9

[webapps] Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access

 1 year ago
source link: https://www.exploit-db.com/exploits/51658
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
neoserver,ios ssh client

Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access

EDB-ID:

51658

EDB Verified:

Platform:

PHP

Date:

2023-08-04

Vulnerable App:

# Exploit Title: Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access
# Date: 03.08.2023
# Exploit Author: Miguel Santareno
# Vendor Homepage: https://www.myeventon.com/
# Version: 4.4
# Tested on: Google and Firefox latest version
# CVE : CVE-2023-2796

# 1. Description
The plugin lacks authentication and authorization in its eventon_ics_download ajax action, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id.


# 2. Proof of Concept (PoC)
Proof of Concept:
https://example.com/wp-admin/admin-ajax.php?action=eventon_ics_download&event_id=value

report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK