Lucene search
K

12 matches found

GithubExploit
GithubExploit
added 2025/04/12 12:31 p.m.578 views

Exploit for Improper Authentication in Automattic Woocommerce_Payments

CVE-2023-28121 usage: CVE-2023-28121.py -h -v RHOST R...

9.8CVSS9.8AI score0.86919EPSS
Exploits9
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.255 views

Wordpress Plugin WooCommerce Payments Unauthenticated Admin Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wordpress Plugin WooCommerce Payments Unauthenticated Admin Creation', 'Description' = %q WooCommerce-Payments plugin for Wordpress versions 4.8'...

9.8CVSS7.2AI score0.86919EPSS
Exploits9
GithubExploit
GithubExploit
added 2023/11/03 1:19 a.m.523 views

Exploit for Improper Authentication in Automattic Woocommerce_Payments

WP-CVE-2023-28121 WooCommerce Payments Python 2.7 Buy Coff...

9.8CVSS9.7AI score0.86919EPSS
Exploits9
Wordfence Blog
Wordfence Blog
added 2023/07/17 5:27 p.m.34 views

Massive Targeted Exploit Campaign Against WooCommerce Payments Underway

The Wordfence Threat Intelligence team has been monitoring an ongoing exploit campaign targeting a recently disclosed vulnerability in WooCommerce Payments, a plugin installed on over 600,000 sites. Large-scale attacks against the vulnerability, assigned CVE-2023-28121, began on Thursday, July 14...

7.5CVSS7.3AI score0.86919EPSS
Exploits9
VulnCheck KEV
VulnCheck KEV
added 2023/07/17 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-28121

An issue in WooCommerce Payments plugin for WordPress versions 5.6.1 and lower allows an unauthenticated attacker to send requests on behalf of an elevated user, like administrator. This allows a remote, unauthenticated attacker to gain admin access on a site that has the affected version of...

9.8CVSS7.4AI score0.86919EPSS
Exploits9References1
Rapid7 Blog
Rapid7 Blog
added 2023/07/14 7:48 p.m.61 views

Metasploit Weekly Wrap-Up

Authentication bypass in Wordpress Plugin WooCommerce Payments This week's Metasploit release includes a module for CVE-2023-28121 by h00die. This module can be used against any wordpress instance that uses WooCommerce payments 5.6.1. This module exploits an auth by-pass vulnerability in the...

10CVSS8.2AI score0.90655EPSS
Exploits20
GithubExploit
GithubExploit
added 2023/07/12 2:41 a.m.495 views

Exploit for Improper Authentication in Automattic Woocommerce_Payments

CVE-2023-28121 WooCommerce Payments - For installing requirem...

9.8CVSS9.7AI score0.86919EPSS
Exploits9
Circl
Circl
added 2023/06/04 12:58 p.m.21 views

CVE-2023-28121

creationtimestamp| type| source ---|---|--- 2023-06-04 12:58:07+00:00| published-proof-of-concept| https://t.me/fiolatools/33 2023-06-16 16:19:30+00:00| seen| Telegram/xmGrvZC6z26tJLfWlCFMttFnMoKCiuzW0O-s-STZ5EfVg 2023-06-16 18:18:29+00:00| seen|...

9.8CVSS7.1AI score0.86919EPSS
Exploits9References34
OSV
OSV
added 2023/04/12 9:15 p.m.26 views

CVE-2023-28121

An issue in WooCommerce Payments plugin for WordPress versions 5.6.1 and lower allows an unauthenticated attacker to send requests on behalf of an elevated user, like administrator. This allows a remote, unauthenticated attacker to gain admin access on a site that has the affected version of the...

9.8CVSS7.3AI score0.86919EPSS
Exploits9References2
CVE
CVE
added 2023/04/12 12:0 a.m.204 views

CVE-2023-28121

CVE-2023-28121 – WooCommerce Payments (WordPress) An authentication bypass vulnerability affects the WooCommerce Payments plugin for WordPress, in versions 5.6.1 and lower. An unauthenticated attacker can induce requests or actions that run with an elevated user (e.g., administrator) privileges, ...

9.8CVSS9.6AI score0.86919EPSS
Exploits9References2Affected Software2
GithubExploit
GithubExploit
added 2023/03/30 11:50 p.m.171 views

Exploit for Improper Authentication in Automattic Woocommerce_Payments

CVE-2023-28121 WooCommerce Payments: Unauthorized Admin Access...

9.8CVSS9.8AI score0.86919EPSS
Exploits9
OpenVAS
OpenVAS
added 2023/03/24 12:0 a.m.17 views

WordPress WooCommerce Payments Plugin Authentication Bypass Vulnerability (Mar 2023)

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:automattic:woopayments"; ifdescription...

9.8CVSS9.8AI score0.86919EPSS
Exploits9References5
Rows per page
Query Builder