CVE-2010-4967

ATCOM Netvolution 2.5.6 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4967. PoCs published by amquen & krumel.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in Netvolution CMS versions >= 2.xx.xx.xx. It provides multiple options for automated scanning, information extraction, and manual exploitation of the vulnerability.

Description

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter.

Exploits (1)

exploitdb WORKING POC

by amquen & krumel · perlwebappsasp

https://www.exploit-db.com/exploits/13815

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in Netvolution CMS versions >= 2.xx.xx.xx. It provides multiple options for automated scanning, information extraction, and manual exploitation of the vulnerability.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Netvolution CMS >= 2.xx.xx.xx

No auth needed

Prerequisites: A list of target URLs in a text file for automated scanning · Network access to the target web application

MITRE ATT&CK