exploitdb
WORKING POC
VERIFIED
by Crim3R · textwebappsphp
https://www.exploit-db.com/exploits/37553
The exploit demonstrates an SQL injection vulnerability in eNdonesia 8.5 by injecting malicious SQL queries via the 'cid' parameter in the URL. The lack of input sanitization allows attackers to manipulate the database query.
Classification
Working Poc 90%
Target:
eNdonesia 8.5
No auth needed
Prerequisites:
Access to the vulnerable web application