The Wordpress plugin BulletProof Security, versions less than or equal to 5.1, suffers from an information disclosure vulnerability, in that the db_backup_log.txt is publicly accessible. If the backup functionality is being utilized, this file will disclose where the backup files can be downloaded. After downloading the backup file, it will be parsed to grab all user credentials.
67c4807293a251cc053fbb1a5fb7a2329f603f6abac1003faf1823ea7751fe74WordPress Perfect Survey plugin version 1.5.1 suffers from a remote SQL injection vulnerability.
ab5b6dcc9f080add826ddde39b1034b8a2169f9e05ade5e04cba6ab0dd330869WordPress WP User Frontend plugin version 3.5.25 suffers from an authenticated remote SQL injection vulnerability.
280867a4c60d20510ff5bcaa423c881cbcd213e1b2b74568a593019331132f17WordPress Secure Copy Content Protection and Content Locking plugin version 2.8.1 suffers from a remote SQL injection vulnerability.
cb1ff4a94966973a9f9745f4956453fdb970465f7f6d6d0343ce60a252705807WordPress Download Monitor WordPress plugin versions prior to 4.4.5 suffer from a remote SQL injection vulnerability.
500a8c4ca8705305ded030ce7ad67e47e62f151c0f0598358986d31b63089709WordPress 404 to 301 plugin version 2.l0.2 suffers from a remote SQL injection vulnerability.
560479e379eb19da8b9dcced3bcc9ff7be02be670bdce171a13c96832f6f6f7fWordPress RegistrationMagic V plugin versions 5.0.1.5 and below suffer from a remote SQL injection vulnerability.
fc704ca5ead8ef607cb727b84f02e144261f21080490cda78592accedd147834WordPress Modern Events Calendar plugin versions 6.1 and below suffer from an unauthenticated remote SQL injection vulnerability.
2a932ef31add8a8654da477a713636c2c7a4dce620d21c2f35410be6a9281339WordPress Catch Themes Demo Import plugin versions prior to 1.8 suffer from a remote shell upload vulnerability.
999305fb949e529f94cd8317c66ad4e660226106492dac5ff2bb180f31a8f911WordPress WP Visitor Statistics plugin versions 4.7 and below suffer from a remote SQL injection vulnerability.
c30e79d3378b88e8f60f69bc5a6ea89e055ee7c9573196ec41e66669ea908499WordPress Catch Themes Demo Import plugin versions 1.6.1 and below suffer from a remote shell upload vulnerability.
aa2a40ca6681466ee19bd0785086d5094e88640579441d6538e0001846a9e1cfWordPress BulletProof Security plugin version 5.1 suffers from an information disclosure vulnerability.
33f02b1debbf864fbd6911ed76c760923b9ce967d442434c408c4072cc8ef3abThis Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress SP Project and Document plugin versions prior to 4.22. The security check only searches for lowercase file extensions such as .php, making it possible to upload .pHP files for instance. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/sp-client-document-manager/<user_id>/<random_payload_name>.php.
7d2c3f217f9d96a1b8933d18886edae37099a342dcf9addd2e24438914311c20This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress Modern Events Calendar plugin versions prior to 5.16.5. This is due to an incorrect check of the uploaded file extension. Indeed, by using text/csv content-type in a request, it is possible to upload a .php payload as is is not forbidden by the plugin. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/<random_payload_name>.php.
69c7df31917c6908273c697f81d8629ab2b33991a9590623c7646f14dbb26004This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in Wordpress plugin Backup Guard versions prior to 1.6.0. This is due to an incorrect check of the uploaded file extension which should be of SGBP type. Then, the uploaded payload can be triggered by a call to /wp-content/uploads/backup-guard/<random_payload_name>.php.
3cec1dda9d347f45f65889e051e7fd1d9dc38d9c3e6197d8f4224ca67cb32a27WordPress SP Project and Document Manager plugin version 4.21 suffers from a remote shell upload vulnerability.
803aa45c0f550c1286871610b453544c4160710aaf8afc70040b2f7e0f47a48dWordPress Backup Guard plugin version 1.5.8 remote shell upload exploit.
fff7a31cabb9e677c9b7a571b07bc73bd4e7d93cef73bad084608ead38c240bbWordPress Modern Events Calendar plugin version 5.16.2 suffers from a remote shell upload vulnerability.
8529bd568d3e33d5c15c9ae8583e97c47316e521e0b87a6184feab45a7cddfd7WordPress Modern Events Calendar plugin version 5.16.2 suffers from an issue where unauthenticated parties can export all event data.
9c55eac6365b593142e8f3a173f7aa293698baf5a8f8358228562690c149627dWordPress XCloner plugin version 4.2.12 authenticated remote code execution exploit.
51efbd3b0d80695da5f2ea6b11516c3016521715f93c6235c7c98b89032ce059OpenEMR version 5.0.1.7 suffers from a path traversal vulnerability.
4137f1bcde3ba0b062231c438d7bd1885e04568f8cb1e019f5635288f2560b7dOpenEMR version 5.0.1.3 suffers from an authentication bypass vulnerability.
8c51ce9e83e8eaeca8c59755964b36c0b72aafd2cc7c8e64dc0a2971a327baadOpenEMR version 5.0.1.3 authenticated remote shell upload exploit.
1c976d82d20d572267256bdb0e89f3da86fd7a4937ea55c99df13535b3d1abf2OpenEMR version 5.0.0 authenticated remote shell upload exploit.
3477f1f072e94bd94017c7444dc3f0cdc0181bb156049e46ff8483d4de9bdca2Monstra CMS version 3.0.4 authenticated remote code execution exploit.
a449bcb9e802e6538fd98131e3ca47d842f8cffabafa13b97c65cc397d12c250
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed