CVE-2019-8942 PoC — WordPress 代码注入漏洞

Source

Associated Vulnerability

Title:WordPress 代码注入漏洞 (CVE-2019-8942)
Description:WordPress是WordPress基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress 4.9.9之前版本和5.0.1之前的5.x版本中存在安全漏洞。远程攻击者可通过上传包含有PHP代码的特制图像利用该漏洞执行任意代码。

Description

cve-2019-8942, cve-2019-8943

File Snapshot


 [4.0K]  /data/pocs/77c65bd51ce5e3582caa3bb2be05182e2670174c
├── [ 657]  docker-compose.yml
├── [ 321]  Dockerfile
├── [4.8K]  ex.py
├── [4.0K]  img
│   ├── [244K]  Untitled 1.png
│   ├── [ 95K]  Untitled 2.png
│   ├── [ 22K]  Untitled 3.png
│   ├── [ 19K]  Untitled 4.png
│   ├── [ 57K]  Untitled 5.png
│   ├── [119K]  Untitled 6.png
│   ├── [ 94K]  Untitled 7.png
│   └── [245K]  Untitled.png
├── [9.4K]  readme.md
└── [ 25K]  test.jpg

1 directory, 13 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!