WordPress 5.0.0 crop-image Shell Upload

Posted by deepcore on April 6, 2019 – 12:30 am

This Metasploit module exploits a path traversal and a local file inclusion vulnerability on WordPress versions 5.0.0 and versions below or equal to 4.9.8. The crop-image function allows a user, with at least author privileges, to resize an image and perform a path traversal by changing the _wp_attached_file reference during the upload. The second part of the exploit will include this image in the current theme by changing the _wp_page_template attribute when creating a post. This exploit module only works for Unix-based systems currently.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« iScripts ReserveLogic SQL Injection FreeSMS 2.1.2 SQL Injection »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

WordPress 5.0.0 crop-image Shell Upload

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL