POC详情: ffcac6ca4dbd16d1e1fb50945afb579f2437d932

来源
关联漏洞
标题: WordPress plugin RegistrationMagic 安全漏洞 (CVE-2024-10508)
描述:WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin RegistrationMagic 6.0.2.6版本及之前版本存在安全漏洞。攻击者利用该漏洞可以提升权限。
描述
This tool scans WordPress sites for vulnerabilities in the "RegistrationMagic" plugin (CVE-2024-10508). It checks for the presence of a specific version (`6.0.2.6`) and marks the site as vulnerable if found. The results are saved in a file (`vuln.txt`) for further analysis.
介绍
# CVE-2024-10508

<p>This tool scans WordPress sites for vulnerabilities in the <strong>RegistrationMagic</strong> plugin <strong>(CVE-2024-10508)</strong>. 
It checks for the presence of a specific version (6.0.2.6) and marks the site as vulnerable if found. 
The results are saved in a file (`vuln.txt`) for further analysis.</p>

## Features:
<ul dir="auto">
    <li>Scans WordPress websites for vulnerabilities in the "RegistrationMagic" plugin, specifically for CVE-2024-10508.</li>
    <li>Checks for the vulnerable version "6.0.2.6" of the plugin and flags those websites as vulnerable.</li>
    <li>Saves the URLs of vulnerable sites into a result file called "vuln.txt" for further review and reporting.</li>
</ul>

## Buy Coffee :
<ul dir="auto">
<li>Bitcoin $: 14nXhmRiQx5joCXFTdR8ydm3T8et7MFDXC</li>
<li>Saweria $: https://saweria.co/Shin403</li>
<li>Trakteer $: https://trakteer.id/shin403</li>
<li>Buymeacoffee $: https://www.buymeacoffee.com/shin.code</li>
<li>Ko-Fi $: https://ko-fi.com/shincode403</li>
</ul>

![Jenderal92 CVE-2024-10508](https://github.com/user-attachments/assets/7a5affc7-2400-47e7-b7f4-bd7b880b61fa)


## How To Run?
<ul dir="auto">
<li>Download and install Python from the official Python website: <a href="https://www.python.org">https://www.python.org</a>.</li>
<li>Install the required modules using the command: <code>pip install requests</code>.</li>
<li>Run the script with: <code>python file.py</code>.</li>
<li>Provide a list of sites (e.g., url.txt) as input.</li>
</ul>

## Disclaimer !!!

<p>I have written the disclaimer on the cover of Jenderal92. You can check it <a href="https://github.com/Jenderal92">HERE !!!</a></p>
文件快照

[4.0K] /data/pocs/ffcac6ca4dbd16d1e1fb50945afb579f2437d932 ├── [1.5K] CVE-2024-10508.py └── [1.6K] README.md 0 directories, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。