This exploit demonstrates a SQL injection vulnerability in the Follower User MyBB plugin. The vulnerability exists in the `SuscribeUsers.php` file, specifically in the `SuscribeUsers_add()` function, where user input is not properly sanitized.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:Follower User MyBB plugin version 1.5+
Auth required
Prerequisites:An account on the target site · User ID of the attacker