|
|
| |
| Wordpress WP-DB Backup "is an easy-to-use plugin to quickly backup your WordPress database. You may download the backup file, or have it emailed to the address of your choice". A vulnerability in the WP-DB Backup allows remote attackers able to initiate the script to access files that would be otherwise inaccessible. |
| |
Credit:
The information has been provided by ss_team.
|
| |
Vulnerable Systems:
* Wordpress WP-DB Backup version 1.7
Immune Systems:
* Wordpress WP-DB Backup version 1.7 revision 4095
WP-DB Backup is vulnerable to directory traversal attack. You must have administrator rights in the Wordpress blog to exploit this vulnerability.
Proof of Concept:
http://path-to-wordpress/wp-admin/edit.php ?page=wp-db-backup.php&backup=../../../../../etc/passwd
|
|
|
