CVE-2014-9119
published 2014-12-31CVE-2014-9119: Directory traversal vulnerability in download.php in the DB Backup plugin 4.5 and earlier for Wordpress allows remote attackers to read arbitrary files via a…
PriorityP344medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
16.12%
96.5th percentile
Directory traversal vulnerability in download.php in the DB Backup plugin 4.5 and earlier for Wordpress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| db_backup_project | db_backup | <= 4.5 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →HTTP GET requests to /wp-content/plugins/db-backup/download.php with a 'file' parameter containing directory traversal sequences (e.g., '../') should be flagged as exploitation attempts. ↗
- →Successful exploitation of wp-config.php exfiltration can be confirmed by detecting the strings 'DB_NAME' and 'DB_PASSWORD' in HTTP response bodies originating from the vulnerable endpoint. ↗
- →Use the Google Dork 'inurl:wp-content/plugins/db-backup/' to identify potentially vulnerable WordPress installations exposed on the internet. ↗
- ·The vulnerability affects DB Backup plugin version 4.5 and earlier; version 4.6 or higher is not affected. Ensure version scoping when deploying detections. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WordPress Plugin DB Backup - Arbitrary File Download
exploitdb·2014-11-26
CVE-2014-9119 WordPress Plugin DB Backup - Arbitrary File Download
WordPress Plugin DB Backup - Arbitrary File Download
---
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
|-------------------------------------------------------------------------|
|[*] Exploit Title: Wordpress db-backup plugin File Download Vulnerability
|
|[*] Google Dork: inurl:wp-content/plugins/db-backup/
|
|[*] Date : Date: 2014-11-26
|
|[*] Exploit Author: Ashiyane Digital Security Team
|
|[*] Vendor Homepage : https://wordpress.org/plugins/wp-database-backup/
|
|[*] Plugin Link : https://downloads.wordpress.org/plugin/wp-database-backup.zip
|
|[*] Tested on: Windows 7
|
|[*] Discovered By : ACC3SS
|
|-------------------------------------------------------------------------|
|
|[*] Location :[localhost]/wp-content/plugins/db-backup/download.php?file=/et
Nuclei
WordPress DB Backup <=4.5 - Local File Inclusion
nuclei·CVSS 5.0
CVE-2014-9119 [MEDIUM] WordPress DB Backup <=4.5 - Local File Inclusion
WordPress DB Backup <=4.5 - Local File Inclusion
WordPress Plugin DB Backup 4.5 and possibly prior versions are prone to a local file inclusion vulnerability because they fail to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks.
Template:
id: CVE-2014-9119
info:
name: WordPress DB Backup <=4.5 - Local File Inclusion
author: dhiyaneshDK
severity: medium
description: |
WordPress Plugin DB Backup 4.5 and possibly prior versions are prone to a local file inclusion vulnerability because they fail to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks.
impact: |
Allows an attacker to read a
2014-12-31
Published