EXPLOITDB-EDB-17211

EXPLOITDB text WORKING POC

Exploit for EIP-2026-109785 - mySeatXT 0.1781 - SQL Injection

AI Analysis

This exploit demonstrates a SQL injection vulnerability in mySeatXT 0.1781, allowing arbitrary data extraction and potential PHP shell creation via the 'autocomplete.php' endpoint. The PoC injects a PHP system command into a SQL query, writing a shell to a web-accessible directory.

Attack Type

SQLi

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/17211

Authors

AutoSec Tools

Vulnerability

EIP-2026-109785

mySeatXT 0.1781 - SQL Injection