Description
SQL injection vulnerability in news.php in DZ EROTIK Auktionshaus V4rgo allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Easy Laster · textwebappsphp
https://www.exploit-db.com/exploits/11582
References (5)
Core 5
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/11582
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/56581
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38792
Exploit vdb-entry
x_refsource_osvdb
http://osvdb.org/62623
Scores
EPSS
0.0047
EPSS Percentile
64.5%
Details
CWE
CWE-89
Status
published
Products (1)
miethner-scripting/dz_erotik_auktionshaus_v4rgo
Published
Mar 24, 2010
Tracked Since
Feb 18, 2026