CVE-2008-5573

Poll Pro 2.0 - SQL Injection via Login Username or Password Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5573. PoCs published by AlpHaNiX.

AI-analyzed exploit summary This is a writeup detailing an SQL injection vulnerability in PollPro v2.0, specifically an authentication bypass using a trivial SQLi payload. No actual exploit code is provided, only the payload and basic vulnerability details.

Description

SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) Password and (2) username parameters.

Exploits (1)

exploitdb WRITEUP VERIFIED

by AlpHaNiX · textwebappsasp

https://www.exploit-db.com/exploits/7391

View Code ZIP pw:eip

This is a writeup detailing an SQL injection vulnerability in PollPro v2.0, specifically an authentication bypass using a trivial SQLi payload. No actual exploit code is provided, only the payload and basic vulnerability details.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: PollPro v2.0

No auth needed

Prerequisites: access to the login page of PollPro v2.0

MITRE ATT&CK