Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-21389 PoC — WordPress 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-21389.yaml
Associated Vulnerability
Title:WordPress 安全漏洞 (CVE-2021-21389)
Description:WordPress是WordPress(Wordpress)基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress BuddyPress 7.2.1 存在安全漏洞,该漏洞源于非特权的普通用户可以通过利用REST API成员端点中的问题获得管理员权限。
Description
WordPress BuddyPress before version 7.2.1 is susceptible to a privilege escalation vulnerability that can be leveraged to perform remote code execution.
File Snapshot

 id: CVE-2021-21389

info:
  name: BuddyPress REST API  <7.2.1 - Privilege Escalation/Remote Code Exe

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.