Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-0704. PoCs published by DaiMon.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in WSN Guest 1.23 via the search.php file. It allows an attacker to extract usernames and passwords from the wsnguest_members table by manipulating the search parameter.
Description
SQL injection vulnerability in search.php in WSN Guest 1.23 allows remote attackers to execute arbitrary SQL commands via the search parameter in an advanced action.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in WSN Guest 1.23 via the search.php file. It allows an attacker to extract usernames and passwords from the wsnguest_members table by manipulating the search parameter.