.. / CVE-2016-10956

Exploit for WordPress Mail Masta 1.0 - Local File Inclusion (CVE-2016-10956)

Description:

WordPress Mail Masta 1.0 is susceptible to local file inclusion in count_of_send.php and csvexport.php.

Nuclei Template

View the template here CVE-2016-10956.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2016/CVE-2016-10956.yaml
Copy

References:

https://github.com/p0dalirius/CVE-2016-10956-mail-masta
https://nvd.nist.gov/vuln/detail/CVE-2016-10956
https://cxsecurity.com/issue/WLB-2016080220
https://wpvulndb.com/vulnerabilities/8609
https://wordpress.org/plugins/mail-masta/#developers