cve/CVE-2023-4278.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

954 B

Raw Permalink Blame History

CVE-2023-4278

Description

The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts.

POC

Reference

http://packetstormsecurity.com/files/175007/WordPress-Masterstudy-LMS-3.0.17-Account-Creation.html
https://wpscan.com/vulnerability/cb3173ec-9891-4bd8-9d05-24fe805b5235

Github

https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/revan-ar/CVE-2023-4278

954 B Raw Permalink Blame History

CVE-2023-4278

Description

POC

Reference

Github

954 B

Raw Permalink Blame History