This exploit demonstrates SQL injection vulnerabilities in De-Workshop Auto Workshop Portal 1.0, allowing unauthenticated attackers to extract database information via crafted GET requests. The PoC includes a UNION-based SQLi payload to dump table and column names.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:De-Workshop Auto Workshop Portal 1.0
No auth needed
Prerequisites:Network access to the target application