The exploit demonstrates SQL injection vulnerabilities in PHP Search Engine 1.0 via the 'id' parameter in 'go.php' and 'admin-delete.php'. It includes a crafted SQL payload to extract database information.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:PHP Search Engine 1.0
No auth needed
Prerequisites:Access to the vulnerable web application