CVEs-PoC/2017/CVE-2017-5488.md at d9c64e504a400a9c76c5acac87c0beb68d3a78a3

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 19:17:37 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/update-core.php in WordPress before 4.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) version header of a plugin.

POC

Reference

https://wpvulndb.com/vulnerabilities/8716
https://wpvulndb.com/vulnerabilities/8716

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Afetter618/WordPress-PenTest
https://github.com/jr-333/week7

816 B Raw Blame History

CVE-2017-5488

Description

POC

Reference

Github

816 B

Raw Blame History