WordPress Hash Form Plugin Remote Code Execution

This script demonstrates the exploitation of CVE-2024-5084, a vulnerability in the Hash Form plugin for WordPress, which allows unauthenticated arbitrary file upload leading to remote code execution.

Vulnerability Details

Name: CVE-2024-5084
Description: Unauthenticated Arbitrary File Upload to Remote Code Execution.
Affected Plugin: Hash Form – Drag & Drop Form Builder <= 1.1.0
Source: Wordfence - Vulnerability Details

GitHub - Chocapikk/CVE-2024-5084: Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution

Aung San Oo

WordPress Hash Form Plugin Remote Code Execution - CVE-2024-5084

Vulnerability Details

Post a Comment

How i approach xss vulnerability finding

How to install Myanmar Unicode font in Samsung Galaxy s 8 , 9 ,10 ,20 5G

XlsNinja: Multi-Vulnerability Scanner

How to Install Myanmar Font in Kali Linux ( 2024)

AungRecon tool for finding SQLi, XSS, LFi, OpenRedirect

Popular Items

How i approach xss vulnerability finding

AungRecon tool for finding SQLi, XSS, LFi, OpenRedirect

XlsNinja: Multi-Vulnerability Scanner

An advanced XSS (Cross-Site Scripting) vulnerability scanner

Contact form