This Metasploit module exploits an unauthenticated database backup vulnerability in WordPress plugin Boldgrid-Backup also known as Total Upkeep version < 1.14.10. First, env-info.php is read to get server information. Next, restore-info.json is read to retrieve the last backup file. That backup is then downloaded, and any sql files will be parsed looking for the wp_users INSERT statement to grab user creds.
8ab619abe5830fc334f96aa44ebe91bf5262fbdf2d37942eb3a12c5a678f4e61
WordPress Backup Migration plugin version 1.2.8 suffers from a database disclosure vulnerability.
54bfb2eecc242ef9dd0f6982f9909de6c5939c256b9a2ca0aed8bb82c04f7e1f
WordPress Total Upkeep plugin version 1.14.9 suffers from a backup disclosure vulnerability.
1a482567d665942d7b66e8c7097084e716aa6d3a91a0714cfe35cb036dc12072
Edimax Technology EW-7438RPn-v3 Mini version 1.27 suffers from a remote code execution vulnerability.
a7b3bfe170399993d098377d06aacc8404570738458254729c765989042ee70f
Netgear WiFi router versions JWNR2010v5 and R6080 suffer from authentication bypass vulnerabilities.
034ed9038532a99e6b030d733d008140314fd60b1ed467dfb1ef4e92b0fb1609
TP-Link Archer C50 Wireless Router 171227 suffers from a cross site request forgery vulnerability.
c1f76254a2e97860d49b81bac75298be01fc22fa01f719986d2291b7d85291ac
NETGEAR WiFi Router R6120 suffers from a credential disclosure vulnerability.
daf472c5d2611ddc71d425949ff533f742aebf7055faa072ae37de8c783cea0e
TP-Link C50 Wireless Router 3 suffers from cross site request forgery vulnerability that allows for information disclosure.
3ad2cf541878201e7c393421268aa259ed91ab56bf64fa043da52ad275e88aad
TP-Link C50 Wireless Router 3 suffers from a remote reboot cross site request forgery vulnerability.
f0ac329d6272aaebe3f0f19c17b7df64e30c1436a213fc5249f69284d57febf0
AsusWRT RT-AC750GF suffers from a cross site request forgery vulnerability in the change admin password flow.
363560f7c28221e14f216c3e9133cd294040a8d4e3874784d921d8085a9c6803
TP-Link Technologies TL-WA850RE Wi-Fi Range Extender suffers from an unauthorized remote reboot vulnerability.
970a5397e04acea93596c1622e954fa7cc0a100eb23d4a5bf1fa9ecac096aba5
WordPress WP with Spritz plugin version 1.0 suffers from local and remote file inclusion vulnerabilities.
c6986cfbd78a92dae5c9a05da5db76c918141c17da17231a3ab998a61b73258d
Aastra 6755i SIP SP4 suffers from a denial of service vulnerability.
d2ff73305e2a0039c97109b1e937bfe8ded69b6860834e78acaa228ab9ffac71
Belkin N600DB suffers from password disclosure, a backdoor shell, server-side request forgery, and command injection vulnerabilities.
ad4deef8559fe9859dfa5db5bd48616568ccaac8491f724ab6019aa6c952893c
Belkin NetCam F7D7601 suffers from remote command execution, network fingerprinting, and hard-coded password vulnerabilities.
4bd2b5bb8c5fc1891523e53b3179f3ae7e600feacbf458153657ff0e4b2e1524
EC-CUBE version 2.12.6 suffers from a server-side request forgery vulnerability.
c42ba6db20bf772a4bcc9224c08de1ef016065fe9006bd2eaeef8a403bde4674
NetBilleterie version 2.8 suffers from remote SQL injection and information disclosure vulnerabilities.
67eb1173e9a47959be8afd57a92575f29b7bf96962b2ffe0ca8cac0b6a650b6a
OpenCimetiere version 3.0.0-a5 suffers from a remote blind SQL injection vulnerability.
a639b87a100bb79acb7fa238fdafd585bb41cb2eeca01298ac45bbec815d6771
Categorizator version 0.3.1 suffers from a remote SQL injection vulnerability.
6f0636b8e9b2983f9ed51a6cdeac5aeada8788e8233a5f825bad75a107a1f925
WordPress eBook Download plugin version 1.1 suffers from a directory traversal vulnerability.
318fb4f76e3092c8ff33ac73fd09fc95ac7ed8b8879301abfb411e910e2b8bba
WordPress Import CSV plugin version 1.1 suffers from a directory traversal vulnerability.
707a5fc82a6731639583d67130bd989dfed85f9b4b0f10af7dcc9e0f8b036b3c