Disputed / BOGUS

Wordpress simple flash video v2 plugin SQL Injection

Published
Credit
Risk
2013.02.12
Ashiyane Digital Security Team
Medium
CWE
CVE
Local
Remote
CWE-89
N/A
No
Yes

# Exploit Title: wordpress simple flash video v2 plugin SQL Injection
# Google Dork: inurl:wp-content/plugins/simple-flash-video inurl:video.php
# Exploit Author: Ashiyane Digital Security Team
# Vendor Homepage: www.lucys1.com
# Software Link: www.simplethoughtproductions.com
# Version: 2.0
# Tested on: Windows 7
##############################
Location:site/wp-content/plugins/simple-flash-video/video.php?arguments=[SQL]
#
#
#DEm0:http://www.luXys1.com/wp-content/plugins/simple-flash-video/video.php?arguments=1
##############################
* Greetz to: My Lord Allah
* Sp Tnx To: Behrooz_Ice,Q7X,Ali_Eagle,Azazel,iman_taktaz,sha2ow,0x21HATE,am118,angola,AR455,ERroR,Hashor
* HASSAN20,HidDeEn,hossein19123,jooooondost,MehrdadLinux,Mute,PrinceofHacking
* Rizux,Rz04,Sil3nt,Unline
* MrR.CICILI
* And All Of My Friends
* The Last One : My Self, tr0janman
***************************************************************
##############################

References:

http://www.simplethoughtproductions.com/


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com