Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-3479. PoCs published by BrOx-Dz.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in BoutikOne® v1's list.php file. It provides example URLs demonstrating the vulnerability but does not include functional exploit code.
Description
SQL injection vulnerability in list.php in BoutikOne 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by BrOx-Dz · textwebappsphp
https://www.exploit-db.com/exploits/15049
This is a writeup describing a SQL injection vulnerability in BoutikOne® v1's list.php file. It provides example URLs demonstrating the vulnerability but does not include functional exploit code.
Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
BoutikOne® v1
No auth needed
Prerequisites:
access to the vulnerable list.php endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/61911
Exploit x_refsource_misc
http://packetstormsecurity.org/1009-exploits/boutikone-sql.txt
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2436
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/15049
Scores
EPSS
0.0204
EPSS Percentile
78.7%
Details
CWE
CWE-89
Status
published
Products (1)
boutikone/boutikone
1.0
Published
Sep 22, 2010
Tracked Since
Feb 18, 2026