Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-17058 PoC — WordPress WooCommerce插件路径遍历漏洞

Source
https://github.com/fu2x2000/CVE-2017-17058-woo_exploit
Associated Vulnerability
Title:WordPress WooCommerce插件路径遍历漏洞 (CVE-2017-17058)
Description:WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。WooCommerce plugin是其中的一个免费的电子商务插件。 WordPress WooCommerce插件3.x之前的版本中存在目录遍历漏洞。攻击者可借助/wp-content/plugins/woocommerce/templates/emails/plain/ URI利用该漏洞访问父目录。
File Snapshot

 [4.0K]  /data/pocs/c86f3409401208785d8a952807fd25242b748ac0
└── [1.0K]  woo2.py

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.