Exploits / Vulnerability Discovered : 2022-05-11 |
Type : webapps |
Platform : php
This exploit / vulnerability Wordpress plugin stafflist 3.1.2 sqli (authenticated) is for educational purposes only and if it is used you will do on your own risk!
$w = (isset($_GET['search']) && (string) trim($_GET['search'])!="" ?
...
$where = ($w ? "WHERE LOWER(lastname) LIKE '%{$w}%' OR
LOWER(firstname) LIKE '%{$w}%' OR
LOWER(department) LIKE '%{$w}%' OR
LOWER(email) LIKE '%{$w}%'" : "");