关联漏洞
标题:WordPress plugin Copymatic 代码问题漏洞 (CVE-2024-31351)Description:WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin Copymatic 1.6 版本及之前版本存在代码问题漏洞,该漏洞源于不受限制的文件上传。
Description
Wordpress - Copymatic – AI Content Writer & Generator <= 1.6 - Unauthenticated Arbitrary File Upload
介绍
# Wordpress - Copymatic – AI Content Writer & Generator <= 1.6 - Unauthenticated Arbitrary File Upload
[CVE-2024-31351](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31351) Unrestricted Upload of File with Dangerous Type vulnerability in Copymatic Copymatic – AI Content Writer & Generator.This issue affects Copymatic – AI Content Writer & Generator: from n/a through 1.6.
For more exploits and exclusive ones contact me on telegram [@KtN1990](https://t.me/KtN1990).
## Usage
To run this exploit you need to have python 3 and websites list then execute
```bash
python3 exploit.py -l list.txt -t 100
```
## Contact
- [@KtN1990](https://t.me/KtN1990)
## More Exploits, Check Megatron!
- Provides an easy and efficient way to assess and exploit Wordpress security holes for mass purposes.
- 140+ Exploits, all types (RCE, LOOTS, AUTHBYPASS...).
- Customizable config.
- Monthly Free updates including more code opitmization, fixing bugs, adding more exploits plus 0days.
- Strong code base and custom threading and process model using a tasks management feature, getting reliable results is assured; no need to talk about speed since at KTN we use unconventional methods for concurrency.
- [Telegram Channel](https://t.me/megatron_ktn)
## Demo
[](https://www.youtube.com/watch?v=irrh91Iaz7c)
## License
[MIT](https://choosealicense.com/licenses/mit/)
文件快照
[4.0K] /data/pocs/f42e2795a9507c9a4872e1b41b6cb2e799215fe1
└── [1.6K] README.md
0 directories, 1 file
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。