Home / exploits WordPress cstardesign SQL Injection
Posted on 27 November 2012
# Exploit Title: Wordpress cstardesign theme SQL injection # # Google Dork: inurl:wp-content/themes/cstardesign/swf/flashmo/flashmoXML.php?id= # # Date: 2012-25-11 # Exploit Author: Ashiyane Digital Security Team # # Discovered by : Amirh03in # # Tested on: Linux # # Security Risk : High - SQL Injection # =================================== =================================== # Location: http://site.com/wp-content/themes/cstardesign/swf/flashmo/flashmoXML.php?id=[SQL] # # Demo : http://pinnacle.m2fs.in/wp-content/themes/cstardesign/swf/flashmo/flashmoXML.php?id=1 # ======================================= ======================================= Greetz to: My Lord ALLAH =======================================
