Lucene search

K
githubexploit1F3909D3-C908-5A38-BC0C-8D1B3BEA04D1
HistoryFeb 05, 2024 - 9:44 a.m.

Exploit for Missing Authorization in Wpexperts Post Smtp Mailer

2024-02-0509:44:35
179
mail token retrieval
admin username
password reset
mail log examination
admin login
shell upload
golang installation
exploit developer_az_az

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.3%

What the exploit does

  • Places a token that allows you to vie…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.033 Low

EPSS

Percentile

91.3%