SEC Consult Vulnerability Lab Security Advisory < 20110701-0 > ======================================================================= title: Multiple SQL Injection Vulnerabilities product: WordPress vulnerable version: 3.1.3/3.2-RC1 and probably earlier versions fixed…
Leave a CommentTag: wordpress
Title: WordPress core 3.1.3 self-XSS Author: Jelmer de Hen Software link: http://wordpress.org/download/Version: 3.1.3 WordPress 3.1.3 has a self-XSS vulnerability in the following pages:/wp-admin/user-edit.php?user_id=<uid>/wp-admin/profile.php By putting…
Leave a CommentHello , that’s a 0day on the must downloaded WordPress plugin. # Exploit Title: 0-Day WPtouch WordPress Plugin 1.9.27 URL redirection # Google Dork: intext:”Powered…
Leave a Comment———————————————————————— # WordPress Events Manager Extended Plugin Persistent SQL Vulnerability ———————————————————————— # SoftwareLink: http://wordpress.org/extend/plugins/events-manager-extended/ # Version : 3.1.2 # Author : LoocK3D # Date :…
Leave a CommentPrezados, sou conhecido na comunidade opensource por causa de meus how tos, procuro não omitir informações a ninguém e mais uma vez lá vai uma…
Leave a CommentAtivando register globals no Plesk 8 ou Plesk 9 How to enable register globals or safe mode on plesk
Criei no littleoak um tutorial para isto. http://littleoak.wordpress.com/2009/03/24/ativando-register-globals-no-plesk-8-ou-plesk-9-how-to-enable-register-globals-safe-mode-on-plesk/
Leave a Comment