CVE-2010-4986

Simple Document Management System - SQL Injection

Title source: llm

Description

SQL injection vulnerability in detail.php in Simple Document Management System (SDMS) allows remote attackers to execute arbitrary SQL commands via the doc_id parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Sid3^effects · textwebappsphp

https://www.exploit-db.com/exploits/14262

View Code ZIP pw:eip

References (2)

[Exploit] http://www.exploit-db.com/exploits/14262

[Exploit] http://www.securityfocus.com/bid/41431

Scores

EPSS 0.0011

EPSS Percentile 29.4%

Classification

CWE

CWE-89

Status draft

Affected Products (3)

cafuego/simple_document_management_system

Timeline

Published Nov 01, 2011

Tracked Since Feb 18, 2026