EXPLOITDB-EDB-7175

EXPLOITDB text VERIFIED WORKING POC

Exploit for CVE-2008-7049 - Natterchat - SQL Injection

AI Analysis

This exploit demonstrates an authentication bypass via SQL injection in Natterchat v1.12. By injecting a tautology (' or '1'='1) into the password field, an attacker can bypass authentication and log in as the admin user.

Attack Type

auth_bypass

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1110.001 - Password Guessing T1552 - Unsecured Credentials

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/7175

Authors

Stack Mountassif Moad

Vulnerability

CVE-2008-7049

Natterchat - SQL Injection