This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in Wordpress plugin Backup Guard versions prior to 1.6.0. This is due to an incorrect check of the uploaded file extension which should be of SGBP type. Then, the uploaded payload can be triggered by a call to /wp-content/uploads/backup-guard/<random_payload_name>.php.
-
Notifications
You must be signed in to change notification settings - Fork 7
0dayNinja/CVE-2021-24155.rb
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
WordPress Backup Guard Authenticated Remote Code Execution Exploit
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published