class Wpxf::Exploit::MailcwpAuthenticatedShellUpload
Public Class Methods
new()
click to toggle source
Calls superclass method
Wpxf::Exploit::MailcwpUnauthenticatedShellUpload::new
# File lib/wpxf/modules/exploit/shell/mailcwp_authenticated_shell_upload.rb, line 6 def initialize super update_info( name: 'MailCWP v1.100 Authenticated Shell Upload', author: [ 'Larry W. Cashdollar', # Discovery and disclosure 'rastating' # WPXF module ], references: [ ['WPVDB', '8090'], ['CVE', '2016-1000156'], ['URL', 'http://www.vapidlabs.com/advisory.php?v=175'] ], date: 'Nov 01 2016' ) end
Public Instance Methods
check()
click to toggle source
# File lib/wpxf/modules/exploit/shell/mailcwp_authenticated_shell_upload.rb, line 24 def check check_plugin_version_from_readme('mailcwp', '1.101') end
payload_name_extension()
click to toggle source
# File lib/wpxf/modules/exploit/shell/mailcwp_authenticated_shell_upload.rb, line 32 def payload_name_extension 'phtml' end
requires_authentication()
click to toggle source
# File lib/wpxf/modules/exploit/shell/mailcwp_authenticated_shell_upload.rb, line 28 def requires_authentication true end