CVE-2020-35489 PoC — Wordpress contact-form-7 代码问题漏洞

Source

https://github.com/dn9uy3n/Check-WP-CVE-2020-35489

Associated Vulnerability

Title:Wordpress contact-form-7 代码问题漏洞 (CVE-2020-35489)
Description:Wordpress contact-form-7是Wordpress基金会的一个为Wordpress提供表单的插件。 contact-form-7 (aka Contact Form 7) plugin 5.3.2之前版本存在安全漏洞，该漏洞允许不受限制的文件上传和远程代码执行，因为文件名可能包含特殊字符。

Description

The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489

Readme

# Check-WP-CVE-2020-35489

## CVE-2020-35489
The CVE-2020-35489 is discovered in the WordPress plugin Contact Form 7 5.3.1 and older versions. By exploiting this vulnerability, attackers could simply upload files of any type, bypassing all restrictions placed regarding the allowed upload-able file types on a website.

An estimated **5 million** websites were affected.

The PoC will be displayed on December 31, 2020, to give users the time to update.

## Reference
https://wpscan.com/vulnerability/10508

https://contactform7.com/2020/12/17/contact-form-7-532/#more-38314

https://cwe.mitre.org/data/definitions/434.html

## Run script
```
$ python3 check_CVE-2020-35489.py -d domaintest.com

Contact Form 7 version: 5.1.3
domaintest.com is vulnerable!
```

```
$ python3 check_CVE-2020-35489.py -i in.txt -o out.txt
```

File Snapshot


 [4.0K]  /data/pocs/861ed39ab1945e2be4ab491be8d2e6a0be0ac6d3
├── [2.7K]  check_CVE-2020-35489.py
├── [1.5K]  factory.py
├── [ 823]  README.md
└── [   9]  requirements.txt

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!