CVE-2008-6422
Psychostats 2.3, 2.3.1, 2.3.3 - SQL Injection via id Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-6422. PoCs published by Mr.SQL.
AI-analyzed exploit summary This is a writeup detailing SQL injection vulnerabilities in PsychoStats versions 2.3, 2.3.1, and 2.3.3. It provides specific SQLi payloads for the 'weapon.php' and 'map.php' endpoints to extract database information.
Description
Multiple SQL injection vulnerabilities in PsychoStats 2.3, 2.3.1, and 2.3.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) weapon.php and (2) map.php.
Exploits (1)
This is a writeup detailing SQL injection vulnerabilities in PsychoStats versions 2.3, 2.3.1, and 2.3.3. It provides specific SQLi payloads for the 'weapon.php' and 'map.php' endpoints to extract database information.