CVE-2023-5538 PoC — WordPress Plugin MpOperationLogs 跨站脚本漏洞

Source

https://github.com/juweihuitao/MpOperationLogs

Associated Vulnerability

Title:WordPress Plugin MpOperationLogs 跨站脚本漏洞 (CVE-2023-5538)
Description:WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress Plugin MpOperationLogs 1.0.1及之前版本存在跨站脚本漏洞，该漏洞源于输入清理和输出转义不足，攻击者利用该漏洞可以将恶意脚本注入web网站。

Description

CVE-2023-5538 - MpOperationLogs <= 1.0.1 - 未经身份验证的存储跨站点脚本

Readme

CVE-2023-5538
wordpress plugin MpOperationLogs &lt;= 1.0.1 - 未经身份验证的存储跨站点脚本

File Snapshot


 [4.0K]  /data/pocs/4870188e5b3983c4660362a9a0ca8303b79a4c05
├── [199K]  1.jpg
├── [ 21K]  2.jpg
├── [ 126]  poc
└── [ 104]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!