6 matches found
WordPress WP-Testimonials Plugin < 3.4.1 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage:...
CVE-2017-9418
SQL injection vulnerability in the WP-Testimonials plugin 3.4.1 for WordPress allows an authenticated user to execute arbitrary SQL commands via the testid parameter to wp-admin/admin.php...
CVE-2017-9418
CVE-2017-9418 is a SQL injection vulnerability in the WordPress WP-Testimonials plugin version 3.4.1. An authenticated user can exploit the testid parameter in wp-admin/admin.php to execute arbitrary SQL commands. Public PoCs and exploits demonstrate union-based payloads and version disclosure, i...
CVE-2017-9418
SQL injection vulnerability in the WP-Testimonials plugin 3.4.1 for WordPress allows an authenticated user to execute arbitrary SQL commands via the testid parameter to wp-admin/admin.php...
WordPress Plugin WP-Testimonials < 3.4.1 - SQL Injection
Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage: http://www.sunfrogservices.com/web-programmer/wp-testimonials/ Version: 3.4.1...
WordPress Plugin WP-Testimonials 3.4.1 - SQL Injection
WordPress Plugin WP-Testimonials 3.4.1 - SQL Injection Exploit Title: WP-Testimonials 3.4.1 Union Based SQL Injection Date: 03-06-2017 Exploit Author: Dimitrios Tsagkarakis Website: dtsa.eu Software Link: https://en-gb.wordpress.org/plugins/wp-testimonials/ Vendor Homepage:...