CVE-2014-10013
Another WordPress Classifieds Plugin - SQL Injection via keywordphrase Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2014-10013. PoCs published by dill.
AI-analyzed exploit summary This exploit demonstrates a time-based blind SQL injection vulnerability in the 'keywordphrase' parameter of the Another Wordpress Classifieds Plugin. The PoC includes a crafted HTTP POST request that triggers a 5-second delay via SLEEP(5), confirming the vulnerability.
Description
SQL injection vulnerability in the Another WordPress Classifieds Plugin plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the keywordphrase parameter in a dosearch action.
Exploits (1)
This exploit demonstrates a time-based blind SQL injection vulnerability in the 'keywordphrase' parameter of the Another Wordpress Classifieds Plugin. The PoC includes a crafted HTTP POST request that triggers a 5-second delay via SLEEP(5), confirming the vulnerability.