CVE-2011-5135

DoceboLMS < 4.0.4 - Authenticated SQL Injection via coursereportuiconfig Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-5135. PoCs published by mr_me.

AI-analyzed exploit summary This exploit demonstrates SQL injection and arbitrary file upload vulnerabilities in Docebo LMS <= v4.0.4. The SQLi occurs via the 'coursereportuiconfig[name]' and 'coursereportuiconfig[description]' parameters, while the file upload flaw allows low-privileged users to upload PHP code via message attachments.

Description

Multiple SQL injection vulnerabilities in the save_connection function in lib/lib.iotask.php in the iotask module in DoceboLMS 4.0.4 and earlier allow remote authenticated users with admin or teacher privileges to execute arbitrary SQL commands via the (1) coursereportuiconfig[name] or (2) coursereportuiconfig[description] parameters to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by mr_me · phpwebappsphp
https://www.exploit-db.com/exploits/18224

This exploit demonstrates SQL injection and arbitrary file upload vulnerabilities in Docebo LMS <= v4.0.4. The SQLi occurs via the 'coursereportuiconfig[name]' and 'coursereportuiconfig[description]' parameters, while the file upload flaw allows low-privileged users to upload PHP code via message attachments.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Docebo LMS <= v4.0.4
Auth required
Prerequisites: Valid 'authentic_request' and 'docebo_session' cookies · Low-privileged user account (student or higher)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18224
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/71720

Scores

EPSS 0.0092
EPSS Percentile 55.6%

Details

CWE
CWE-89
Status published
Products (4)
docebo/docebolms 2.0.4
docebo/docebolms 2.0.5
docebo/docebolms 4.0
docebo/docebolms < 4.0.4
Published Aug 30, 2012
Tracked Since Feb 18, 2026