CVE-2016-10956

This repository contains a functional Python exploit for CVE-2016-10956, which is a local file read vulnerability in the Mail Masta WordPress plugin. The exploit leverages a path traversal flaw in `count_of_send.php` to read arbitrary files from the server.

This repository contains a functional Python script that exploits CVE-2016-10956, a Local File Inclusion (LFI) vulnerability in WordPress Plugin Mail Masta 1.0, to extract MySQL credentials from wp-config.php. The exploit uses both direct file inclusion and base64 encoding techniques to bypass restrictions.

This repository contains a functional Python exploit for CVE-2016-10956, a local file read vulnerability in the Mail Masta WordPress plugin. The exploit leverages a path traversal flaw in `count_of_send.php` to read arbitrary files from the target system via base64-encoded responses.