This repository was archived by the owner on Oct 22, 2020. It is now read-only.
v1.4
Core Changes
- Add a new method to the FileDownload mixin which allows for the validation of file contents
- Change modules which accept a local file path as an option value to properly expand the path and allow the use of tilde as a shortcut to the home directory
New Modules
- Add MailChimp for WordPress reflected XSS shell upload
- Add Delete All Comments shell upload
- Add Check Email < 0.5 reflected XSS shell upload
- Add WordPress 4.7 user information disclosure
- Add Instagram Feed <= 1.4.6.2 CSRF stored XSS shell upload
- Add WP Whois Domain reflected XSS shell upload
- Add WP Vault file download
- Add Social Pug <= 1.2.5 reflected XSS shell upload
- Add Content Grabber reflected XSS shell upload
- Add Quiz and Survey Master <= 4.7.8 reflected XSS shell upload
- Add Direct Download for WooCommerce <= 1.15 file download
- Add Brafton Content Importer < 3.4.7 reflected XSS shell upload
- Add Podlove Podcast Publisher <= 2.3.15 reflected XSS shell upload
- Add WangGuard <= 1.7.2 reflected XSS shell upload
Dependencies
- Update Nokogiri to 1.7.0
- Update Slop to 4.4.1
- Update Require All to 1.4
- Update Typhoeus to 1.1.2