漏洞平台

POC详情： 15a1e94ec9034d9fef386268bd7b00f66f204025

来源

https://github.com/Nxploited/CVE-2023-47668

关联漏洞

标题： WordPress Plugin Membership Plugin – Restrict Content 信息泄露漏洞 (CVE-2023-47668)
描述：WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress Plugin Membership Plugin – Restrict Content 存在信息泄露漏洞。目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

介绍

# CVE-2023-47668

## Description
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StellarWP Membership Plugin – Restrict Content plugin <= 3.2.7 versions.


## Usage:
```
 python CVE-2023-47668.py <site_url>
```
## Example of the result

```
Log file content:
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003311 successful.
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003312 successful.
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003313 successful.
2024-12-24 21:01:46 - Starting rcp_check_for_expired_users() cron job.
2024-12-24 21:01:46 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-24 21:01:46 - Starting rcp_check_member_counts() cron job.
2024-12-24 21:01:46 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-25 21:09:09 - Starting rcp_check_for_expired_users() cron job.
2024-12-25 21:09:09 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-25 21:09:09 - Starting rcp_check_member_counts() cron job.
2024-12-25 21:09:09 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-27 01:46:14 - Starting rcp_check_for_expired_users() cron job.
2024-12-27 01:46:14 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-27 01:46:14 - Starting rcp_check_member_counts() cron job.
2024-12-27 01:46:14 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-27 21:02:13 - Starting rcp_check_for_expired_users() cron job.
2024-12-27 21:02:13 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-27 21:02:13 - Starting rcp_check_member_counts() cron job.
2024-12-27 21:02:13 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-28 22:44:43 - Starting rcp_check_for_expired_users() cron job.
2024-12-28 22:44:43 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-28 22:44:43 - Starting rcp_check_member_counts() cron job.
2024-12-28 22:44:43 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-31 07:09:27 - Starting rcp_check_for_expired_users() cron job.
2024-12-31 07:09:27 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-31 07:09:27 - Starting rcp_check_member_counts() cron job.
2024-12-31 07:09:27 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-31 22:14:16 - Starting rcp_check_for_expired_users() cron job.
2024-12-31 22:14:16 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-31 22:14:16 - Starting rcp_check_member_counts() cron job.
2024-12-31 22:14:16 - Starting rcp_mark_abandoned_payments() cron job.
2025-1-01 21:00:32 - Starting rcp_check_for_expired_users() cron job.
2025-1-01 21:00:33 - Starting rcp_check_for_soon_to_expire_users() cron job.
2025-1-01 21:00:33 - Starting rcp_check_member_counts() cron job.
2025-1-01 21:00:35 - Starting rcp_mark_abandoned_payments() cron job.

[+] Result saved to log.txt
```

文件快照


 [4.0K]  /data/pocs/15a1e94ec9034d9fef386268bd7b00f66f204025
├── [2.4K]  CVE-2023-47668.py
└── [2.8K]  README.md

0 directories, 2 files

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。