Videos
Published on December 14th, 2014 📆 | 7555 Views ⚑
0WordPress 3.x Persistent XSS to RCE (CVE-2014-9031)
iSpeech
Quick demonstration of the newly published persistent XSS affecting WordPress 3.x versions (CVE-2014-9031). I will show you how it works and how to leverage it to take the XSS to Triggering new admin user creation and/or PHP Code Execution. This exploit technique works with any WP XSS vector, this is just a nice one to demo it with. Enjoy!
Source Code Pack:
hxxp://uppit[dot]com/zoi1l8t6ovxr
2014-12-14 07:53:49
source
Gloss