This exploit demonstrates a SQL injection vulnerability in SOPlanning 1.45, leading to remote code execution via SQLMap. It leverages a vulnerable 'users' parameter to upload a web shell, enabling further exploitation.
Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target:SOPlanning 1.45
Auth required
Prerequisites:Admin hash · SQLMap · Access to vulnerable endpoint