cve/CVE-2017-1001000.md at 9cc2023bd8dbe0ab8c5f051fa9a43f1e04594987

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio d6bcaa53f2 Update CVE sources 2024-07-25 21:25

2024-07-25 21:25:12 +00:00

Description

The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows remote attackers to modify arbitrary pages via a request for wp-json/wp/v2/posts followed by a numeric value and a non-numeric value, as demonstrated by the wp-json/wp/v2/posts/123?id=123helloworld URI.

POC

Reference

https://gist.github.com/leonjza/2244eb15510a0687ed93160c623762ab

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/FishyStix12/BH.py-CharCyCon2024
https://github.com/FishyStix12/WHPython_v1.02
https://github.com/Vayel/docker-wordpress-content-injection
https://github.com/YemiBeshe/Codepath-WP1
https://github.com/hom3r/wordpress-4.7
https://github.com/justinw238/codepath_7_jlw15
https://github.com/sarcox/WPPentesting

1.2 KiB Raw Blame History

CVE-2017-1001000

Description

POC

Reference

Github

1.2 KiB

Raw Blame History