CVEs-PoC/2024/CVE-2024-6330.md at 8e2ebbf9bd04edab52d0cbcbc6c2f6e2cfdaa67d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-12 05:11:38 +02:00

Files

T

0xMarcio 6a17b5b11e Update CVE sources 2024-08-30 20:52

2024-08-30 20:52:42 +00:00

789 B

Raw Blame History

CVE-2024-6330

Description

The GEO my WP WordPress plugin before 4.5.0.2 does not prevent unauthenticated attackers from including arbitrary files in PHP's execution context, which leads to Remote Code Execution.

POC

Reference

https://wpscan.com/vulnerability/95b532e0-1ffb-421e-b9c0-de03f89491d7/

Github

https://github.com/20142995/nuclei-templates

789 B Raw Blame History

CVE-2024-6330

Description

POC

Reference

Github

789 B

Raw Blame History