EIP-2026-106966

This exploit demonstrates an SQL injection vulnerability in Exponent CMS 2.0.4 via the 'src' parameter in the send_reminders.php script. The payload uses a time-based blind SQLi technique with SLEEP(5) to confirm vulnerability.