CVE-2021-24499 PoC — WordPress 代码问题漏洞

Source

https://github.com/jayhutajulu1/CVE-2021-24499

Associated Vulnerability

Title:WordPress 代码问题漏洞 (CVE-2021-24499)
Description:WordPress是WordPress（Wordpress）基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress theme Workreap 存在代码问题漏洞，该漏洞源于 workreap_award_temp_file_uploader 和 workreap_temp_file_uploader 未执行随机数检查，或以任何其他方式验证请求是否来自有效用户。

Description

WordPress Theme Workreap 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!