EIP-2026-109447

This exploit demonstrates SQL injection in Microfinance Management System 1.0 via the 'customer_number' parameter in /mims/updatecustomer.php. It includes a proof-of-concept payload and a Burpsuite request for exploitation.