daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update and rename aspose-words-exporter-file-download.yaml to vulnerabilities/wordpress/aspose-words-file-download.yaml

patch-1
Prince Chaddha 2021-10-14 16:33:38 +05:30 committed by GitHub
parent 15acac6354
commit 02d0071660
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
aspose-words-exporter-file-download.yaml → vulnerabilities/wordpress/aspose-words-file-download.yaml
View File

@ -1,11 +1,14 @@
id: aspose-words-exporter-file-download id: aspose-words-file-download
info: info:
name: Aspose Words Exporter < 2.0 - Unauthenticated Arbitrary File Download name: Aspose Words Exporter < 2.0 - Unauthenticated Arbitrary File Download
author: 0x_Akoko author: 0x_Akoko
severity: high severity: high
tags: wordpress,wp-plugin,lfi,wp description: The Aspose.Words Exporter WordPress plugin is affected by an Arbitrary File Download security vulnerability.
reference: https://wpscan.com/vulnerability/7869 reference:
- https://wpscan.com/vulnerability/7869
- https://wordpress.org/plugins/aspose-doc-exporter
tags: wordpress,wp-plugin,lfi
requests: requests:
- method: GET - method: GET