CVEs-PoC/2014/CVE-2014-2839.md at c052d0d6949679697108fa931a00cd4220694869

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-10 15:59:29 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

SQL injection vulnerability in the GD Star Rating plugin 19.22 for WordPress allows remote administrators to execute arbitrary SQL commands via the s parameter in the gd-star-rating-stats page to wp-admin/admin.php.

POC

Reference

http://seclists.org/fulldisclosure/2014/Mar/399
https://advisories.dxw.com/advisories/csrf-and-blind-sql-injection-in-gd-star-rating-1-9-22/

Github

No PoCs found on GitHub currently.

778 B Raw Blame History

CVE-2014-2839

Description

POC

Reference

Github

778 B

Raw Blame History