WordPress Hütte

Menu and Widgets

Explore Website

  • Home
  • Contact
  • Responsible disclosure

About Me

PHP and WordPress developer. Security and encryption enthusiast.

Tags

Close
3 Posts

All posts tagged RCE

xss, RCE, envato, plugin, woocommerce, themecomplete, codecanyon, plugin_options

WooCommerce Extra Product Options plugin <= 4.5.3 RCE Exploit with Stored XSS

by WP Hutte July 28, 2017

New idea A couple of days ago, I read in an article about attacks on freshly installed WordPress instances. Here is the original article: https://www.wordfence.com/blog/2017/07/wpsetup-attack/, it is a pretty good read. So, the idea is to hit a WordPress site that is a…

Read More
visualcomposer, plugin, xss, RCE, envato

Ultimate Addons for Visual Composer v3.16.10 XSS, CSRF, RCE

by WP Hutte April 16, 2017

After looking at Visual Composer and LayerSlider on CodeCanyon.net, the next item in the popular section is the Ultimate Addons for Visual Composer developed by BrainstormForce. I started looking for the low hanging fruits like $_GET, $_POST, $_COOKIE, admin_init, wp_ajax, etc, and the search for wp_ajax…

Read More
theme, realestate, contempoinc, file_upload, RCE, evato

Real Estate 7 v2.5.6 authenticated Arbitrary File Upload.

by WP Hutte April 15, 2017

The Real Estate 7 version 2.5.6 suffers from an arbitrary file upload vulnerability. This means that any authenticated user can upload any type of file, even executable ones like PHP. An authenticated user can have any role: editor, subscriber, customer, etc. It does not matter and we will…

Read More
Page 1 of 1
Twitter GitHub RSS
© WordPress Hütte all rights reserved.
Powered by Ghost.
Back to the top