Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-27481 PoC — GoodLayers LMS for Wordpress SQL注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-27481.yaml
Associated Vulnerability
Title:GoodLayers LMS for Wordpress SQL注入漏洞 (CVE-2020-27481)
Description:GoodLayers LMS for Wordpress是美国Goodlayers软件的一款学习管理系统插件。 Good Layers LMS Plugin 2.1.4版本及之前版本存在SQL注入漏洞,该漏洞源于使用WordPresswp_ajax_nopriv,它允许任何未经身份验证的用户访问函数gdlr_lms_cancel_booking,参数“id”后直接发送到SQL查询。
Description
An unauthenticated SQL Injection vulnerability in Good Layers LMS Plugin <= 2.1.4 exists due to the usage of "wp_ajax_nopriv" call in WordPress, which allows any unauthenticated user to get access to the function "gdlr_lms_cancel_booking" where POST Parameter "id" was sent straight into SQL query without sanitization.
File Snapshot

 id: CVE-2020-27481

info:
  name: Good Layers LMS Plugin <= 2.1.4 - SQL Injection
  author: edoardot

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.