CVE-2014-8603
XCloner 3.1.1 and 3.5.1 - Authenticated Remote Code Execution via Shell Metacharacter Injection
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2014-8603.
AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in XCloner WordPress/Joomla! backup plugin, including arbitrary command execution via unsanitized input in exec() calls, clear text MySQL password exposure, and predictable backup file names. The writeup includes vulnerable code snippets, root cause analysis, and proof-of-concept descriptions.
Description
cloner.functions.php in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to execute arbitrary code via shell metacharacters in the (1) file name when creating a backup or vectors related to the (2) $_CONFIG[tarpath], (3) $exclude, (4) $_CONFIG['tarcompress'], (5) $_CONFIG['filename'], (6) $_CONFIG['exfile_tar'], (7) $_CONFIG[sqldump], (8) $_CONFIG['mysql_host'], (9) $_CONFIG['mysql_pass'], (10) $_CONFIG['mysql_user'], (11) $database_name, or (12) $sqlfile variable.
Exploits (1)
This is a detailed technical analysis of multiple vulnerabilities in XCloner WordPress/Joomla! backup plugin, including arbitrary command execution via unsanitized input in exec() calls, clear text MySQL password exposure, and predictable backup file names. The writeup includes vulnerable code snippets, root cause analysis, and proof-of-concept descriptions.