| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 5 Apr 2012 13:10:12 GMT From: Amir@...st.ir To: bugtraq@...urityfocus.com Subject: Wordpress taggator plugin Sql Injection Vulnerabilities a bug in Wordpress taggator plugin that allows to us to occur a Sql Injection on a Remote machin. ######################################################## # # Exploit Title : Wordpress taggator plugin Sql Injection Vulnerabilities # # Author : #BHG Security Center - IrIsT Security Team # # Discovered By : Am!r # # Home : http://Black-hg.Org - http://IrIsT.Ir # # Software Link : http://wordpress.org/extend/plugins/taggator/ # # Security Risk : High # # Version : All Version # # Tested on : GNU/Linux Ubuntu - Windows Server - win7 # # Dork : "Powered by Wordpress" # ######################################################## # # Expl0iTs : # # [TarGeT]/wp-content/plugins/taggator/taggator.php?tagid=[Sql] # ######################################################### # # Special Thanks To : Net.Edit0r - 3H34N - A.Cr0x - 4M!N - ArYaIeIrAN - # # G3n3rall - Mr.XHat - Bl4ck.Viper - Dj.TiniVini - B3Hz4d - Crim3R - d3c0d3r # ######################################################### # # GreetZ : All Active Member in #BHG Security Center & IrIsT.Ir # #########################################################
Powered by blists - more mailing lists