Lucene search
K

6 matches found

0day.today
0day.today
added 2017/06/13 12:0 a.m.87 views

WordPress WP-Testimonials Plugin < 3.4.1 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage:...

6.5CVSS8.7AI score0.0239EPSS
Exploits4
NVD
NVD
added 2017/06/12 1:29 p.m.30 views

CVE-2017-9418

SQL injection vulnerability in the WP-Testimonials plugin 3.4.1 for WordPress allows an authenticated user to execute arbitrary SQL commands via the testid parameter to wp-admin/admin.php...

8.8CVSS9.1AI score0.0239EPSS
Exploits4References2
CVE
CVE
added 2017/06/12 1:0 p.m.66 views

CVE-2017-9418

CVE-2017-9418 is a SQL injection vulnerability in the WordPress WP-Testimonials plugin version 3.4.1. An authenticated user can exploit the testid parameter in wp-admin/admin.php to execute arbitrary SQL commands. Public PoCs and exploits demonstrate union-based payloads and version disclosure, i...

8.8CVSS9AI score0.0239EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2017/06/12 1:0 p.m.38 views

CVE-2017-9418

SQL injection vulnerability in the WP-Testimonials plugin 3.4.1 for WordPress allows an authenticated user to execute arbitrary SQL commands via the testid parameter to wp-admin/admin.php...

9.1AI score0.0239EPSS
Exploits4References2
Exploit DB
Exploit DB
added 2017/06/03 12:0 a.m.56 views

WordPress Plugin WP-Testimonials &lt; 3.4.1 - SQL Injection

Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage: http://www.sunfrogservices.com/web-programmer/wp-testimonials/ Version: 3.4.1...

8.8CVSS9AI score0.0239EPSS
Exploits4
exploitpack
exploitpack
added 2017/06/03 12:0 a.m.15 views

WordPress Plugin WP-Testimonials 3.4.1 - SQL Injection

WordPress Plugin WP-Testimonials 3.4.1 - SQL Injection Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage:...

6.5CVSS9.3AI score0.0239EPSS
Exploits4
Rows per page
Query Builder