CVE-2010-3461
eNdonesia 8.4 - SQL Injection via Publisher Module artid Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-3461. PoCs published by vYc0d.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in eNdonesia 8.4's print module. The PoC shows how an attacker can inject malicious SQL queries via the 'artid' parameter to extract sensitive data from the database.
Description
SQL injection vulnerability in the Publisher module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the artid parameter in a printarticle action to mod.php, a different vector than CVE-2007-3394.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in eNdonesia 8.4's print module. The PoC shows how an attacker can inject malicious SQL queries via the 'artid' parameter to extract sensitive data from the database.