Xoops 2.5.4 - Blind SQL Injection
This exploit demonstrates a blind SQL injection vulnerability in Xoops 2.5.4. The attack is executed via the 'selgroups' parameter in the admin.php file, requiring administrative access.