Name		Name	Last commit message	Last commit date
parent directory ..
exploit.py		exploit.py
readme.md		readme.md

readme.md

Post Report Info

Link: https://patchstack.com/database/vulnerability/boat-rental-system/wordpress-boat-rental-plugin-for-wordpress-plugin-1-0-1-arbitrary-file-upload-vulnerability
CVE: 2024-52376
Bounty: 60 AXP

Unauth RCE

https://wordpress.org/plugins/boat-rental-system/

The Boat Rental Plugin for WordPress Plugin is vulnerable to an unauthenticated arbitrary file upload allowing for an attacker to upload a PHP file and execute arbitrary commands.

Install the plugin
Modify the Python PoC for your target and execute

TARGET = 'http://wordpress.local:1337'  # No trailing slash

Profit

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

boat-rental-system-arb-file-upload

boat-rental-system-arb-file-upload

readme.md

Post Report Info

Unauth RCE

Files

boat-rental-system-arb-file-upload

Directory actions

More options

Directory actions

More options

Latest commit

History

boat-rental-system-arb-file-upload

Folders and files

parent directory

readme.md

Post Report Info

Unauth RCE