WordPress Magazine Basic third party plugin theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
a0f0a2bb4d25112d7a6582eb26bee1291efed1a5f1e1f840369aeeedd948fe27((|))((|)) ((|)) |)| (|)| |)
((|)) ***********************
((|)) *********************
* ((|)) * *
*0* ((|)) * In the name of iran *
* ((|)) * *
-|- ((|)) *******************
| ((|)) *********
((|))((|))((|))################((|))######################## ((|))
# Exploit Title: Wordpress magazine-basic-plugin/ Theme SQL Injection ((|))
# Google Dork: inurl:/magazine-basic/view_artist.php?id= ((|))
# Exploit Author: Novin hack (khatarnak) #
# Category: Web Application #
# Tested on: Windows 7 #
###############################((|))#############################
#******************************((|))****************************#
#* Location: http://site.com/wp-content/ #
#* /themes/magazine-basic/ #
#* view_artist.php?id=?[SQLi] #
#* Demo:http://weloverocknpop.com/wordpress/wp-content/themes/ #
#* magazine-basic/view_artist.php/?id=null' #
#******************************((|))****************************#
#******************************((|))****************************#
#******************************((|))****************************#
#* ***************** #
#* * * #
#* Greetz to: * ashiyane.org * #
#* * * #
#* ***************** #
#* #
#*
#* #
#*
#* #
#*
#* #
#*
#* #
#*
#* #
#***************************************************************
#*###############################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed