Giters

biulove0x / CVE-2022-1903

ARMember < 3.4.8 - Unauthenticated Admin Account Takeover

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

cve-2022-1903python3vulnerabilitieswordpresswordpress-plugin

CVE-2022-1903

made-with-python

Title: ARMember < 3.4.8 - Unauthenticated Admin Account Takeover
Author: Cyllective [ https://cyllective.com/ ]
CVE: CVE-2022-1903

Installation

git clone https://github.com/biulove0x/CVE-2022-1903.git
cd CVE-2022-1903/
python3 -m pip install -r requirements.txt

How to run autoexploit

$ python3 ARMember.py --help
###########################################
# @author : biulove0x                     #
# @name   : WP Plugins ARMember Exploiter #
# @cve    : CVE-2022-1903                 #
###########################################

usage: armember.py [-h] [-t example.com] [-l target.txt]

CVE-2022-1903 [ ARMember < 3.4.8 - Unauthenticated Admin Account Takeover ]

optional arguments:
  -h, --help      show this help message and exit
  -t example.com  Single target
  -l target.txt   Multiple target

Single target

$ python3 ARMember.py -t http://example.com/

Multiple target

$ cat domains.txt
http://example.com/
https://examples.com/

$ python3 ARMember.py -l target.txt

References :

Donate :

BTC : bc1qst09sxcnq97a4wgsqvpkg4fxyjczvs3xe7278h

BNB : bnb1jhp2hv9utr8u97387p35fmftgr8wpjp39altz0

"Buy Me A Coffee"

About

ARMember < 3.4.8 - Unauthenticated Admin Account Takeover

cve-2022-1903python3vulnerabilitieswordpresswordpress-plugin

Languages

Language:Python 100.0%