CVE-2025-10878 PoC — Fikir Odalari AdminPando SQL注入漏洞

Source

https://github.com/onurcangnc/CVE-2025-10878-AdminPandov1.0.1-SQLi

Associated Vulnerability

Title:Fikir Odalari AdminPando SQL注入漏洞 (CVE-2025-10878)
Description:Fikir Odalari AdminPando是土耳其Fikir Odalari公司的一个后台管理系统。 Fikir Odalari AdminPando 1.0.1版本（2026-01-26之前）存在SQL注入漏洞，该漏洞源于登录功能中的用户名和密码参数存在SQL注入，可能导致未经验证攻击者完全绕过身份验证。

Description

PoC for CVE-2025-10878: SQL Injection Authentication Bypass in AdminPando v1.0.1 (CVSS 10.0)

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!