CVE-2021-37787

EIP tracks 1 public exploit for CVE-2021-37787. PoCs published by vasykor.

AI-analyzed exploit summary This repository contains a functional proof-of-concept for CVE-2021-37787, demonstrating an SQL injection vulnerability in ABO.CMS via the TinyMCE module. The PoC includes a crafted POST request targeting the login_session_auth.php endpoint, which can lead to unauthorized data access or manipulation.

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module