## https://sploitus.com/exploit?id=785943D8-2989-5CF3-9A8E-16BB176491F7
### CVE-2025-66417 PoC
``` _
__/\\___
(_ __))
/ ._))//
/: ._))\\
\ ____//
\//
. . . . CVE-2025-66417 PoC
. . . . GLPI Blind SQL Injection via XML Payload
. . . . beemo
GLPI has an unauthenticated SQL injection through the inventory endpoint
From 11.0.0,
Example:
python3 cve-2025-66417.py http://example.com/front/inventory.php
```