.. / CVE-2022-2544

Exploit for WordPress Ninja Job Board < 1.3.3 - Direct Request (CVE-2022-2544)

Description:

WordPress Ninja Job Board plugin prior to 1.3.3 is susceptible to a direct request vulnerability. The plugin does not protect the directory where it stores uploaded resumes, making it vulnerable to unauthenticated directory listing which allows the download of uploaded resumes.

Nuclei Template

View the template here CVE-2022-2544.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-2544.yaml

References:

https://github.com/ARPSyndicate/cvemon
https://nvd.nist.gov/vuln/detail/CVE-2022-2544
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2544
https://plugins.trac.wordpress.org/changeset/2758420/ninja-job-board/trunk/includes/Classes/File/FileHandler.php?old=2126467&old_path=ninja-job-board%2Ftrunk%2Fincludes%2FClasses%2FFile%2FFileHandler.php
https://wpscan.com/vulnerability/a9bcc68c-eeda-4647-8463-e7e136733053

.. / CVE-2022-2544 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for WordPress Ninja Job Board < 1.3.3 - Direct Request (CVE-2022-2544)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-2544