CVE-2013-5697

mod_accounting < 0.5 - SQL Injection via Host Header

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-5697. PoCs published by Wireghoul.

AI-analyzed exploit summary This PoC demonstrates a blind SQL injection in mod_accounting 0.5 via the Host header, leading to remote command execution by exploiting PostgreSQL's ability to load and execute arbitrary functions. The exploit attempts multiple injection vectors to terminate the SQL query and execute a netcat reverse shell.

Description

SQL injection vulnerability in mod_accounting.c in the mod_accounting module 0.5 and earlier for Apache allows remote attackers to execute arbitrary SQL commands via a Host header.

Exploits (1)

exploitdb WORKING POC
by Wireghoul · textwebappslinux
https://www.exploit-db.com/exploits/28653

This PoC demonstrates a blind SQL injection in mod_accounting 0.5 via the Host header, leading to remote command execution by exploiting PostgreSQL's ability to load and execute arbitrary functions. The exploit attempts multiple injection vectors to terminate the SQL query and execute a netcat reverse shell.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: mod_accounting 0.5
No auth needed
Prerequisites: PostgreSQL database backend · mod_accounting configured with user-defined query containing unsanitized placeholders · Database user with sufficient privileges to create functions and execute commands
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/97588

Scores

EPSS 0.0127
EPSS Percentile 65.9%

Details

CWE
CWE-89
Status published
Products (1)
simone_tellini/mod_accounting < 0.5
Published Sep 30, 2013
Tracked Since Feb 18, 2026