5 matches found
p0wny Shell Remote Code Execution (CVE-2017-9830; CVE-2018-15139; CVE-2018-19423; CVE-2018-6383; CVE-2020-29607; CVE-2021-24155; CVE-2021-24347)
p0wny Shell is a PHP shell. An attacker might use this shell to execute arbitrary code on the affected system...
WordPress Backup Guard Authenticated Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wordpress Plugin Backup Guard - Authenticated Remote Code Execution', 'Description' = %q This module allows an attacker with a privileged Wordpre...
CVE-2021-24155
creationtimestamp| type| source ---|---|--- 2021-07-10 16:29:07+00:00| published-proof-of-concept| Telegram/eMoVbCeI-n-jaFKeB-W9ZjnKBEe6KGFrv-r960DcFriPRg 2021-07-20 21:02:32+00:00| seen|...
Wordpress Backup Guard 1.5.8 Plugin - Remote Code Execution (Authenticated) Exploit
Exploit Title: Wordpress Plugin Backup Guard 1.5.8 - Remote Code Execution Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://backup-guard.com/products/backup-wordpress Software Link: https://downloads.wordpress.org/plugin/backup.1.5.8.zip Version: Before 1.6.0 Tested on...
CVE-2021-24155
The CVE-2021-24155 vulnerability affects WordPress Backup Guard plugin prior to 1.6.0. The authenticated arbitrary file upload flaw does not validate that imported files are in the SGBP format/extension, enabling high-privilege (admin+) users to upload arbitrary files, including PHP, and potentia...