The exploit demonstrates a SQL injection vulnerability in XYZ Auto Classifieds v1.0 via the 'view' URI parameter. The PoC uses a time-based SQL injection payload ('and sleep(5)') to confirm the vulnerability.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:XYZ Auto Classifieds v1.0
No auth needed
Prerequisites:Access to the target web application