Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-1094. PoCs published by Easy Laster.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in a web application's news.php page. It provides a proof-of-concept exploit string to extract user credentials from the database.
Description
SQL injection vulnerability in news.php in DZ EROTIK Auktionshaus V4rgo allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Easy Laster · textwebappsphp
https://www.exploit-db.com/exploits/11582
This is a writeup describing a SQL injection vulnerability in a web application's news.php page. It provides a proof-of-concept exploit string to extract user credentials from the database.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
Unknown web application (auktionshaus/news.php)
No auth needed
Prerequisites:
Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/11582
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/56581
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38792
Exploit vdb-entry
x_refsource_osvdb
http://osvdb.org/62623
Scores
EPSS
0.0100
EPSS Percentile
58.3%
Details
CWE
CWE-89
Status
published
Products (1)
miethner-scripting/dz_erotik_auktionshaus_v4rgo
Published
Mar 24, 2010
Tracked Since
Feb 18, 2026