Tag: wordpress

15 mar 2019 · Pablo Plaza Martínez · tutoriales
WordPress 5.1 CSRF + XSS + RCE - PoC
Step-by-step explanation and PoC of the chain of vulnerabilities in WordPress 5.1 (patched in 5.1.1): CSRF in comments → Stored XSS via wp_kses bypass → RCE by editing plugin as administrator. Requires victim interaction (visiting malicious page).
- 5-1
- 5-1-1
- csrf
- exploit
- poc
- rce
- wordpress
- xss
21 jul 2018 · Pablo Plaza Martínez · writeups
WriteUp – Aragog (HackTheBox)
Aragog write-up (HackTheBox): initial scan, XXE exploitation to read SSH keys, user access, WordPress modification to steal admin credentials and escalate to root. Intermediate level with a focus on XXE and creative post-exploitation.