0xAgun / Arbitrary-File-Upload-ZoomSounds Public

Notifications You must be signed in to change notification settings
Fork 1
Star 2

ZoomSounds < 6.05 allowing unauthenticated users to upload an arbitrary file anywhere on the web server.

2 stars 1 fork Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 10 Commits
README.md		README.md
exploit.py		exploit.py
wi.txt		wi.txt

Repository files navigation

ZoomSounds < 6.05 - Unauthenticated Arbitrary File Upload

The plugin contained a PHP file, allowing unauthenticated users to upload an arbitrary file anywhere on the web server.Note (WPScanTeam): It's unclear which version fixed the issue exactly, however we were able to confirm the issue on version as high as v5.96 and that the related file has been removed at least since v6.05

Modules need to Install

To run this project, you will need to add the following modules in your python

requests

Uses

To run this project u need to do the followings

  python3 exploit.py

Screenshots

🔗 Links

About

ZoomSounds < 6.05 allowing unauthenticated users to upload an arbitrary file anywhere on the web server.

wordpress exploit zoomsounds

Report repository

Releases

No releases published

Packages

No packages published

Languages

Python 100.0%