Tag: SQL Injection

CMS Made Simple Blind SQL Injection, Resurrected

This was found while working on a HackTheBox challenge. I won’t go into details of the challenge, because that’s not the point. The challenge box was running an old version of CMS Made Simple, a Content Management System written in PHP. When approaching the box, it’s easy to determine the version and find the public […]

2022-05-30

CMS Made Simple Blind SQL Injection, Resurrected