Lucene search
K

9 matches found

GithubExploit
GithubExploit
added 2023/09/29 4:53 a.m.383 views

Exploit for Unrestricted Upload of File with Dangerous Type in Amentotech Workreap

CVE-2021-24499 Mass exploitation of CVE-2021-24499 unauthentic...

9.8CVSS10AI score0.60113EPSS
Exploits9
Packet Storm
Packet Storm
added 2023/06/12 12:0 a.m.480 views

WordPress Workreap 2.2.2 Shell Upload

Exploit Title: WordPress Theme Workreap 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution Dork: inurl:/wp-content/themes/workreap/ Date: 2023-06-01 Category : Webapps Vendor Homepage: https://themeforest.net/item/workreap-freelance-marketplace-wordpress-theme/23712454 Exploit Author...

9.8CVSS7.1AI score0.60113EPSS
Exploits9
0day.today
0day.today
added 2023/06/12 12:0 a.m.358 views

WordPress Workreap 2.2.2 Shell Upload Exploit

Exploit Title: WordPress Theme Workreap 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution Dork: inurl:/wp-content/themes/workreap/ Category : Webapps Vendor Homepage: https://themeforest.net/item/workreap-freelance-marketplace-wordpress-theme/23712454 Exploit Author: Mohammad Hossei...

9.8CVSS9.3AI score0.60113EPSS
Exploits9
Exploit DB
Exploit DB
added 2023/06/09 12:0 a.m.426 views

WordPress Theme Workreap 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution

Exploit Title: WordPress Theme Workreap 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution Dork: inurl:/wp-content/themes/workreap/ Date: 2023-06-01 Category : Webapps Vendor Homepage: https://themeforest.net/item/workreap-freelance-marketplace-wordpress-theme/23712454 Exploit Author...

9.8CVSS9.6AI score0.60113EPSS
Exploits9
Circl
Circl
added 2023/04/27 9:58 a.m.23 views

CVE-2021-24499

creationtimestamp| type| source ---|---|--- 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-24499.yaml 2024-05-14 02:41:03+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4293 2024-12-30...

9.8CVSS7.3AI score0.60113EPSS
In wildExploits9References6
Check Point Advisories
Check Point Advisories
added 2021/11/28 12:0 a.m.58 views

WordPress Workreap Theme Remote Code Execution (CVE-2021-24499)

A remote code execution vulnerability exists in WordPress Workreap theme. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS9.5AI score0.60113EPSS
Exploits9
GithubExploit
GithubExploit
added 2021/09/12 12:43 p.m.217 views

Exploit for Unrestricted Upload of File with Dangerous Type in Amentotech Workreap

CVE-2021-24499 Mass exploitation of CVE-2021-24499 unauthentic...

9.8CVSS10.1AI score0.60113EPSS
Exploits9
Cvelist
Cvelist
added 2021/08/09 12:0 a.m.51 views

CVE-2021-24499 Workreap theme < 2.2.2 - Unauthenticated Upload Leading to Remote Code Execution

The Workreap WordPress theme before 2.2.2 AJAX actions workreapawardtempfileuploader and workreaptempfileuploader did not perform nonce checks, or validate that the request is from a valid user in any other way. The endpoints allowed for uploading arbitrary files to the uploads/workreap-temp...

9.9AI score0.60113EPSS
Exploits9References3
CVE
CVE
added 2021/08/09 12:0 a.m.233 views

CVE-2021-24499

The CVE affects WordPress Workreap theme prior to 2.2.2. The AJAX actions workreap_award_temp_file_uploader and workreap_temp_file_uploader do not perform nonce checks or validate the requester, allowing unauthenticated uploads to uploads/workreap-temp. Uploaded files were not sanitized, enabling...

9.8CVSS9.6AI score0.60113EPSS
In wildExploits9References3Affected Software1
Rows per page
Query Builder