ET WEB_SPECIFIC_APPS Possible WP Plug-in MailPoet Arbitrary File Upload/Auth Bypass Vulnerability

SID: 2018648Rev: 40 viewsHistory

Sourceet/open

CreatedJuly 8, 2014

UpdatedApril 30, 2020

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible WP Plug-in MailPoet Arbitrary File Upload/Auth Bypass Vulnerability"; flow:established,to_server; http.uri; content:"/wp-admin/admin-post.php"; content:"page=wysija_campaigns"; content:"action=themes"; http.request_body; content:"|0d 0a|PK"; content:"style.css"; reference:url,www.exploit-db.com/exploits/33991/; classtype:web-application-attack; sid:2018648; rev:4; metadata:created_at 2014_07_08, confidence Medium, signature_severity Major, updated_at 2020_04_30;)

References

url	www.exploit-db.com/exploits/33991/

Metadata

created at2014_07_08

confidenceMedium

signature severityMajor

updated at2020_04_30

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!