Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Time Based SQL Injection Exponent CMS 2.4.1 and others versions #73
This is a blind SQL injection that can be exploited by un-authenticated users via an HTTP GET request and which can be used to dump database data out to a malicious server, using an out-of-band technique, such as select_loadfile(). The vulnerability affects source_selector.php andthe following parameter: src.
GET /source_selector.php?controller=blog&action=showall&src=@random4d4c8bfba590f\'%2b(select*from(select(sleep(2)))a)%2b\' HTTP/1.1