6 matches found
WordPress Multiple Plugin File Upload
import requests import random import string print "---------------------------------------------------------------------" print "Multiple Wordpress Plugin - Remote File Upload Exploit\nDiscovery: Larry W. Cashdollar\nExploit Author: Munir Njiru\nCWE: 434\n\n1. Zen App Mobile Native =3.0...
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0
./ zen-mobile-app-native/server/images.php code for missing authentication Mobile App WordPress plugin lets you turn your website into a full-featured mobile application in minutes using Mobile App Builder. Vulnerability: The code in the file ./ zen-mobile-app-native/server/images.php doesn't...
CVE-2017-6104
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0...
CVE-2017-6104
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0...
CVE-2017-6104
CVE-2017-6104 concerns the WordPress plugin Mobile App Native 3.0, where the file upload endpoint at zen-mobile-app-native/server/images.php accepts uploads without authentication and without validating the file content. The vulnerability allows an attacker to upload arbitrary files (e.g., PHP sh...
WordPress Mobile App Native 3.0 Shell Upload
Title: Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0 Vulnerability Date: 2017-02-27 Download: https://wordpress.org/plugins/zen-mobile-app-native/ Vendor: https://profiles.wordpress.org/zendkmobileapp/ Notified: 2017-02-27 Vendor Contact: Description: Mobile App...