Lucene search
+L

4 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

WordPress yolink Search plugin <= 1.1.4 - SQL Injection

No description provided by source. Exploit Title: WordPress yolink Search plugin = 1.1.4 SQL Injection Vulnerability Date: 2011-08-30 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/yolink-search.1.1.4.zip Version: 1.1.4 tested...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/08/31 12:0 a.m.26 views

WordPress Yolink Search 1.1.4 SQL Injection

Exploit Title: WordPress yolink Search plugin getresults $wpdb-prepare "SELECT ID,GUID FROM $wpdb-posts WHERE poststatus='publish' AND posttype IN $posttypein AND ID $idfrom order by ID asc LIMIT $batchsize" ; //misusage of $wpdb-prepare :...

0.2AI score
Exploits0
Patchstack
Patchstack
added 2011/08/30 12:0 a.m.8 views

WordPress yolink Search Plugin <= 1.1.4 - SQL Injection

This WordPress yolink Search plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, alter queries to the application SQL database, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Upgrade the plugin...

2.7AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2011/08/30 12:0 a.m.21 views

WordPress Plugin yolink Search 1.1.4 - SQL Injection

Exploit Title: WordPress yolink Search plugin getresults $wpdb-prepare "SELECT ID,GUID FROM $wpdb-posts WHERE poststatus='publish' AND posttype IN $posttypein AND ID $idfrom order by ID asc LIMIT $batchsize" ; //misusage of $wpdb-prepare :...

7.4AI score
Exploits0
Rows per page
Query Builder