Lucene search
Dimopoulos IliasWPVDB-ID:F9EB8BF2-85CD-413D-8234-FCD3C0456894HistoryOct 14, 2019 - 12:00 a.m.
Popup-Maker < 1.8.12 - Multiple Vulnerabilities
2019-10-1400:00:00
Dimopoulos Ilias
wpscan.com
9
0.062 Low
EPSS
Percentile
93.6%
An attacker can partially control the arguments of the do_action, during the initialization of the PUM_Site . Because of this, an attacker can call any method which contains an action starting from popmake_ or pum_ . This will lead to successful execution of functions which do not require arguments (e.g: PUM_Admin_Tools::sysinfo_download or PUM_Admin_Tools::sysinfo_display) or require one argument as an array.
PoC
curl http://www.your-domain-with-popup-maker.com/?pum_action=tools_page_tab_system_info curl -v -d “popmake_action=popup_sysinfo&popmake-sysinfo;=choose any content you like” -X POST http://www.your-domain-with-popup-maker.com/
| CPE | Name | Operator | Version |
|---|---|---|---|
| popup-maker | lt | 1.8.13 |
Related
cve
cve
CVE-2019-17574
2019-10-14 14:15:10
openvas
openvas
WordPress Popup Maker Plugin < 1.8.13 Authorization Bypass Vulnerability
2023-02-23 00:00:00
nuclei
nuclei
Popup-Maker < 1.8.12 - Broken Authentication
2023-07-12 09:13:01
Popup-Maker < 1.8.12 - Broken Authentication
2023-07-12 09:13:01
cvelist
cvelist
CVE-2019-17574
2019-10-14 13:55:36
nvd
nvd
CVE-2019-17574
2019-10-14 14:15:10
wpexploit
wpexploit
Popup-Maker < 1.8.12 - Multiple Vulnerabilities
2019-10-14 00:00:00
prion
prion
Deserialization of untrusted data
2019-10-14 14:15:00
osv
osv
CVE-2019-17574
2019-10-14 14:15:10