CVE-2013-6985

Enorth Webpublisher CMS < 5.0 - SQL Injection via thisday Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-6985. PoCs published by xin.wang.

AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in Enorth Webpublisher via a crafted POST request to log_searchday.jsp. The payload extracts user credentials from the TN_USER table using Oracle's UTL_INADDR.get_host_name function.

Description

SQL injection vulnerability in m_worklog/log_searchday.jsp in Enorth Webpublisher CMS, possibly 5.0 and earlier, allows remote attackers to execute arbitrary SQL commands via the thisday parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by xin.wang · textwebappsphp
https://www.exploit-db.com/exploits/38862

This exploit demonstrates an SQL injection vulnerability in Enorth Webpublisher via a crafted POST request to log_searchday.jsp. The payload extracts user credentials from the TN_USER table using Oracle's UTL_INADDR.get_host_name function.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Enorth Webpublisher
No auth needed
Prerequisites: Access to the target application's log_searchday.jsp endpoint
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2013/Dec/35
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/64110

Scores

EPSS 0.0113
EPSS Percentile 62.4%

Details

CWE
CWE-89
Status published
Products (1)
enorth/webpublisher_cms < 5.0
Published Dec 09, 2013
Tracked Since Feb 18, 2026