Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-4423. PoCs published by Gamoscu.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in weenCompany's software. It provides a dork and an exploit URL but lacks executable code or detailed technical steps.
Description
SQL injection vulnerability in index.php in weenCompany 4.0.0 allows remote attackers to execute arbitrary SQL commands via the moduleid parameter. NOTE: some of these details are obtained from third party information.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Gamoscu · textwebappsphp
https://www.exploit-db.com/exploits/10606
This is a writeup describing a SQL injection vulnerability in weenCompany's software. It provides a dork and an exploit URL but lacks executable code or detailed technical steps.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
weenCompany (version unspecified)
No auth needed
Prerequisites:
Target running weenCompany software · Access to the vulnerable endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54996
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/61264
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37895
Exploit x_refsource_misc
http://packetstormsecurity.org/0912-exploits/weencompany-sql.txt
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/10606
Scores
EPSS
0.0102
EPSS Percentile
59.0%
Details
CWE
CWE-89
Status
published
Products (1)
weentech/weencompany
4.0.0
Published
Dec 24, 2009
Tracked Since
Feb 18, 2026