CVE-2010-1994

TomatoCMS < 2.0.5 - SQL Injection via News Search q Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1994. PoCs published by Russ McRee.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in TomatoCMS 2.0.6 and prior, where user-supplied input is not sufficiently sanitized. It includes an example URL demonstrating the vulnerability but lacks executable exploit code.

Description

SQL injection vulnerability in index.php in TomatoCMS before 2.0.5 allows remote attackers to execute arbitrary SQL commands via the q parameter in conjunction with a /news/search PATH_INFO.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Russ McRee · textwebappsphp
https://www.exploit-db.com/exploits/33978

The provided text describes a SQL injection vulnerability in TomatoCMS 2.0.6 and prior, where user-supplied input is not sufficiently sanitized. It includes an example URL demonstrating the vulnerability but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: TomatoCMS 2.0.6 and prior
No auth needed
Prerequisites: Access to the vulnerable TomatoCMS application
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/511273/100/0/threaded
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39320
Various Sources x_refsource_misc
http://holisticinfosec.org/content/view/141/45/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40108
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/64551
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2010-56
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/58470

Scores

EPSS 0.0118
EPSS Percentile 63.8%

Details

CWE
CWE-89
Status published
Products (7)
tomatocms/tomatocms 2.0.0
tomatocms/tomatocms 2.0.1
tomatocms/tomatocms 2.0.2
tomatocms/tomatocms 2.0.3
tomatocms/tomatocms 2.0.3.1430
tomatocms/tomatocms 2.0.3.1622
tomatocms/tomatocms < 2.0.4
Published May 20, 2010
Tracked Since Feb 18, 2026