Lucene search
Dmitrii IgnatyevWPVDB-ID:ECA6F099-6AF0-4F42-AADE-AB61DD792629HistoryDec 12, 2023 - 12:00 a.m.
Prime Mover < 1.9.3 - Directory Listing to Sensitive Data Exposure
2023-12-1200:00:00
Dmitrii Ignatyev
wpscan.com
5
sensitive data exposure
directory listing
plugin vulnerability
exploit
software
Description The plugin does not prevent directory listing in sensitive directories containing export files.
PoC
http://127.0.0.1/wordpress/wp-content/uploads/prime-mover-export-files/1/ 0) Go to packages and crate new (If there is no backup now) 1) Go to this URL manualy 2) Use Exploit
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 1.9.3 |
Related
nuclei
nuclei
Prime Mover < 1.9.3 - Sensitive Data Exposure
2024-06-10 11:52:00
cve
cve
CVE-2023-6505
2024-01-08 19:15:10
nvd
nvd
CVE-2023-6505
2024-01-08 19:15:10
wpexploit
wpexploit
Prime Mover < 1.9.3 - Directory Listing to Sensitive Data Exposure
2023-12-12 00:00:00
prion
prion
Design/Logic Flaw
2024-01-08 19:15:00
cvelist
cvelist
6.4 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.5%
Related for WPVDB-ID:ECA6F099-6AF0-4F42-AADE-AB61DD792629