CVE-2014-7176

Enalean Tuleap <7.5.99.4 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-7176. PoCs published by Portcullis.

AI-analyzed exploit summary This is a vulnerability writeup describing an authenticated blind SQL injection in Tuleap <= 7.4.99.5. The advisory details the affected parameters and URLs but does not include functional exploit code.

Description

SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Portcullis · textwebappsphp

https://www.exploit-db.com/exploits/35098

View Code ZIP pw:eip

This is a vulnerability writeup describing an authenticated blind SQL injection in Tuleap <= 7.4.99.5. The advisory details the affected parameters and URLs but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Moderate

Reliability

Theoretical

Target: Enalean Tuleap <= 7.4.99.5

Auth required

Prerequisites: Authenticated access to the Tuleap instance · Access to the '/plugins/docman/' endpoint

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/35099

View Code ZIP pw:eip

This exploit demonstrates an XML External Entity (XXE) injection vulnerability in Tuleap <= 7.2, allowing an authenticated attacker to read local system files (e.g., /etc/passwd) by uploading a maliciously crafted XML file via a multipart/form-data POST request.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Enalean Tuleap <= 7.2

Auth required

Prerequisites: Authenticated session (PHPSESSID and TULEAP_session_hash cookies) · Access to the tracker plugin upload functionality

MITRE ATT&CK