CVE-2015-4658

Milw0rm Clone Script - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in admin/login.php in Milw0rm Clone Script 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) usr or (2) pwd parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by walid naceri · textwebappsphp

https://www.exploit-db.com/exploits/37290

View Code ZIP pw:eip

References (1)

Core 1

Core References

Exploit exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/37290/

Scores

EPSS 0.0213

EPSS Percentile 84.3%

Details

CWE

CWE-89

Status published

Products (1)

milw0rm_project/milw0rm_clone_script 1.0

Published Jun 18, 2015

Tracked Since Feb 18, 2026