module
Vicidial SQL Injection Time-based Admin Credentials Enumeration
| Disclosed |
|---|
| Sep 10, 2024 |
Disclosed
Sep 10, 2024
Description
This module exploits a time-based SQL injection vulnerability in VICIdial, allowing attackers
to dump admin credentials (usernames and passwords) via SQL injection.
to dump admin credentials (usernames and passwords) via SQL injection.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.