CVE-2015-20067

November 3, 2021

The WP Attachment Export WordPress plugin before 0.2.4 does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a Wordpress

Summary:

The WP Attachment Export WordPress plugin before 0.2.4 does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a WordPress

Reference Links(if available):

  • https://seclists.org/fulldisclosure/2015/Jul/73
  • https://github.com/espreto/wpsploit/blob/master/modules/auxiliary/scanner/http/wp_attachment_export_file_download.rb
  • https://wpscan.com/vulnerability/d1a9ed65-baf3-4c85-b077-1f37d8c7793a

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • You may have missed

    hackerone

    HackerOne Bug Bounty Disclosure: std-process-command-batch-files-argument-escaping-could-be-bypassed-with-trailing-whitespace-or-periods–xpl-r-r

    November 22, 2024
    image

    [LOCKBIT3] – Ransomware Victim: madison-home[.]com

    November 22, 2024
    image

    [CHORT] – Ransomware Victim: sheboyganwi[.]gov

    November 22, 2024
    image

    [QILIN] – Ransomware Victim: Zimmerman & Frachtman PA Law Firm

    November 22, 2024
    image

    [QILIN] – Ransomware Victim: Calvert Home Mortgage Investment

    November 22, 2024