CVE-2023-4300 PoC — WordPress plugin Import XML and RSS Feeds 代码注入漏洞

 [4.0K]  /data/pocs/e19848d8affbe1c8ab333caa3f5728b85a406a72
└── [4.0K]  import-xml-feed
    ├── [4.0K]  assets
    │   ├── [4.0K]  css
    │   │   └── [ 26K]  moove_importer_backend.css
    │   ├── [4.0K]  images
    │   │   ├── [3.0K]  _ajax_spinner.svg
    │   │   ├── [1.7K]  ajax_spinner.svg
    │   │   ├── [ 12K]  blog-green-check.gif
    │   │   ├── [1.5K]  icon.png
    │   │   ├── [3.7K]  logo_moove.png
    │   │   └── [ 67K]  moove-gears.gif
    │   └── [4.0K]  js
    │       └── [ 43K]  moove_importer_backend.js
    ├── [4.0K]  controllers
    │   ├── [ 43K]  moove-controller.php
    │   └── [4.8K]  moove-functions.php
    ├── [4.0K]  languages
    │   ├── [7.0K]  import-xml-feed-cs_CZ.mo
    │   ├── [ 10K]  import-xml-feed-cs_CZ.po
    │   ├── [ 11K]  import-xml-feed.po
    │   └── [7.6K]  import-xml-feed.pot
    ├── [ 14K]  moove-actions.php
    ├── [ 543]  moove-content.php
    ├── [ 293]  moove-controller.php
    ├── [3.6K]  moove-importer.php
    ├── [6.8K]  moove-options.php
    ├── [ 477]  moove-shortcodes.php
    ├── [1.0K]  moove-view.php
    ├── [6.0K]  readme.txt
    └── [4.0K]  views
        └── [4.0K]  moove
            └── [4.0K]  admin
                └── [4.0K]  settings
                    ├── [ 195]  addons.php
                    ├── [3.0K]  documentation.php
                    ├── [2.7K]  plugin_templates.php
                    ├── [ 11K]  post_type.php
                    ├── [1.9K]  settings_page.php
                    └── [ 15K]  template_view.php

11 directories, 28 files

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.