CVE-2024-5630 WordPress RCE via zip bypass upload
by HA_twck - Wednesday July 17, 2024 at 09:43 AM
#21
Thanks mannnnnn
Reply
#22
Thanks for sharing :cateat:
Reply
#23
very nice thanks
Reply
#24
thanks for your sharing mate
Reply
#25
thanks for sharing man !
Reply
#26
A very interesting exploit
Ban reason: Buying/selling real IDs/documents is prohibited (Permanent)
Reply
#27
thank you for sharing brother
Reply
#28
thank you! Smile Smile Smile

thank you! Smile Smile Smile
Reply
#29
thanks for sharing
Ban reason: Leeching | http://raiddfzn73ir6iyxlf7nwytnujiflddog...an-Appeals if you feel this is incorrect. (Permanent)
Reply
#30
(07-17-2024, 09:43 AM)HA_twck Wrote: The latest to come under the spotlight is the “Insert or Embed Articulate Content into WordPress” plugin, which is now flagged for a critical Remote Code Execution (RCE) vulnerability. This security loophole, tracked under CVE-2024-5630, jeopardizes websites by allowing arbitrary code execution through seemingly benign ZIP file uploads.

CVE:CVE-2024-5630
Plugin: Insert or Embed Articulate Content into WordPress < 4.3000000024
Critical:Very High

POC:



PS: I dont own source; only sharing for those who need.

Thanks for sharing!
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [Sell] Calix GPON - Preauth RCE 0day ericki 1 278 06-29-2026, 06:41 AM
Last Post: johnmalkovich1202
  new wordpress website takeover vuln (video + poc ) zinzeur 312 27,280 03-28-2026, 02:43 AM
Last Post: toshi99
  CVE-2025-40554 - SolarWinds Web Help Desk Auth Bypass & RCE PoC miyako 3 76 02-07-2026, 03:32 PM
Last Post: cysc
  POC CVE-2025-24071 caca28sapo1 15 807 02-07-2026, 08:53 AM
Last Post: hacker0123
  HPE OneView RCE Exploit [CVE-2025-37164] Hawx01 8 263 02-06-2026, 07:08 PM
Last Post: hacker0123



 Users browsing this thread: 1 Guest(s)