WordPress Plugin WP-Realty – ‘listing_id’ SQL Injection

Exploit Database
12 阅读

作者： Napsterakos

日期： 2013-10-08
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/38808/

source: https://www.securityfocus.com/bid/63217/info

WP-Realty plugin for WordPress is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. 

http://www.example.com/wordpress/wp-content/plugins/wp-realty/index_ext.php?action=contact_friend&popup=yes&listing_id=[SQLi]
http://www.example.com/wordpress/wp-content/plugins/wp-realty/index_ext.php?action=contact_friend&popup=yes&listing_id=[SQLi

last Exploits
WordPress Plugin WP-Realty – ‘listing_id’ SQL Injection的更多信息

Apache CouchDB 2.3.0 – Cross-Site Scripting：
PHPMailer < 5.2.19 - Sendmail Argument Injection (Metasploit)：
KDPics 1.18 – ‘/admin/index.php’ Authentication Bypass：
AContent 1.3 – Local File Inclusion：
ResourceSpace 8.6 – ‘watched_searches.php’ SQL Injection：
Joomla! Component com_bfsurvey_pro – ‘catid’ Blind SQL Injection：
Elite Bulletin Board 2.1.21 – Multiple SQL Injections：
Exponent CMS 0.97 – ‘Slideshow.js.php’ Cross-Site Scripting：