- Link: https://patchstack.com/database/vulnerability/boat-rental-system/wordpress-boat-rental-plugin-for-wordpress-plugin-1-0-1-arbitrary-file-upload-vulnerability
- CVE: 2024-52376
- Bounty: 60 AXP
https://wordpress.org/plugins/boat-rental-system/
The Boat Rental Plugin for WordPress Plugin is vulnerable to an unauthenticated arbitrary file upload allowing for an attacker to upload a PHP file and execute arbitrary commands.
- Install the plugin
- Modify the Python PoC for your target and execute
TARGET = 'http://wordpress.local:1337' # No trailing slash
- Profit