Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-0825. PoCs published by Dmitriy Evteev.
AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in TinX CMS versions prior to 3.5.1, where the 'id' parameter in 'rss.php' is not properly sanitized. It includes a basic example URL for exploitation but lacks actual exploit code.
Description
SQL injection vulnerability in system/rss.php in TinX/cms 3.x before 3.5.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
The provided text describes an SQL injection vulnerability in TinX CMS versions prior to 3.5.1, where the 'id' parameter in 'rss.php' is not properly sanitized. It includes a basic example URL for exploitation but lacks actual exploit code.