mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
995 B
995 B
CVE-2013-3532
Description
SQL injection vulnerability in settings.php in the Web Dorado Spider Video Player plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the theme parameter.
POC
Reference
- http://packetstormsecurity.com/files/121250/WordPress-Spider-Video-Player-2.1-SQL-Injection.html
- http://packetstormsecurity.com/files/121250/WordPress-Spider-Video-Player-2.1-SQL-Injection.html
- http://packetstormsecurity.com/files/128851/WordPress-HTML5-Flash-Player-SQL-Injection.html
- http://packetstormsecurity.com/files/128851/WordPress-HTML5-Flash-Player-SQL-Injection.html
Github
No PoCs found on GitHub currently.