EXPLOITDB-EDB-11334

EXPLOITDB WORKING POC

Exploit for CVE-2010-1051 - AudiStat 1.3 - SQL Injection

AI Analysis

This exploit demonstrates a SQL injection vulnerability in Audistats 1.3 or lower via the 'mday' parameter. The provided payload (-666+union+all+select+@@version,user()--) extracts database version and user information.

Attack Type

SQLi

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

https://www.exploit-db.com/exploits/11334

Authors

kaMtiEz

Vulnerability

CVE-2010-1051

AudiStat 1.3 - SQL Injection