CVE-2015-2237

Betster 1.0.4 - SQL Injection via id or username Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-2237. PoCs published by ZeQ3uL.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass via SQL injection in the login function and a secondary SQL injection in the `showprofile.php` endpoint. It bypasses authentication by injecting a tautology into the username parameter and then extracts database information (user and database name) via a UNION-based SQL injection.

Description

Multiple SQL injection vulnerabilities in Betster (aka PHP Betoffice) 1.0.4 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) showprofile.php or (2) categoryedit.php or (3) username parameter in a login to index.php.

Exploits (1)

exploitdb WORKING POC
by ZeQ3uL · textwebappsphp
https://www.exploit-db.com/exploits/36306

This exploit demonstrates an authentication bypass via SQL injection in the login function and a secondary SQL injection in the `showprofile.php` endpoint. It bypasses authentication by injecting a tautology into the username parameter and then extracts database information (user and database name) via a UNION-based SQL injection.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Betster (PHP Betoffice) 1.0.4
No auth needed
Prerequisites: Target must have Betster 1.0.4 installed · Target must have exposed login and showprofile.php endpoints
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/36306/
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534816/100/0/threaded

Scores

EPSS 0.0241
EPSS Percentile 82.0%

Details

CWE
CWE-89
Status published
Products (1)
betster_project/betster 1.0.4
Published Mar 12, 2015
Tracked Since Feb 18, 2026