Exploitation Summary
EIP tracks 1 public exploit for CVE-2005-2985. PoCs published by alexsrb.
AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in AEwebworks aeDating by injecting a UNION-based payload into the 'Country' parameter. The lack of input sanitization allows attackers to manipulate SQL queries, potentially leading to data disclosure or modification.
Description
SQL injection vulnerability in search_result.php in AEwebworks aeDating Script 4.0 and earlier allows remote attackers to execute arbitrary SQL statements via the Country parameter.
Exploits (1)
This exploit demonstrates an SQL injection vulnerability in AEwebworks aeDating by injecting a UNION-based payload into the 'Country' parameter. The lack of input sanitization allows attackers to manipulate SQL queries, potentially leading to data disclosure or modification.