CVE-2007-5800
BackUpWordPress < 0.4.2b - Remote Code Execution via bkpwp_plugin_path Parameter
Title source: manualExploitation Summary
EIP tracks 1 public exploit for CVE-2007-5800. PoCs published by S.W.A.T..
AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in BackUpWordPress <= 0.4.2b. The vulnerability arises from insecure usage of the `$GLOBALS['bkpwp_plugin_path']` variable in `require_once`, allowing an attacker to include arbitrary remote files.
Description
Multiple PHP remote file inclusion vulnerabilities in the BackUpWordPress 0.4.2b and earlier plugin for WordPress allow remote attackers to execute arbitrary PHP code via a URL in the bkpwp_plugin_path parameter to (1) plugins/BackUp/Archive.php; and (2) Predicate.php, (3) Writer.php, (4) Reader.php, and other unspecified scripts under plugins/BackUp/Archive/.
Exploits (1)
This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in BackUpWordPress <= 0.4.2b. The vulnerability arises from insecure usage of the `$GLOBALS['bkpwp_plugin_path']` variable in `require_once`, allowing an attacker to include arbitrary remote files.