Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-112159. PoCs published by Javor Ninov.
AI-analyzed exploit summary The exploit demonstrates an SQL injection vulnerability in Simplog 0.9.3.2 via the 'pid' parameter in archive.php, allowing an attacker to extract admin credentials from the database. The provided URL includes a UNION-based SQLi payload to dump login and password fields from the blog_users table.
Description
Simplog 0.9.3 - 'archive.php' SQL Injection
Exploits (1)
The exploit demonstrates an SQL injection vulnerability in Simplog 0.9.3.2 via the 'pid' parameter in archive.php, allowing an attacker to extract admin credentials from the database. The provided URL includes a UNION-based SQLi payload to dump login and password fields from the blog_users table.