EIP-2026-104942

This exploit demonstrates a SQL injection vulnerability in AdaptCMS <= 2.0.4 due to improper handling of the 'question' POST parameter after urldecode. It allows an attacker to extract admin credentials via a crafted POST request.