Back to directory
WRITEUP #1440

WordPress BuddyForms Plugin — Unauthenticated Insecure Deserialization (CVE-2023–26326)

DeserializationInsecure deserializationSecurity code reviewRCE
by@J0_mart(Joshua Martinelle)
Program
-
Published
Mar 7, 2023
Added to HackDex
Mar 8, 2023
Read Full Writeuphttps://medium.com/tenable-techblog/wordpress-buddyforms-plugin-unauthenticated-insecure-deserialization-cve-2023-26326-3becb5575ed8
RELATED WRITEUPS
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle
RCESecurity code review
WordPress GiveWP POP to RCE (CVE-2024-5932)
RCEPHP pop chain

Built with ❤️ by Shubham Rawat