This is a writeup detailing SQL injection vulnerabilities in ShortCMS version 1.2.0 and earlier. It provides exploit URLs for extracting MySQL version, table names, and column names, along with vulnerable code analysis.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:ShortCMS 1.2.0 and earlier
No auth needed
Prerequisites:Access to the vulnerable ShortCMS instance