CVE-2010-1269
phpscripte24 Niedrig Gebote Pro Auktions System II - SQL Injection via auktion.php id_auk Parameter
Title source: llmExploitation Summary
EIP tracks 3 public exploits for CVE-2010-1269. PoCs published by Easy Laster.
AI-analyzed exploit summary This is a writeup describing a blind SQL injection vulnerability in phpscripte24 Niedrig Gebote Pro Auktions System II. It provides example URLs to exploit the vulnerability in the `auktion.php` file by manipulating the `id_auk` parameter.
Description
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
Exploits (3)
This is a writeup describing a blind SQL injection vulnerability in phpscripte24 Niedrig Gebote Pro Auktions System II. It provides example URLs to exploit the vulnerability in the `auktion.php` file by manipulating the `id_auk` parameter.
This is a functional blind SQL injection exploit for phpscripte24 Auktionshaus Community Standart System. It demonstrates how to extract user password hashes by manipulating the 'id_auk' parameter in the 'auktion.php' script.
This is a functional Python exploit for a blind SQL injection vulnerability in Multi Auktions Komplett System V2. It automates the extraction of user credentials (password, email, username) by brute-forcing character-by-character via ASCII comparisons.