Pentester Lab: CVE-2008-1930: Wordpress 2.5 Cookie Integrity Protection Vulnerability


  • Name: Pentester Lab: CVE-2008-1930: Wordpress 2.5 Cookie Integrity Protection Vulnerability
  • Date release: 7 Dec 2012



Please remember that VulnHub is a free community resource so we are unable to check the machines that are provided to us. Before you download, please read our FAQs sections dealing with the dangers of running unknown VMs and our suggestions for "protecting yourself and your network. If you understand the risks, please download!


cve-2008-1930_i386.iso

(Size: 170 MB)

_cve-2008-1930.iso

(Size: 173 MB)


Difficulty

Beginner

Details

This exercise explains how you can exploit CVE-2008-1930 to gain access to the administration interface of a Wordpress installation.

What you will learn?

  • Exploiting CVE-2008-1930
  • Cookies manipulation
  • Mis-use of signature




  • Filename: cve-2008-1930_i386.iso
  • File size: 170 MB
  • MD5: D5C658FE22878E9EEECDB3AE33EE8B62
  • SHA1: 4890C6595FD2B8B0348CE17D3DD926DA9DC42415

  • Filename: _cve-2008-1930.iso
  • File size: 173 MB
  • MD5: 0B6C7B9839A183408A8E7293CEBC1BC1
  • SHA1: 995761A58CD605BDED0E7291F6F0183205C161E4


  • Format: Disk Image (.ISO)
  • Operating System: Linux


  • DHCP service: Enabled
  • IP address: Automatically assign