Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/randomrobbiebf/health-check
Health Check & Troubleshooting <= 1.2.3 - Authenticated Path Traversal
https://github.com/randomrobbiebf/health-check
Last synced: about 1 month ago
JSON representation
Health Check & Troubleshooting <= 1.2.3 - Authenticated Path Traversal
- Host: GitHub
- URL: https://github.com/randomrobbiebf/health-check
- Owner: RandomRobbieBF
- License: gpl-3.0
- Created: 2023-08-18T09:49:27.000Z (over 1 year ago)
- Default Branch: main
- Last Pushed: 2023-08-18T09:51:59.000Z (over 1 year ago)
- Last Synced: 2023-08-18T10:48:13.013Z (over 1 year ago)
- Language: Python
- Size: 0 Bytes
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# health-check
Health Check & Troubleshooting <= 1.2.3 - Subscriber+ Path Traversal# Description
The Health Check & Troubleshooting WordPress plugin was affected by an Authenticated Path Traversal security vulnerability.# Note
Due to the response from the plugin it adds so much html around things i've put a html stripper inside the code of the exploit so it returns the files with out the html.
Note some files you might be looking at might need have code stripped.
How to use
---```
$ python3 exploit.py --url http://wordpress.lan --user user --password useruser1 --file ./../../../../../../../etc/passwd
Logged in successfully.root:x:0:0:root:/root:/bin/bash