漏洞描述
WordPress的Ultimate Auction Pro插件在1.5.2及之前所有版本中存在参数为‘auction_id'的SQL注入漏洞,该漏洞源于对用户提供参数转义不充分以及现有SQL查询缺乏充分预处理。这使得未经身份验证的攻击者能够向现有查询附加额外SQL语句,从而从数据库提取敏感信息。
Wordpress Plugin Ultimate Auction Pro /wp-admin/admin-ajax.php uwa_see_more_bids_ajax SQL 注入漏洞 (CVE-2025-4204)
PoC代码
暂无相关漏洞推荐
- WordPress wp-event-solution 插件 /wp-admin/admin-ajax.php 文件读取漏洞(CVE-2025-47445)
- POC CVE-2023-23897: Ozette Plugins - Cross-Site Request Forgery
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- Ilevia EVE X1 Server /ajax/php/get_file_content.php 文件读取漏洞(CVE-2025-34518)
- Ilevia EVE X1 Server /ajax/php/leaf_search.php 命令执行漏洞(CVE-2025-14276)
- POC CVE-2017-5983: JIRA Workflow Designer Plugin in Atlassian JIRA Server > 6.3.0 - Remote Code Execution (XXE)
- POC CVE-2021-36888: WordPress Image Hover Ultimate - Unauthenticated Settings Update
- POC CVE-2021-4449: ZoomSounds Plugin - Unauthenticated Arbitrary File Upload
- POC CVE-2023-5815: News & Blog Designer Pack – WordPress Blog Plugin <= 3.4.1 - Unauthenticated Local File Inclusion
- 友加畅捷管理系统 /Controllers/ajax/Attachment.ashx 文件读取漏洞
- 友加畅捷管理系统 /Controllers/ajax/downloadfile.ashx 文件读取漏洞
- ilevia EVE X1 Server /ajax/php/ping.php 命令执行漏洞(CVE-2025-60738)
- GLPI /index.php/ajax/ SQL 注入漏洞(CVE-2025-24799)