Skip to content

Latest commit

 

History

History

boat-rental-system-arb-file-upload

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
 
 
 
 

Post Report Info

Unauth RCE

https://wordpress.org/plugins/boat-rental-system/

The Boat Rental Plugin for WordPress Plugin is vulnerable to an unauthenticated arbitrary file upload allowing for an attacker to upload a PHP file and execute arbitrary commands.

  1. Install the plugin
  2. Modify the Python PoC for your target and execute
TARGET = 'http://wordpress.local:1337'  # No trailing slash
  1. Profit