Exploitation Summary
CVE-2014-4725 has been observed exploited in the wild (reported by VulnCheck KEV).
EIP tracks 4 public exploits from researchers including Metasploit, AnotherSec, Marc-Alexandre Montpas, Christian Mehlmauer, including a Metasploit module exploits/unix/webapp/wp_wysija_newsletters_upload.
AI-analyzed exploit summary This Metasploit module exploits an unauthenticated file upload vulnerability in WordPress MailPoet (wysija-newsletters) plugin versions before 2.6.8. It bypasses access controls by leveraging PHP's $_REQUEST variable handling to upload a malicious ZIP file containing a PHP payload.
Description
The MailPoet Newsletters (wysija-newsletters) plugin before 2.6.7 for WordPress allows remote attackers to bypass authentication and execute arbitrary PHP code by uploading a crafted theme using wp-admin/admin-post.php and accessing the theme in wp-content/uploads/wysija/themes/mailp/.
Exploits (4)
This Metasploit module exploits an unauthenticated file upload vulnerability in WordPress MailPoet (wysija-newsletters) plugin versions before 2.6.8. It bypasses access controls by leveraging PHP's $_REQUEST variable handling to upload a malicious ZIP file containing a PHP payload.
This repository contains a Python script to scan for and exploit CVE-2014-4725, a vulnerability in the MailPoet/Wysija Newsletters WordPress plugin. The exploit uploads a malicious ZIP file to vulnerable targets, achieving remote code execution.
This repository contains a functional exploit for CVE-2014-4725, targeting the MailPoet/Wysija Newsletters plugin in WordPress. The exploit includes both scanning and exploitation capabilities, allowing for the upload of a malicious ZIP payload to vulnerable targets.
This Metasploit module exploits an unauthenticated file upload vulnerability in the WordPress MailPoet Newsletters plugin (wysija-newsletters) before version 2.6.8. It bypasses access checks by leveraging PHP's $_REQUEST variable handling to upload a malicious ZIP file containing a PHP payload.