The exploit demonstrates a SQL injection vulnerability in the WordPress WP Glossary plugin via the 'id' parameter in ajax.php. It includes example payloads for extracting database information such as user privileges and MySQL version.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:WordPress WP Glossary plugin (version not specified)
No auth needed
Prerequisites:WordPress installation with WP Glossary plugin active