Exploits / Vulnerability Discovered : 2018-12-11 |
Type : webapps |
Platform : php
This exploit / vulnerability Wordpress plugin autosuggest 0.24 wpas_keys sql injection is for educational purposes only and if it is used you will do on your own risk!
Vulnerable code:
if (isset($_GET['wpas_keys'])) {
$wpas_keys = $_GET['wpas_keys'];
}
...
$wpas_keys = str_replace(' ','%',$wpas_keys);
$pageposts = $wpdb->get_results("SELECT * FROM $wpdb->posts WHERE (post_title LIKE '%$wpas_keys%') AND post_status = 'publish' ORDER BY post_date DESC");