WordPress Plugin Ajax Store Locator 1.2 - SQL Injection

Exploit Title : Wordpress Ajax Store Locator = 5.0.12 AND time-based blind SELECT' injectable for the remaining tests, do you want to include all tests for 'MySQL' extending...

WordPress Plugin Video Gallery 2.8 - SQL Injection

Exploit Title : Wordpress Video Gallery 2.8 SQL Injection Vulnerabilitiey Exploit Author : Claudio Viviani Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software Link : https://downloads.wordpress.org/plugin/contus-video-gallery.2.8.zip Dork Google:...

WordPress Plugin Video Gallery 2.7.0 - SQL Injection

Exploit Title : Wordpress Video Gallery 2.7 SQL Injection Vulnerability Exploit Author : Claudio Viviani Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software Link : https://downloads.wordpress.org/plugin/contus-video-gallery.2.7.zip Dork Google:...

Wordpress CP Multi View Event Calendar 1.01 - SQL Injection

No description provided by source. Exploit Title : CP Multi View Event Calendar 1.01 SQL Injection Vulnerability Exploit Author : Claudio Viviani Software Link : https://downloads.wordpress.org/plugin/cp-multi-view-calendar.zip Date : 2014-10-23 Tested on : Windows 7 / Mozilla Firefox Windows 7 /...

Wordpress Gmedia Gallery 1.2.1 Shell Upload Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress Gmedia Gallery 1.2.1 Shell Upload Vulnerability Exploit Author : Claudio Viviani Vendor Homepage : http://www.codeasily.com/ Software Link : http://downloads.wordpress.org/plugin/grand-media.zip Date : 2014-08-01 Test...

WordPress Compfight 1.4 Cross Site Scripting

Exploit Title : Wordpress Compfight 1.4 Authenticated Cross Site Scripting Exploit Author : Claudio Viviani Vendor Homepage : http://wordpress.org/plugins/easy-banners/ Software Link : http://downloads.wordpress.org/plugin/compfight.1.4.zip Date : 2014-07-03 Tested on : Windows 7 / Mozilla Firefo...