CVE-2012-10064

CRITICAL EXPLOITED

Omni Secure Files < 0.1.14 - Unauthenticated Arbitrary File Upload via plupload Example Endpoint

Title source: llm

Exploitation Summary

CVE-2012-10064 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Adrien Thierry.

AI-analyzed exploit summary This exploit demonstrates an arbitrary file upload vulnerability in WordPress Omni-secure-files 0.1.13. It uses cURL to upload a malicious PHP file to the vulnerable upload.php endpoint, allowing remote code execution.

Description

Omni Secure Files plugin versions prior to 0.1.14 contain an arbitrary file upload vulnerability in the bundled plupload example endpoint. The /wp-content/plugins/omni-secure-files/plupload/examples/upload.php handler allows unauthenticated uploads without enforcing safe file type restrictions, enabling an attacker to place attacker-controlled files under the plugin's uploads directory. This can lead to remote code execution if a server-executable file type is uploaded and subsequently accessed.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Adrien Thierry · phpwebappsphp

https://www.exploit-db.com/exploits/19009

View Code ZIP pw:eip

This exploit demonstrates an arbitrary file upload vulnerability in WordPress Omni-secure-files 0.1.13. It uses cURL to upload a malicious PHP file to the vulnerable upload.php endpoint, allowing remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Omni-secure-files 0.1.13

No auth needed

Prerequisites: Target must have the vulnerable plugin installed and accessible · Attacker must be able to reach the target server

MITRE ATT&CK