Automatic 2.0.3 - csv.php q Parameter SQL Injection

The wp-automatic WordPress plugin was affected by a csv.php q Parameter SQL Injection security vulnerability...

WordPress Automatic Plugin "q" SQL注入漏洞

WordPress是一种使用PHP语言和MySQL数据库开发的Blog（博客、网志引擎，用户可以在支持PHP和MySQL数据库的服务器上建立自己的Blog。 Wordpress Automatic Plugin for WordPress 2.0.3之前版本没有验证通过"q"参数传递到csv.php的输入即用作SQL查询，csv.php文件没有要求有效的登录凭证，通过注入任意SQL代码可操作SQL查询，执行SQL注入攻击。 0 WordPress Automatic Plugin 2.x 厂商补丁： WordPress ---------...

WordPress Automatic Plugin 2.0.3 - SQL Injection

This WordPress Automatic plugin is prone to an SQL injection. This vulnerability works in the csv.php file which does not require valid login credential and it allows an attacker to execute SQL Queries. Solution Upgrade this plugin to version 2.0.4...

WordPress Automatic 2.0.3 Cross Site Request Forgery

Title: ====== Wordpress Automatic Plugin v2.0.3 CSRF Exploit Date: ===== 2012-06-15 Website: =========== http://codecanyon.net/item/wordpress-automatic-plugin/1904470 Introduction: ============= Wordpress automatic plugin posts quality targeted articles, Amazon Products, clickbank Products, Youtu...

Wordpress Automatic Plugin v2.0.3 CSRF Exploit

Exploit for php platform in category web applications Title: ====== Wordpress Automatic Plugin v2.0.3 CSRF Exploit Date: ===== 2012-06-15 Website: =========== http://codecanyon.net/item/wordpress-automatic-plugin/1904470 Introduction: ============= Wordpress automatic plugin posts quality targete...