WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact
WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

File Manager <= 5.0.0 - Information Disclosure

Description

The Giribaz File Manager plugin logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If user edits wp-config.php file using this plugin, the wp-config.php contents get added to the file which is not protected and contains database credentials, salts, etc. These files have been indexed by Google and an simple dork will find affected sites. 

Proof of Concept

http://[target]/wp-content/uploads/file-manager/log.txt 

Affects Plugins

file-manager
Fixed in version 5.0.2

References

CVE
CVE-2018-7204
URL
http://www.giribaz.com/
URL
https://plugins.trac.wordpress.org/changeset/1823035/file-manager

Classification

Type

FPD

OWASP top 10
A6: Security Misconfiguration
CWE
CWE-200

Miscellaneous

Submitter

Colette Chamberland

Submitter website
https://www.defiant.com
Submitter twitter
@cjchamberland
Verified

No

WPVDB ID
f37a3e8b-292a-4c07-8f18-9621ac160810

Timeline

Publicly Published

2018-03-02 (about 5 years ago)

Added

2018-03-02 (about 5 years ago)

Last Updated

2020-09-22 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin
WPScan

Vulnerabilities

WordPressPluginsThemesOur StatsSubmit vulnerabilities

About

How it worksPricingWordPress pluginNewsContact

For Developers

StatusAPI detailsCLI scanner

Other

PrivacyTerms of serviceSubmission termsDisclosure policyPrivacy Notice for California Users
jetpackIn partnership with Jetpack
githubtwitterfacebook
Angithubendeavor
Work With Us