漏洞平台

POC详情： ffcac6ca4dbd16d1e1fb50945afb579f2437d932

来源

https://github.com/Jenderal92/CVE-2024-10508

关联漏洞

标题： WordPress plugin RegistrationMagic 安全漏洞 (CVE-2024-10508)
描述：WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin RegistrationMagic 6.0.2.6版本及之前版本存在安全漏洞。攻击者利用该漏洞可以提升权限。

描述

This tool scans WordPress sites for vulnerabilities in the "RegistrationMagic" plugin (CVE-2024-10508). It checks for the presence of a specific version (`6.0.2.6`) and marks the site as vulnerable if found. The results are saved in a file (`vuln.txt`) for further analysis.

介绍

# CVE-2024-10508

<p>This tool scans WordPress sites for vulnerabilities in the <strong>RegistrationMagic</strong> plugin <strong>(CVE-2024-10508)</strong>. 
It checks for the presence of a specific version (6.0.2.6) and marks the site as vulnerable if found. 
The results are saved in a file (`vuln.txt`) for further analysis.</p>

## Features:
<ul dir="auto">
    <li>Scans WordPress websites for vulnerabilities in the "RegistrationMagic" plugin, specifically for CVE-2024-10508.</li>
    <li>Checks for the vulnerable version "6.0.2.6" of the plugin and flags those websites as vulnerable.</li>
    <li>Saves the URLs of vulnerable sites into a result file called "vuln.txt" for further review and reporting.</li>
</ul>

## Buy Coffee :
<ul dir="auto">
<li>Bitcoin $: 14nXhmRiQx5joCXFTdR8ydm3T8et7MFDXC</li>
<li>Saweria $: https://saweria.co/Shin403</li>
<li>Trakteer $: https://trakteer.id/shin403</li>
<li>Buymeacoffee $: https://www.buymeacoffee.com/shin.code</li>
<li>Ko-Fi $: https://ko-fi.com/shincode403</li>
</ul>

![Jenderal92 CVE-2024-10508](https://github.com/user-attachments/assets/7a5affc7-2400-47e7-b7f4-bd7b880b61fa)


## How To Run?
<ul dir="auto">
<li>Download and install Python from the official Python website: <a href="https://www.python.org">https://www.python.org</a>.</li>
<li>Install the required modules using the command: <code>pip install requests</code>.</li>
<li>Run the script with: <code>python file.py</code>.</li>
<li>Provide a list of sites (e.g., url.txt) as input.</li>
</ul>

## Disclaimer !!!

<p>I have written the disclaimer on the cover of Jenderal92. You can check it <a href="https://github.com/Jenderal92">HERE !!!</a></p>

文件快照


 [4.0K]  /data/pocs/ffcac6ca4dbd16d1e1fb50945afb579f2437d932
├── [1.5K]  CVE-2024-10508.py
└── [1.6K]  README.md

0 directories, 2 files

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。