.. / CVE-2017-17059

Exploit for WordPress amtyThumb Posts 8.1.3 - Cross-Site Scripting (CVE-2017-17059)

Description:

WordPress amty-thumb-recent-post plugin 8.1.3 contains a cross-site scripting vulnerability via the query string to amtyThumbPostsAdminPg.php.

Nuclei Template

View the template here CVE-2017-17059.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2017/CVE-2017-17059.yaml
Copy

References:

https://github.com/ARPSyndicate/kenzer-templates
https://packetstormsecurity.com/files/145044/WordPress-amtyThumb-8.1.3-Cross-Site-Scripting.html
https://github.com/NaturalIntelligence/wp-thumb-post/issues/1
https://nvd.nist.gov/vuln/detail/CVE-2017-17059