Exploitation Summary
EIP tracks 1 public exploit for CVE-2011-2917. PoCs published by KraL BeNiM.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in CMS 4.x.x (Mambo) via the 'zorder' parameter in administrator/index2.php. It provides the vulnerable URL and parameter but does not include executable exploit code.
Description
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder parameter.
Exploits (1)
This is a writeup describing a SQL injection vulnerability in CMS 4.x.x (Mambo) via the 'zorder' parameter in administrator/index2.php. It provides the vulnerable URL and parameter but does not include executable exploit code.