CVE-2012-5312

tribiq CMS - SQL Injection via id Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5312. PoCs published by Skote Vahshat.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in Tribiq CMS, where user-supplied input via the 'id' parameter is not properly sanitized. It includes a generic example URL for exploitation but lacks actual exploit code or technical details.

Description

SQL injection vulnerability in Tribiq CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Skote Vahshat · textwebappsphp
https://www.exploit-db.com/exploits/36590

The provided text describes an SQL injection vulnerability in Tribiq CMS, where user-supplied input via the 'id' parameter is not properly sanitized. It includes a generic example URL for exploitation but lacks actual exploit code or technical details.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Tribiq CMS (version not specified)
No auth needed
Prerequisites: Access to the vulnerable endpoint
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/72613
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/51614

Scores

EPSS 0.0111
EPSS Percentile 61.9%

Details

CWE
CWE-89
Status published
Products (1)
tribiq/tribiq_cms
Published Oct 08, 2012
Tracked Since Feb 18, 2026