CVE-2010-1070

ImagoScripts Deviant Art Clone - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1070. PoCs published by alnjm33.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in ImagoScripts Deviant Art Clone. It leverages a union-based SQLi to extract database version information via the 'seid' parameter in the forums view category functionality.

Description

SQL injection vulnerability in index.php in ImagoScripts Deviant Art Clone allows remote attackers to execute arbitrary SQL commands via the seid parameter in a forums viewcat action.

Exploits (1)

exploitdb WORKING POC VERIFIED
by alnjm33 · textwebappsphp
https://www.exploit-db.com/exploits/11002

This exploit demonstrates a SQL injection vulnerability in ImagoScripts Deviant Art Clone. It leverages a union-based SQLi to extract database version information via the 'seid' parameter in the forums view category functionality.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: ImagoScripts Deviant Art Clone
Auth required
Prerequisites: User account on the target site · Access to the forums view category page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38096
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/11002
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0031
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55379
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/61482

Scores

EPSS 0.0115
EPSS Percentile 62.8%

Details

CWE
CWE-89
Status published
Products (1)
imagoscripts/deviant_art_clone
Published Mar 23, 2010
Tracked Since Feb 18, 2026