EXPLOITDB-EDB-11609

EXPLOITDB text VERIFIED WORKING POC

Exploit for CVE-2010-1089 - PHP Trouble Ticket 2.2 - SQL Injection

AI Analysis

This exploit demonstrates a SQL injection vulnerability in phptroubleticket 2.0 (and possibly lower versions) via the 'id' parameter in vedi_faq.php. The PoC uses a UNION-based SQLi to extract email and password from the 'utenti' table.

Attack Type

SQLi

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/11609

Authors

kaMtiEz

Vulnerability

CVE-2010-1089

PHP Trouble Ticket 2.2 - SQL Injection