6Scan

6 exploits Active since Jan 2012
CVE-2012-1010 EXPLOITDB text WORKING POC
AllWebMenus <1.1.8 - Code Injection
Unrestricted file upload vulnerability in actions.php in the AllWebMenus plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.
CVE-2012-0895 EXPLOITDB text WORKING POC
Count Per Day < 3.1.1 - Cross-Site Scripting via Map Parameter
Cross-site scripting (XSS) vulnerability in map/map.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map parameter.
CVE-2011-5207 EXPLOITDB text WRITEUP
TheCartPress < 1.1.6 - Cross-Site Scripting via tcp_name_post_XXXXX Parameter
Cross-site scripting (XSS) vulnerability in admin/OptionsPostsList.php in the TheCartPress plugin for WordPress before 1.1.6 before 2011-12-31 allows remote attackers to inject arbitrary web script or HTML via the tcp_name_post_XXXXX parameter.
CVE-2012-1011 EXPLOITDB text WORKING POC
AllWebMenus WordPress Plugin 1.1.8 - Unauthenticated Arbitrary File Upload and Remote Code Execution
actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows remote attackers to bypass intended access restrictions to upload and execute arbitrary PHP code by setting the HTTP_REFERER to a certain value, then uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.
CVE-2012-0896 EXPLOITDB text WORKING POC
count_per_day < 3.1.1 - Unauthenticated Path Traversal via Download Parameter
Absolute path traversal vulnerability in download.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to read arbitrary files via the f parameter.
EIP-2026-113879 EXPLOITDB text WORKING POC
WordPress Plugin Mailing List - Arbitrary File Download