Back to directory

WRITEUP #5472

WordPress 5.1 CSRF to Remote Code Execution

CSRFRCEHTML injection

by@scannell_simon(Simon Scannell)

Bounty

950

Program

WordPress

Published

Mar 13, 2019

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://www.sonarsource.com/blog/wordpress-csrf-to-rce/

▸ RELATED WRITEUPS

Vulnerabilities in Homepage Dashboard

SSD Advisory – XenForo RCE Via CSRF

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat