CVEs-PoC/2022/CVE-2022-23180.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-03 12:58:02 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

The Contact Form & Lead Form Elementor Builder WordPress plugin before 1.7.4 doesn't have authorisation and nonce checks, which could allow any authenticated users, such as subscriber to update and change various settings

POC

Reference

https://wpscan.com/vulnerability/da87358a-3a72-4cf7-a2af-a266dd9b4290/

Github

https://github.com/20142995/nuclei-templates

812 B Raw Blame History

CVE-2022-23180

Description

POC

Reference

Github

812 B

Raw Blame History