This exploit demonstrates a SQL injection vulnerability in Illogator Shop's login mechanism, allowing authentication bypass using a trivial SQLi payload. The provided credentials ('1'or'1'='1') manipulate the SQL query to return true, bypassing authentication.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:Illogator Shop (version unspecified)
No auth needed
Prerequisites:Access to the login page of the target application