Merge pull request #678 from PR3R00T/patch-2

Wordpress Easy WP Plugin Vulnerability
2020-12-14 19:05:54 +05:30 · 2020-12-14 19:05:54 +05:30 · 4fa61833a3
parent d0df82d928 961977a1d4
commit 4fa61833a3
2 changed files with 21 additions and 1 deletions
--- a/vulnerabilities/easy-wp-smtp-listing.yaml
+++ b/vulnerabilities/easy-wp-smtp-listing.yaml
@ -0,0 +1,19 @@
+id: easy-wp-smtp-listing
+
+info:
+  name: SMTP WP Plugin Directory listing enabled
+  author: PR3R00T
+  severity: high
+  reference: "https://blog.nintechnet.com/wordpress-easy-wp-smtp-plugin-fixed-zero-day-vulnerability/"
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/wp-content/plugins/easy-wp-smtp/"
+    matchers:
+      - type: word
+        words:
+          - "debug"
+          - "log"
+          - "Index of"
+        condition: and
--- a/workflows/wordpress-workflow.yaml
+++ b/workflows/wordpress-workflow.yaml
@ -28,4 +28,5 @@ workflows:
          - template: vulnerabilities/wordpress-duplicator-path-traversal.yaml
          - template: vulnerabilities/wordpress-social-metrics-tracker.yaml
          - template: vulnerabilities/wordpress-wordfence-xss.yaml
-          - template: vulnerabilities/wordpress-wpcourses-info-disclosure.yaml
+          - template: vulnerabilities/wordpress-wpcourses-info-disclosure.yaml
+          - template: vulnerabilities/easy-wp-smtp-listing.yaml