[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx, Amir@xxxxxxxx
Subject: Re: Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability
From: Henri Salo <henri@xxxxxxx>
Date: Tue, 24 Jul 2012 10:01:15 +0300

On Sat, Jul 21, 2012 at 07:50:54AM +0000, Amir@xxxxxxxx wrote:
> a bug in Wordpress (chenpress Plugin) that allows to us to occur
> a File Upload on a Remote machin.
> 
> 
> 
> 
> 
> 
> ########################################################################################
> #
> # Exploit Title : Wordpress (chenpress Plugin) Arbitrary File Upload 
> Vulnerability
> #
> # Author        : IrIsT.Ir
> #
> # Discovered By : Am!r
> #
> # Home          : http://IrIsT.Ir/forum
> #
> # Software Link : http://wordpress.org
> #
> # Security Risk : High
> #
> # Version       : All Version
> #
> # Tested on     : GNU/Linux Ubuntu - Windows Server - win7
> #
> # Dork          : inurl:"wp-content/plugins/chenpress"
> #
> ########################################################################################
> #
> #  Expl0iTs :
> #
> #  
> http://target.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/mcpuk/browser.html
> #
> #
> # D3mo :
> #
> # 
> butcherboysonline.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/mcpuk/browser.html
> #
> # 
> atletismosuanzes.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
> #
> # 
> carnadas.org/blog/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
> #
> # 
> downtheaisle.ca/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
> #
> ########################################################################################
> #
> # Greats : B3HZ4D - Crim3R - nimaarek - 0x0ptim0us - R3ZA BLACK HAT - 
> TaK.FaNaR - m3hdi - F@rid  
> #
> # H4x0r - dr.tofan - skote_vahshat - d3c0d3r - Dr.Security - Mr.Xpr - 
> Bl4ck_king - hellboy
> #
> #  Siamak_Black - Shekaf & All Members In IrIsT.Ir
> #
> ########################################################################################

This plugin is not in the official WordPress plugins repository. Where can it 
be downloaded? Does this vulnerability have CVE-identifier?

- Henri Salo

References:
- Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability
  - From: Amir

Prev by Date: [ MDVSA-2012:109 ] libxslt
Next by Date: [ MDVSA-2012:110 ] mozilla
Previous by thread: Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability
Next by thread: [SECURITY] [DSA 2508-1] kfreebsd-8 security update
Index(es):
- Date
- Thread