7 matches found
WordPress Like dislike plus counter plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Tri Doan in WordPress Plugin Like dislike plus counter versions = 1.0...
WordPress Like Dislike Counter 1.2.3 插件 SQL注入漏洞
No description provided by source...
Wordpress Like Dislike Counter 1.2.3 /wp-content/plugins/like-dislike-counter-for-posts-pages-and-comments/ajax_counter.php SQL注入漏洞
No description provided by source...
Wordpress Like Dislike Counter 1.2.3 Plugin - SQL Injection Vulnerability
一、插件介绍 是一个支持文章、页面和评论投票顶踩的插件,你可以将顶踩放在文章、页面评论的任意位置,还可以放在网站首页上。如果你有一定代码修改能里的话,可以将本插件集成到主题里。 二、漏洞概述 Like Dislike Counter 1.2.3及其他版本存在多个SQL注入漏洞,成功利用后可使攻击者执行未授权数据库操作。 三、漏洞描述 Like Dislike Counter 插件SQL注入漏洞存在于ajaxcounter.php文件中,主要原因是未对POST数据中的postid进行有效过滤,致使非法数据被数据库正常解析执行。 四、漏洞分析...
WordPress Plugin Like Dislike Counter 1.2.3 - SQL Injection
WordPress Plugin Like Dislike Counter 1.2.3 - SQL Injection Title : Wordpress Like Dislike Counter Plugin SQL Injection Vulnerability Risk : High+/Critical Exploit Author : XroGuE Google Dork : inurl:plugins/like-dislike-counter-for-posts-pages-and-comments/ajaxcounter.php AND...
WordPress Like Dislike Counter Plugin 1.2.3 - SQL Injection
This WordPress Like Dislike Counter plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Upgrade the plugin...
WordPress Like Dislike Counter 1.2.3 SQL Injection
Title : Wordpress Like Dislike Counter Plugin SQL Injection Vulnerability Risk : High+/Critical Exploit Author : XroGuE Google Dork : inurl:plugins/like-dislike-counter-for-posts-pages-and-comments/ajaxcounter.php AND plugins/pro-like-dislike-counter/ldc-ajax-counter.php Plugin Version : 1.2.3...