This exploit demonstrates a SQL injection vulnerability in Ciuis CRM v1.0.7 via the URL path filename parameter. The PoC shows a database error triggered by injecting a malformed SQL query, confirming the vulnerability.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:Ciuis CRM v1.0.7
Auth required
Prerequisites:User registration on the target CRM system