Share
## https://sploitus.com/exploit?id=785943D8-2989-5CF3-9A8E-16BB176491F7
### CVE-2025-66417 PoC

```    _       
 __/\\___   
(_     __)) 
 / ._))//   
/: ._))\\   
\  ____//   
 \//        
 . . . . CVE-2025-66417 PoC
 . . . . GLPI Blind SQL Injection via XML Payload
 . . . . beemo

 GLPI has an unauthenticated SQL injection through the inventory endpoint
 From 11.0.0, 
 Example:
	python3 cve-2025-66417.py http://example.com/front/inventory.php
```