what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 8 of 8 RSS Feed

Files

WordPress Core 6.3.1 XSS / DoS / Arbitrary Shortcode Execution
Posted Oct 13, 2023
Authored by James Golovich, Rafie Muhammad, WhiteCyberSec, Marc Montpas, Edouard L, s5s, JB Audras, Jorge Costa, raouf_maklouf, mascara7784 | Site wordfence.com

WordPress Core versions prior to 6.3.2 suffer from arbitrary shortcode execution, cross site scripting, denial of service, and information leakage vulnerabilities. Versions prior to 6.3.2 are vulnerable.

tags | exploit, denial of service, arbitrary, vulnerability, code execution, xss
SHA-256 | 2747a0842119425378a1378f7692a4eca0ef390a27497cfbb5b9ecd9e53c5e9f

Related Files

Wordpress Arbitrary File Deletion
Posted Sep 1, 2024
Authored by Aloïs Thévenot, Slavco Mihajloski, Karim El Ouerghemmi | Site metasploit.com

An arbitrary file deletion vulnerability in the WordPress core allows any user with privileges of an Author to completely take over the WordPress site and to execute arbitrary code on the server.

tags | exploit, arbitrary
SHA-256 | 450966fcdaaef9283f89a86c7c9de92034c4bd56d35ca9d964c2be9545cd30ea
WordPress Core 5.6.2 XPath Injection
Posted Aug 15, 2023
Authored by Behrouz Mansoori

WordPress Core version 5.6.2 appears to suffer from an xpath injection vulnerability via the log parameter.

tags | exploit
SHA-256 | a09643f53bbe40a0895f24e822cdf7d8d6272510d96b3443e6ac504dcecae219
WordPress Core 6.2 XSS / CSRF / Directory Traversal
Posted May 17, 2023
Authored by Jakub Zoczek, Ramuel Gall, John Blackbourn, Matt Rusnak, Liam Gladdy | Site wordfence.com

WordPress Core versions 6.2 and below suffer from cross site request forgery, persistent cross site scripting, shortcode execution, insufficient sanitization, and directory traversal vulnerabilities.

tags | exploit, vulnerability, code execution, xss, file inclusion, csrf
advisories | CVE-2023-2745
SHA-256 | 3d8efef1ea0dad889c40870748373ac31bd5e9a184eceac6a8668dafb5fdcb38
WordPress Core Cross Site Scripting / SQL Injection
Posted Aug 31, 2022
Authored by Khalilov Moe, FVD, John Blackbourn | Site wordfence.com

The WordPress Core version 6.0.2 release addresses cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 0294b797dfc8902604de84c76092b7f611cd98068035d347145eca92a5a38499
WordPress Core 5.9.0 / 5.9.1 Cross Site Scripting
Posted Mar 14, 2022
Authored by Ben Bidner | Site wordfence.com

WordPress Core versions 5.9.0 through 5.9.1 suffer from a persistent cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2021-20083
SHA-256 | 4297c153bf0045065c8a04b47e2b1b207b98f68ddc673a4bdd06ce6fb46debc6
WordPress Core 5.8.2 SQL Injection
Posted Jan 13, 2022
Authored by Aryan Chehreghani

WordPress Core version 5.8.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2022-21661
SHA-256 | 290da5cda0c4555d189721910ddbcdad3d2627d4297306b55fc39785acd1346a
WordPress Core 5.2.2 Cross Site Scripting
Posted Jan 2, 2021
Authored by gx1

WordPress core versions 5.2.2 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-16223
SHA-256 | c9c85f985108f8e92174599c2942f9ba153160f4208d223bcbd889a4eda01b3d
WordPress Core load-scripts.php Denial Of Service
Posted Feb 5, 2018
Authored by Barak Tawily

WordPress Core suffers from a load-scripts.php denial of service vulnerability.

tags | exploit, denial of service, php
advisories | CVE-2018-6389
SHA-256 | 90ddb66c987de35f176ec117059c00459eaf78cbd14c3774555863f298085f05
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    14 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close