.. / CVE-2022-0594

Exploit for WordPress Shareaholic <9.7.6 - Information Disclosure (CVE-2022-0594)

Description:

WordPress Shareaholic plugin prior to 9.7.6 is susceptible to information disclosure. The plugin does not have proper authorization check in one of the AJAX actions, available to both unauthenticated (before 9.7.5) and authenticated (in 9.7.5) users, allowing them to possibly obtain sensitive information such as active plugins and different versions (PHP, cURL, WP, etc.).

Nuclei Template

View the template here CVE-2022-0594.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-0594.yaml

References:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0594
https://wordpress.org/plugins/shareaholic/
https://wpscan.com/vulnerability/4de9451e-2c8d-4d99-a255-b027466d29b1
https://nvd.nist.gov/vuln/detail/CVE-2022-0594
https://github.com/20142995/sectool

.. / CVE-2022-0594 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for WordPress Shareaholic <9.7.6 - Information Disclosure (CVE-2022-0594)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-0594