|
new wordpress website takeover vuln (video + poc )
by zinzeur - Sunday January 14, 2024 at 04:28 PM
|
|
01-14-2024, 04:28 PM
This is a brand new vuln (released about 3 days ago) affecting wordpress websites (any version) with post smtp plugin installed version <=2.8.7 (latest is 2.8.9). It allows complete admin takeover by ressetting password and retrieving sent email from smtp log api . Enjoy !!
ps: The video is mine video : exploit: Enjoy
02-15-2024, 08:53 PM
thank you so much
02-16-2024, 04:41 PM
Nice info. Check it.
02-17-2024, 03:58 AM
thanks for info
02-17-2024, 04:39 AM
wow i love this kind of exploits
02-18-2024, 06:28 PM
thanks for info
02-19-2024, 08:42 PM
wow i love this kind of exploits I will try, master. I hope you are always healthy
02-21-2024, 08:08 PM
thank you very much sir..!
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.
02-22-2024, 09:12 AM
Nice info. Check it.
02-22-2024, 09:21 AM
(01-14-2024, 04:28 PM)zinzeur Wrote: This is a brand new vuln (released about 3 days ago) affecting wordpress websites (any version) with post smtp plugin installed version <=2.8.7 (latest is 2.8.9). It allows complete admin takeover by ressetting password and retrieving sent email from smtp log api . Enjoy !! ok thank you brother |
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| New Zer0 Day Wordpress | 62 | 2,063 |
Yesterday, 04:37 PM Last Post: |
||
| [WordPress] Contact Form - SQL Injection Vuln | 147 | 18,153 |
08-04-2025, 04:20 AM Last Post: |
||
| New Zer0 Day Wordpress | 81 | 2,493 |
04-12-2025, 12:05 AM Last Post: |
||
| Wordpress Elementor 3.11.6 Exploit - Full Takeover | 95 | 18,588 |
04-07-2025, 01:43 PM Last Post: |
||
| CVE-2024-5630 WordPress RCE via zip bypass upload | 60 | 5,924 |
03-19-2025, 10:39 AM Last Post: |
||
