CVE-2008-0939

WP Photo Album < 1.1 - SQL Injection via Photo or Album Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0939. PoCs published by S@BUN.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in WordPress album PHOTO plugin. It allows an attacker to extract user credentials from the wp_users table by injecting a malicious SQL query via the 'photo' parameter.

Description

Multiple SQL injection vulnerabilities in wppa.php in the WP Photo Album (WPPA) before 1.1 plugin for WordPress allow remote attackers to execute arbitrary SQL commands via (1) the photo parameter to index.php, used by the wppa_photo_name function; or (2) the album parameter to index.php, used by the wppa_album_name function. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by S@BUN · textwebappsphp

https://www.exploit-db.com/exploits/5135

View Code ZIP pw:eip

This exploit demonstrates a SQL injection vulnerability in WordPress album PHOTO plugin. It allows an attacker to extract user credentials from the wp_users table by injecting a malicious SQL query via the 'photo' parameter.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: WordPress album PHOTO plugin

No auth needed

Prerequisites: A vulnerable WordPress installation with the album PHOTO plugin

MITRE ATT&CK