JOIN BREACHFORUMS TELEGRAM
Dokan Pro Unauthenticated SQL Injection POC | CVSS 10
by Loki - Monday July 8, 2024 at 02:16 PM
Banned

Posts: 10
Threads: 0
Joined: Apr 2026
Reputation: 0
#41
Jan 30, 2026, 11:13 PM
(Jul 08, 2024, 02:16 PM)Loki Wrote:
The Dokan Pro plugin for WordPress is vulnerable to SQL Injection via the 'code' parameter in all versions up to, and including, 3.10.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.

POC:


Omnicer
ty my frind, love it

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Contact Administration.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  new wordpress website takeover vuln (video + poc ) zinzeur 313 27,778 8 hours ago
Last Post: Usercomplex
  {SECRET} DATABASE OF EXPLOITS lulagain 429 24,724 Yesterday, 08:54 PM
Last Post: Yjuddur
  Google Dorks for finding SQL injection vulnerabilities and other security issues 1yush 66 2,943 Yesterday, 08:51 PM
Last Post: Yjuddur
  Acunetix Premium Cracked v24 Full Activated A3g00n 22 1,329 Yesterday, 09:22 AM
Last Post: Usercomplex
  CVE-2024-32002 RCE PoC HA_twck 1 379 Apr 24, 2026, 05:13 AM
Last Post: p2wnz_bontensec

Forum Jump:


 Users browsing this forum: 1 Guest(s)