mirror of
https://github.com/Mr-xn/Penetration_Testing_POC.git
synced 2025-08-13 11:28:28 +00:00
22 lines
706 B
Markdown
22 lines
706 B
Markdown
# CVE-2018-6389 Wordpress Exploit
|
|
|
|
CVE-2018-6389 Exploit Can Down Any Wordpress site under 4.9.3 <Br>
|
|
The flaw affects the *load-scripts.php* WordPress script, it receives a parameter called load[]
|
|
|
|
## About PoC
|
|
A simple Script In Python With threading could allow anyone to take down most WordPress websites with single machine
|
|
### Info
|
|
|
|
Can Down Any Website with Tested Wordpress versions <Br>
|
|
* Tested : WordPress (Version 4.9.2)
|
|
* Tested : WordPress (Version 4.9.1)
|
|
|
|
```
|
|
Note : I Am Not The Author Of the Exploit
|
|
```
|
|
|
|
## Ref
|
|
|
|
* [PoC](https://www.youtube.com/watch?v=nNDsGTalXS0) - Youtube
|
|
* [ Barak Tawily ](https://baraktawily.blogspot.com/2018/02/how-to-dos-29-of-world-wide-websites.html) - Blog
|