Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-14314 PoC — WordPress Imagely NextGEN Gallery插件SQL注入漏洞

Source
https://github.com/imthoe/CVE-2019-14314
Associated Vulnerability
Title:WordPress Imagely NextGEN Gallery插件SQL注入漏洞 (CVE-2019-14314)
Description:A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via modules/nextgen_gallery_display/package.module.nextgen_gallery_display.php.
Description
CVE-2019-14314 - NextGEN Gallery 3.2.10 Authenticated SQL Injection
Readme
# CVE-2019-14314
CVE-2019-14314 - NextGEN Gallery 3.2.10 Authenticated SQL Injection

# Usage

```
usage: cve_2019_14314.py [-h] url login_user login_pass username

CVE-2019-14314 Hash Extractor

positional arguments:
  url         Wordpress blog URL
  login_user  Username to login with
  login_pass  Password to login with
  username    Username to extract Password Hash from

optional arguments:
  -h, --help  show this help message and exit
```

Credit: https://www.fortinet.com/blog/threat-research/wordpress-plugin-sql-injection-vulnerability.html
File Snapshot

 [4.0K]  /data/pocs/2e808f210cc4a8a5ba72a51e26b6aaddd654f1bf
├── [4.6K]  cve_2019_14314.py
└── [ 554]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →