Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2019-89242

Vulnerability Summary

WordPress versions 5.0.0 and 4.9.8 and below remote code execution exploit that leverages path traversal and file inclusion vulnerabilities.

Vulnerability Trend

Exploits

Exploit DB: WordPress 5.0.0 Remote Code Execution
WordPress versions 500 and 498 and below remote code execution exploit that leverages path traversal and file inclusion vulnerabilities ...

Github Repositories

https://github.com/Crako123/THM-blog

Writeup for THM Room blog set -gx IP 1010231216 # Entry in /etc/hosts: set -gx IP blogthm Found http service (wordpress blog) Found usernames: kwheel & bjoel Brute force hydra -l kwheel -P /usr/share/wordlists/rockyou blogthm http-post-form "/wp-loginphp:log=^USER^&pwd=^PASS^&wp-submit=Log+In&r

References

https://github.com/Crako123/THM-bloghttps://packetstormsecurity.com/files/161213/WordPress-5.0.0-Remote-Code-Execution.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook