5 matches found
CVE-2008-0683
CVE-2008-0683 describes an SQL injection in the ShiftThis Newsletter (st_newsletter) WordPress plugin, specifically via the newsletter parameter in shiftthis-preview.php. The vulnerability allows remote attackers to execute arbitrary SQL commands and can be exploited without authentication, as in...
WordPress Newsletter Plugin - SQL Injection #2
Because of this vulnerability in shiftthis-preview.php, the attackers can execute arbitrary SQL commands via the "newsletter" parameter. Solution Update the plugin...
WordPress Plugin st_newsletter - SQL Injection
WordPress Plugin stnewsletter - SQL Injection Wordpress Plugin stnewsletter SQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORKS 1 : allinurl :"wp-content/plugins/stnewsletter" DORK 2 : allinurl :"shiftthis-preview.php" EXPLOIT :...
Wordpress Plugin st_newsletter Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= Wordpress Plugin stnewsletter Remote SQL Injection Vulnerability ================================================================= Wordpress Plugin stnewsletter SQL Injectio...
WordPress Plugin st_newsletter - SQL Injection
Wordpress Plugin stnewsletter SQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORKS 1 : allinurl :"wp-content/plugins/stnewsletter" DORK 2 : allinurl :"shiftthis-preview.php" EXPLOIT :...