JavaScript devre dışı. Daha iyi bir deneyim için, önce lütfen tarayıcınızda JavaScript'i etkinleştirin.

nasıl sızarım (1 Viewer)

Konbuyu başlatan artofwar
Başlangıç tarihi Haz 8, 2021

A

0 Tepkime puanı

Haz 8, 2021

#1

birtane wordpress sitesini taradım wpscan ile 86 tane açık var çoğu XSS tarzı. sadece sqlden anladığımdan 4 tane sqli var;
nasıl sızarım?

[!] Title: WordPress <= 4.2.3 - wp_untrash_post_comments SQL Injection
| Fixed in: 4.2.4
| References:
| - https://wpscan.com/vulnerability/b52728fa-c068-4098-b796-ce421f31bde5
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2213
| - https://github.com/WordPress/WordPress/commit/70128fe7605cb963a46815cf91b0a5934f70eff5

[!] Title: WordPress 3.5-4.7.1 - WP_Query SQL Injection
| Fixed in: 4.2.12
| References:
| - https://wpscan.com/vulnerability/481e3398-ed2e-460a-af67-ff58027901d1
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5611
| - https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
| - https://github.com/WordPress/WordPress/commit/85384297a60900004e27e417eac56d24267054cb

| [!] Title: WordPress 2.3.0-4.8.1 - $wpdb->prepare() potential SQL Injection
| Fixed in: 4.2.16
| References:
| - https://wpscan.com/vulnerability/9b3414c0-b33b-4c55-adff-718ff4c3195d
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14723
| - https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
| - https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48
| - https://github.com/WordPress/WordPress/commit/fc930d3daed1c3acef010d04acc2c5de93cd18ec

| [!] Title: WordPress 2.3.0-4.7.4 - Authenticated SQL injection
| Fixed in: 4.7.5
| References:
| - https://wpscan.com/vulnerability/95e87ae5-eb01-4e27-96d3-b1f013deff1c
| - https://medium.com/websec/wordpress-sqli-bbb2afcc8e94
| - https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
| - https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48
| - https://wpvulndb.com/vulnerabilities/8905

Bu içeriği görmek için giriş yapın.

Giriş yap TG Destek Chat

Cevap yazmak için giriş yap yada kayıt ol.

Bu konuyu görüntüleyen kullanıcılar

Toplam: 2 (Kullanıcı: 0, ziyaretçi: 2)

Paylaş:

Facebook Twitter WhatsApp Link

Üst