Lucene search
K

13 matches found

GithubExploit
GithubExploit
added 2021/05/05 4:23 p.m.158 views

Exploit for Unrestricted Upload of File with Dangerous Type in Wordpress

PoC exploit for CVE-2019-8942 and CVE-2019-8943, a pair of vulne...

8.8CVSS8.3AI score0.91985EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2020/07/05 12:0 a.m.22 views

WordPress Core Directory Traversal (CVE-2019-8943)

A directory traversal vulnerability exists in WordPress. Successful exploitation of this vulnerability would allow a remote attacker to list directories on the affected system...

4CVSS5.1AI score0.91985EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2019/05/30 12:0 a.m.136 views

WordPress < 5.0.4 Directory Traversal Vulnerability

According to its self-reported version number, the WordPress application running on the remote web server is prior to 5.0.4. It is, therefore, affected by a directory traversal vulnerability in its wpcropimage component. An authenticated, remote attacker can exploit this, by sending a URI that...

6.5CVSS7.2AI score0.91985EPSS
Exploits9References2
Exploit DB
Exploit DB
added 2019/04/05 12:0 a.m.510 views

WordPress Core 5.0.0 - Crop-image Shell Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Crop-image Shell Upload', 'Description' = %q This module exploits a path traversal and a local file inclusion vulnerability on WordPres...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/04/04 12:0 a.m.355 views

WordPress 5.0.0 crop-image Shell Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Crop-image Shell Upload', 'Description' = %q This module exploits a path traversal and a local file inclusion vulnerability on WordPres...

6.5CVSS7.6AI score0.91985EPSS
Exploits10
Circl
Circl
added 2019/03/01 8:59 a.m.26 views

CVE-2019-8943

creationtimestamp| type| source ---|---|--- 2019-03-01 08:59:30+00:00| published-proof-of-concept| https://t.me/antichat/3785 2019-03-01 09:58:50+00:00| seen| https://t.me/thebugbountyhunter/2368 2019-04-04 20:32:00+00:00| seen|...

6.5CVSS6.9AI score0.91985EPSS
Exploits9References55
OpenVAS
OpenVAS
added 2019/02/22 12:0 a.m.210 views

WordPress < 5.1 Path Traversal Vulnerability - Linux

WordPress allows Path Traversal in wpcropimage. An attacker who has privileges to crop an image can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring...

6.5CVSS7.4AI score0.91985EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2019/02/22 12:0 a.m.233 views

WordPress RCE Vulnerability (CVE-2019-8942) - Windows

WordPress allows remote code execution RCE because an wpattachedfile Post Meta entry can be changed to an arbitrary string, such as one ending with a .jpg?file.php substring. An attacker with author privileges can execute arbitrary code by uploading a crafted image containing PHP code in the Exif...

8.8CVSS8.1AI score0.91985EPSS
Exploits10References2
OSV
OSV
added 2019/02/20 3:29 a.m.8 views

DEBIAN-CVE-2019-8943

WordPress through 5.0.3 allows Path Traversal in wpcropimage. An attacker who has privileges to crop an image can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring...

6.5CVSS7AI score0.91985EPSS
Exploits9References1
OSV
OSV
added 2019/02/20 3:29 a.m.78 views

CVE-2019-8942

WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because an wpattachedfile Post Meta entry can be changed to an arbitrary string, such as one ending with a .jpg?file.php substring. An attacker with author privileges can execute arbitrary code by uploading a crafted image...

8.8CVSS7.1AI score
Exploits0References9
Prion
Prion
added 2019/02/20 3:29 a.m.73 views

Remote code execution

WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because an wpattachedfile Post Meta entry can be changed to an arbitrary string, such as one ending with a .jpg?file.php substring. An attacker with author privileges can execute arbitrary code by uploading a crafted image...

6.5CVSS7.4AI score0.91985EPSS
Exploits10References9Affected Software2
Debian CVE
Debian CVE
added 2019/02/20 3:0 a.m.53 views

CVE-2019-8942

WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because an wpattachedfile Post Meta entry can be changed to an arbitrary string, such as one ending with a .jpg?file.php substring. An attacker with author privileges can execute arbitrary code by uploading a crafted image...

8.8CVSS8.3AI score0.82736EPSS
Exploits7
CVE
CVE
added 2019/02/20 3:0 a.m.293 views

CVE-2019-8943

CVE-2019-8943 affects WordPress up to version 5.0.3, where wp_crop_image() path traversal allows an image-cropping user to write the output image to an arbitrary directory by crafting a filename with two image extensions and ../ sequences. Arch Linux advisory confirms remote code execution risk v...

6.5CVSS6.4AI score0.91985EPSS
Exploits9References7Affected Software1
Rows per page
Query Builder