Showing 1 - 12 of 12

Files from Chloe Chamberland

First Active	2021-01-08
Last Active	2023-08-10

WordPress WP Project Manager 2.6.4 Privilege Escalation: Posted Aug 10, 2023; Authored by Chloe Chamberland, Lana Codes | Site wordfence.com; WordPress WP Project Manager plugin versions 2.6.4 and below suffer from a privilege escalation vulnerability.; tags | exploit; advisories | CVE-2023-3636; SHA-256 | 6dd9ce941c9d2d86124d386eff22150f99117b79a0948c64c5aa90dd062a66d1; Download | Favorite | View

WordPress WP Data Access 5.3.7 Privilege Escalation: Posted Apr 12, 2023; Authored by Chloe Chamberland | Site wordfence.com; WordPress WP Data Access plugin versions 5.3.7 and below suffer from a privilege escalation vulnerability.; tags | exploit; advisories | CVE-2023-1874; SHA-256 | d49ea8b9bea193cf8a0f42cd8b8716664bb3a87bf5134d20480629da298be9ea; Download | Favorite | View

WordPress WPGateway 3.5 Privilege Escalation: Posted Sep 14, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress WPGateway plugin versions 3.5 and below suffer from an unauthenticated privilege escalation vulnerability.; tags | exploit; advisories | CVE-2022-3180; SHA-256 | 715990b9ee833ca498f918bbbc57126f80aebb00320ec587bbd2652d95d95513; Download | Favorite | View

WordPress Download Manager 3.2.50 Arbitrary File Deletion: Posted Aug 4, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress Download Manager plugin versions 3.2.50 and below suffer from an arbitrary file deletion vulnerability.; tags | exploit, arbitrary; advisories | CVE-2022-2431; SHA-256 | 81394c472063bd99c8767e0198e8bc71d4dc98bfdea27535691be0ffd873ac59; Download | Favorite | View

WordPress SiteGround Security 1.2.5 Authentication Bypass: Posted Apr 8, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress SiteGround Security plugin versions 1.2.5 and below suffer from an authentication bypass vulnerability as well as an authorization weakness in versions 1.2.4 and below.; tags | exploit, bypass; advisories | CVE-2022-0992, CVE-2022-0993; SHA-256 | 39002aacdb45a842886c5499bb9ff463ad56fdba64a4bbe185d1961315404f6b; Download | Favorite | View

WordPress Photoswipe Masonry Gallery 1.2.14 Cross Site Scripting: Posted Feb 25, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress Photoswipe Masonry Gallery plugin version 1.2.14 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2022-0750; SHA-256 | 15996cc31605f93925a67eef5bab187429b2569dcdbb41553596502d78575f90; Download | Favorite | View

WordPress Cozmoslabs Profile Builder 3.6.1 Cross Site Scripting: Posted Feb 17, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress Cozmoslabs Profile Builder plugin versions 3.6.1 and below suffer from a cross site scripting vulnerability.; tags | advisory, xss; advisories | CVE-2022-0653; SHA-256 | 227d0cbc687a81308dae38c43331e51ea397ccd24a1a3764724ddc45172f1143; Download | Favorite | View

WordPress Email Template Designer – WP HTML Mail 3.0.9 Cross Site Scripting: Posted Jan 19, 2022; Authored by Chloe Chamberland | Site wordfence.com; WordPress Email Template Designer – WP HTML Mail plugin versions 3.0.9 and below suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2022-0218; SHA-256 | 2daac954d0f1c688550129f35862a338821ee9c20becb99aa75ebc8c3fabb72e; Download | Favorite | View

WordPress Preview E-mails For WooCommerce 1.6.8 Cross Site Scripting: Posted Nov 18, 2021; Authored by Chloe Chamberland | Site wordfence.com; WordPress Preview E-mails for WooCommerce plugin versions 1.6.8 and below suffer from a cross site scripting vulnerability.; tags | advisory, xss; advisories | CVE-2021-42363; SHA-256 | 01bd24243549cbbdb29bc5e55a2d15d7d611dfff811a5a470702cdad4370055b; Download | Favorite | View

WordPress wpDiscuz 7.0.4 Shell Upload: Posted Jun 28, 2021; Authored by Hoa Nguyen, Chloe Chamberland | Site metasploit.com; This Metasploit module exploits an arbitrary file upload in the WordPress wpDiscuz plugin versions from 7.0.0 through 7.0.4. This flaw gave unauthenticated attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable server.; tags | exploit, remote, arbitrary, php, code execution, file upload; advisories | CVE-2020-24186; SHA-256 | fab2eeb88db6a1f9b11eed6c490a6ca021dd6f8237a47b405d41bd041a36af45; Download | Favorite | View

WordPress wpDiscuz 7.0.4 Shell Upload: Posted Jun 6, 2021; Authored by Chloe Chamberland, Juampa Rodriguez; WordPress wpDiscuz plugin version 7.0.4 remote shell upload exploit.; tags | exploit, remote, shell; advisories | CVE-2020-24186; SHA-256 | 8fa69935470b723c80f2977560b14f53d9cb4f4b6055bb73e01b783fd7f62aad; Download | Favorite | View

WordPress wpDiscuz 7.0.4 Shell Upload: Posted Jan 8, 2021; Authored by Hoa Nguyen, Chloe Chamberland | Site metasploit.com; This Metasploit module exploits an arbitrary file upload in the WordPress wpDiscuz plugin version 7.0.4. This flaw gave unauthenticated attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable server.; tags | exploit, remote, arbitrary, php, code execution, file upload; SHA-256 | 187052df5b77471af6ad467ad2dc057df0f9c9a641dd2c9d116e4f60896dcc30; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days