CVE-2014-1619
Cubic CMS 5.1.1-5.2 - SQL Injection via Resource ID, Version ID, Login, or Pass Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2014-1619. PoCs published by Eugenio Delfa.
AI-analyzed exploit summary This is a vulnerability writeup detailing multiple issues in CUBIC CMS, including SQL injection, local file inclusion, and full path disclosure. It provides syntax examples for exploitation but does not include functional exploit code.
Description
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agent.php or (3) login or (4) pass parameter to login.usuario.
Exploits (1)
This is a vulnerability writeup detailing multiple issues in CUBIC CMS, including SQL injection, local file inclusion, and full path disclosure. It provides syntax examples for exploitation but does not include functional exploit code.