CVE-2010-4619
published 2010-12-29CVE-2010-4619: SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.00%
58.4th percentile
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Mafya Oyun Scrpti - 'profil.php' SQL Injection
exploitdb·2010-12-20
CVE-2010-4619 Mafya Oyun Scrpti - 'profil.php' SQL Injection
Mafya Oyun Scrpti - 'profil.php' SQL Injection
---
source: https://www.securityfocus.com/bid/45501/info
Mafya Oyun Scrpti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.
http://www.example.com/profil.php?id=[SQL]
Exploit-DB
Mafia Game Script - SQL Injection
exploitdb·2010-12-18
CVE-2010-4619 Mafia Game Script - SQL Injection
Mafia Game Script - SQL Injection
---
+Name : WebScript Mafia Game Script (profile.php) > www.cyber-warrior.org
+Greetz to All System-Hacker, BlackApple , F0RTYS3V3N and All KinqSqlZCrew
Members
Yoksulluğu anladıkta sevmek neden kıt kanaat? Yoksa yüreklerde mi yoksul
kimler biçmiş Aşk'a fiyat?
Bug ;
target/path/profil.php?id=[Sql Inj.]
No writeups or analysis indexed.
http://secunia.com/advisories/42710http://www.exploit-db.com/exploits/15775http://www.securityfocus.com/bid/45501https://exchange.xforce.ibmcloud.com/vulnerabilities/64208http://secunia.com/advisories/42710http://www.exploit-db.com/exploits/15775http://www.securityfocus.com/bid/45501https://exchange.xforce.ibmcloud.com/vulnerabilities/64208
2010-12-29
Published