CVE-2021-39316 PoC — WordPress 插件路径遍历漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-39316.yaml

Associated Vulnerability

Title:WordPress 插件路径遍历漏洞 (CVE-2021-39316)
Description:WordPress是WordPress（Wordpress）基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress Plugins Zoomsounds 存在安全漏洞，该漏洞源于该插件版本<= 6.45的允许通过 `dzsap_download` 操作使用 `link` 参数中的目录遍历来下载任意文件，包括敏感的配置文件，例如 wp-config.php。

Description

WordPress Zoomsounds plugin 6.45 and earlier allows arbitrary files, including sensitive configuration files such as wp-config.php, to be downloaded via the `dzsap_download` action using directory traversal in the `link` parameter.

File Snapshot


 id: CVE-2021-39316

info:
  name: WordPress DZS Zoomsounds <=6.50 - Local File Inclusion
  author: d

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!