The exploit demonstrates a SQL injection vulnerability in LiveSales 1.0 via the 'id' parameter in multiple endpoints. The PoC includes a crafted SQL payload that extracts database schema information, confirming the vulnerability.
Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target:LiveSales 1.0
No auth needed
Prerequisites:Access to the vulnerable web application