Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-1766. PoCs published by Mi4night.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in LightOpenCMS 0.1 via the 'id' parameter. The PoC provides a crafted URL to extract database version information, leveraging a lack of input sanitization in the vulnerable code.
Description
SQL injection vulnerability in index.php in LightOpenCMS 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in LightOpenCMS 0.1 via the 'id' parameter. The PoC provides a crafted URL to extract database version information, leveraging a lack of input sanitization in the vulnerable code.