This exploit demonstrates SQL injection, CSRF, and XSS vulnerabilities in JSPMyAdmin 1.1. The SQL injection allows arbitrary deletion of records via crafted GET parameters, while the CSRF and XSS vulnerabilities enable unauthorized actions and script execution in the context of an authenticated user.
Classification
Working Poc 95%
Attack Type
Sqli | Xss | Csrf
Complexity
Trivial
Reliability
Reliable
Target:JSPMyAdmin 1.1
No auth needed
Prerequisites:Access to the JSPMyAdmin web interface