7 matches found
wp2shell
wp2shell-check Non-intrusive checker for CVE-2026-63030 /...
wp2shell-PoC
wp2shell — CVE-2026-63030 + CVE-2026-60137 WordPress Pre-Auth...
Exploit for CVE-2026-60137
wp2shell-lab Educational PoC and lab for CVE-2026-63030 + C...
Exploit for CVE-2026-63030
WordPress REST API Batch Route Confusion + SQL Injection → RCE...
Exploit for CVE-2026-63030
wp2shell-poc Proof-of-concept for an unauthenticated SQL inje...
CVE-2026-63030
WordPress 6.9.x before 6.9.5 and 7.0.x before 7.0.2 is affected by a REST API batch endpoint route confusion issue which, combined with the authornotin WPQuery SQL Injection CVE-2026-60137, could allow an attacker to perform SQL Injection and achieve Remote Code Execution...
PT-2026-60856
WordPress 6.9.x before 6.9.5 and 7.0.x before 7.0.2 is affected by a REST API batch endpoint route confusion issue which, combined with the author not in WP Query SQL Injection CVE-2026-60137, could allow an attacker to perform SQL Injection and achieve Remote Code Execution...