5 matches found
WordPress Symposium Plugin SQL Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Symposium Plugin SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in the WP Symposium plugin befor...
CVE-2015-6522
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/wpsymposiumsqlinjection.rb 2022-06-20 19:53:12+00:00| published-proof-of-concept| https://t.me/LeakingXTeam/20993 2022-06-20...
WordPress Symposium Plugin SQL Injection (CVE-2015-6522)
An SQL injection vulnerability exists in the WordPress Symposium Plugin. It allows an authenticated remote attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data...
WordPress WP Symposium插件SQL注入漏洞
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。WP Symposium是其中的一个社交网络插件。WordPress WP Symposium插件 15.8之前版本中 存在 SQL注入漏洞 .该漏洞源于getalbumitem.php脚本没有充分过滤‘size’参数。远程攻击者可利用该漏洞执行任意SQL命令。CNNVD编号: CNNVD-201508-432CVE编号: CVE-2015-6522...
CVE-2015-6522
CVE-2015-6522 is a SQL injection vulnerability in the WordPress WP Symposium plugin, affecting versions before 15.8. The flaw allows remote attackers to execute arbitrary SQL commands through the size parameter of get_album_item.php. Documented sources confirm the vulnerability and its exposure v...