This exploit demonstrates a SQL injection vulnerability in pHNews Alpha 1's header.php file. The vulnerability allows an attacker to extract user credentials from the database via a crafted GET request.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:pHNews Alpha 1
No auth needed
Prerequisites:Access to the target web application