CVE-2015-6668

The repository contains a functional Python script that exploits CVE-2015-6668, an information disclosure vulnerability in the Job-Manager WordPress plugin. The script brute-forces URLs to locate uploaded CV files by iterating through possible years, months, and file extensions.

This Rust-based tool scans for CVE-2015-6668 by enumerating predictable WordPress upload paths to detect publicly accessible files due to insufficient access controls in Job Manager <= 0.7.25. It performs GET requests to constructed URLs and reports the first accessible file found.

The repository contains a Python script that scans for publicly exposed CV files by exploiting predictable upload paths in the WP Job Manager plugin (CVE-2015-6668). It automates HTTP requests to potential URLs based on user-provided inputs like filename, year range, and extensions.

The repository contains a functional Python script that exploits an Insecure Direct Object Reference (IDOR) vulnerability in WordPress Job Manager plugin versions <= 0.7.25. The script attempts to access uploaded files by brute-forcing URLs with different file extensions and years.

This repository contains a functional Python 3 exploit for CVE-2015-6668, an IDOR vulnerability in the WordPress Job Manager plugin (versions <=0.7.25). The exploit discloses the URL of uploaded CV files by brute-forcing possible paths and extensions.

This script scans for exposed files in WordPress Job Manager plugin upload directories by brute-forcing URLs with different years, months, and file extensions. It does not exploit CVE-2015-6668 but checks for accessible files that may have been uploaded due to the vulnerability.