<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: SQL Injection Exploit for WordPress <= 1.5.1.1

Re: SQL Injection Exploit for WordPress <= 1.5.1.1

From: Giorgio Mandolfo <giorgio_at_mandolph.ath.cx>
Date: Tue, 7 Jun 2005 22:24:38 +0200

* Alberto Trivero <trivero_at_jumpy.it> [070605, 21:40]:
> #!/usr/bin/perl -w

Thanks for the code.
In any case I get 'Unable to retrieve username' and 'hash of password'

That's quite strange since I run a exploitable version.
According to wp-includes/version.php this is Wordpress 1.5 (old install from a
gentoo system)

GLSA 200506-04 says that Wordpress < 1.5.1.2 is vulnerable, but it seems not to
be the case.

Who can clarify?
Thanks,

Giorgio

-- 
BOFH excuse #449:
greenpeace free'd the mallocs

Received on Jun 07 2005

This message: [ Message body ]
Next message: Team SHATTER: "[AppSecInc Advisory WEBSP05-V0098] Remote Buffer overflow in WebSphere Application Server Administrative Console"
Previous message: Reed Arvin: "Denial of Service vulnerability in GoodTech SMTP Server for Windows NT/2000/XP version 5.14"
In reply to: Alberto Trivero: "SQL Injection Exploit for WordPress <= 1.5.1.1"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]