Exploitation Summary
EIP tracks 1 public exploit for CVE-2017-12759. PoCs published by Ihsan Sencan.
AI-analyzed exploit summary The exploit demonstrates SQL injection vulnerabilities in SOA School Management 3.0 via multiple endpoints, allowing attackers to extract sensitive data such as usernames and passwords. The PoC includes crafted SQL payloads for various parameters.
Description
Ynet Interactive - http://demo.ynetinteractive.com/soa/ SOA School Management 3.0 is affected by: SQL Injection. The impact is: Code execution (remote).
Exploits (1)
The exploit demonstrates SQL injection vulnerabilities in SOA School Management 3.0 via multiple endpoints, allowing attackers to extract sensitive data such as usernames and passwords. The PoC includes crafted SQL payloads for various parameters.
References (3)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H