Exploitation Summary
EIP tracks 1 public exploit for CVE-2014-100003. PoCs published by TranDinhTien.
AI-analyzed exploit summary This is a technical writeup detailing a blind SQL injection vulnerability in the YourMembers plugin. It includes the vulnerable code snippet, affected file, and HTTP request format, demonstrating a clear understanding of the vulnerability.
Description
SQL injection vulnerability in includes/ym-download_functions.include.php in the Code Futures YourMembers plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the ym_download_id parameter to the default URI.
Exploits (1)
This is a technical writeup detailing a blind SQL injection vulnerability in the YourMembers plugin. It includes the vulnerable code snippet, affected file, and HTTP request format, demonstrating a clear understanding of the vulnerability.