CVE-2020-35327

MEDIUM

Courier Management System 1.0 - SQL Injection via ref_no Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-35327. PoCs published by Zhaiyi.

AI-analyzed exploit summary This is a writeup describing a time-based blind SQL injection vulnerability in Courier Management System 1.0. It outlines steps to exploit the 'ref_no' parameter via SQLmap, leading to information disclosure of database contents.

Description

SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to admin_class.php

Exploits (1)

exploitdb WRITEUP

by Zhaiyi · textwebappsphp

https://www.exploit-db.com/exploits/49243

View Code ZIP pw:eip

This is a writeup describing a time-based blind SQL injection vulnerability in Courier Management System 1.0. It outlines steps to exploit the 'ref_no' parameter via SQLmap, leading to information disclosure of database contents.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Courier Management System 1.0

Auth required

Prerequisites: Valid credentials to log into the application · Access to the '/ajax.php?action=save_branch' endpoint · SQLmap or similar tool for exploitation

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/49243

Scores

CVSS v3 6.5

EPSS 0.0130

EPSS Percentile 66.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-89

Status published

Products (1)

courier_management_system_project/courier_management_system 1.0

Published Mar 04, 2021

Tracked Since Feb 18, 2026