Share
## https://sploitus.com/exploit?id=WPEX-ID:10235
One example would be to inject the payload 1 union all select database(),2,3,1,5 into the form_id GET parameter of the function MailerLite_Shortcode::redirect_to_form_edit to be redirected to /wp-admin/admin.php?page=mailerlite_main&view=edit&id=<database name>.