Lucene search
K

7 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.24 views

WordPress Chop Slider 3 - Blind SQL Injection

WordPress Chop Slider 3 plugin contains a blind SQL injection vulnerability via the id GET parameter supplied to getscript/index.php. The plugin can allow an attacker to execute arbitrary SQL queries in the context of the WP database user, thereby making it possible to obtain sensitive informatio...

9.8CVSS9AI score0.95657EPSS
Exploits8References5
0day.today
0day.today
added 2020/05/12 12:0 a.m.51 views

WordPress ChopSlider 3 3.4 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: ChopSlider3 Wordpress Plugin3.4 - 'id' SQL Injection Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: https://idangero.us/ Software Link: https://github.com/idangerous/Plugins Version: getrow'SELECT FROM '...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2020/05/12 12:0 a.m.379 views

WordPress Plugin ChopSlider 3.4 - 'id' SQL Injection

Exploit Title: ChopSlider3 Wordpress Plugin3.4 - 'id' SQL Injection Exploit Author: SunCSR Sun Cyber Security Research Google Dork: N/A Date: 2020-05 -12 Vendor Homepage: https://idangero.us/ Software Link: https://github.com/idangerous/Plugins Version: getrow'SELECT FROM ' . CHOPSLIDERTABLENAME...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2020/05/09 12:0 a.m.24 views

Chopslider <= 3.4 - Unauthenticated Blind SQL Injection

The id parameter of the getscript/index.php page is not sanitised when used in a SQL statement, leading to an unauthenticated blind SQL Injection issue. Vendor was contacted by researcher, on March 3rd, 2020 but no reply was received. PoC The PoC will be displayed once the issue has been remediat...

7.5CVSS2.1AI score0.95657EPSS
Exploits8References1Affected Software1
wpexploit
wpexploit
added 2020/05/09 12:0 a.m.86 views

Chopslider <= 3.4 - Unauthenticated Blind SQL Injection

The id parameter of the getscript/index.php page is not sanitised when used in a SQL statement, leading to an unauthenticated blind SQL Injection issue. Vendor was contacted by researcher, on March 3rd, 2020 but no reply was received. The PoC will be displayed once the issue has been remediated...

7.5CVSS0.6AI score0.95657EPSS
Exploits8References1
0day.today
0day.today
added 2020/05/09 12:0 a.m.134 views

WordPress ChopSlider 3 SQL Injection Vulnerability

Exploit for php platform in category web applications ---------------------------------------------------------------- ChopSlider3 Wordpress Plugin SQL Injection ---------------------------------------------------------------- - Software Link: https://idangero.us/...

7.5CVSS0.2AI score0.95657EPSS
Exploits8
Packet Storm
Packet Storm
added 2020/05/08 12:0 a.m.156 views

WordPress ChopSlider 3 SQL Injection

---------------------------------------------------------------- ChopSlider3 Wordpress Plugin SQL Injection ---------------------------------------------------------------- - Software Link: https://idangero.us/ https://github.com/idangerous/Plugins - Affected Versions: ChopSlider version 3. -...

7.5CVSS0.95657EPSS
Exploits8
Rows per page
Query Builder