CVEs-PoC/2017/CVE-2017-18604.md

CVE-2017-18604

Description

The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request.

POC

Reference

• https://wpvulndb.com/vulnerabilities/8829

Github

• https://github.com/20142995/nuclei-templates