WordPress 3.1.3 SQL Inject-vulnerability warning-the black bar safety net

2013-07-29T00:00:00
ID MYHACK58:62201339927
Type myhack58
Reporter 佚名
Modified 2013-07-29T00:00:00

Description

sql inject

wp-includes/taxonomy.php

http://localhost/wp-admin/edit-tags. php? taxonomy=link_category&orderby = [SQL Inject] & nbsp; ORDER = [SQL Inject]http://localhost/wp-admin/edit-tags.php?taxonomy=post_tag&orderby = [SQL Inject] & nbsp; ORDER = [SQL Inject]

http://localhost/wp-admin/edit-tags. php? taxonomy=category&orderby = [SQL Inject] & nbsp; ORDER = [SQL Inject]

wp-includes/bookmark.php

http://localhost/wp-admin/link-manager. php? orderby = [SQL Inject] & nbsp; ORDER = [SQL Inject]