://www.exploit-db.com/exploits/12543

View Code ZIP pw:eip

This exploit demonstrates a SQL injection vulnerability in Alibaba Clone Version 3.0 (Special) by extracting admin credentials from the database via a crafted UNION-based SQL query. It targets the 'offers_buy.php' script with an 'id' parameter to leak the admin username and password.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Alibaba Clone Version 3.0 (Special)

No auth needed

Prerequisites: Target must be running Alibaba Clone Version 3.0 (Special) · The 'offers_buy.php' script must be accessible

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/36845

Exploit x_refsource_misc

http://packetstormsecurity.org/0909-exploits/alibaba30-sql.txt

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/2737

Scores

EPSS 0.0127

EPSS Percentile 66.1%

Details

CWE

CWE-89

Status published

Products (1)

alibabaclone/alibaba_clone 3.0

Published Sep 30, 2009

Tracked Since Feb 18, 2026