CVE-2017-5487 PoC — WordPress 安全漏洞

Source

https://github.com/Ravindu-Priyankara/CVE-2017-5487-vulnerability-on-NSBM

Associated Vulnerability

Title:WordPress 安全漏洞 (CVE-2017-5487)
Description:wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 does not properly restrict listings of post authors, which allows remote attackers to obtain sensitive information via a wp-json/wp/v2/users request.

Readme

# CVE-2017-5487-vulnerability-on-NSBM

Test site: https://nsbm.ac.lk <br>
Found Vulnerability:- CVE-2017-5487 
<br>
<br>
<div id = "header" align = "center">
<img src = "images/Screenshot%202023-04-07%20at%2013.49.49.png" width = "1000">
</div>
<br>
<br>

**Usage**

1. Download this repository.(https://github.com/Ravindu-Priyankara/CVE-2017-5487-vulnerability-on-NSBM.git)<br>
    *git clone https://github.com/Ravindu-Priyankara/CVE-2017-5487-vulnerability-on-NSBM.git*
    <br>
    <br>
2. unzip and go to this folder <br>
    *cd '{my github folder name/}'*
    <br>
    <br>
3. run this command on terminal, CMD or Powershell<br>
    *php payload.php*
    <br>
    <br>
    


***Operating Systems***

<br>

![macOS](https://img.shields.io/badge/mac%20os-000000?style=for-the-badge&logo=macos&logoColor=F0F0F0)

<br>

***Languages***
<br>

![PHP](https://img.shields.io/badge/php-%23777BB4.svg?style=for-the-badge&logo=php&logoColor=white)

<br>

File Snapshot


 [4.0K]  /data/pocs/12233c35c9cc7fd11c751cb4c1676420d0bbf27c
├── [4.0K]  images
│   └── [327K]  Screenshot 2023-04-07 at 13.49.49.png
├── [1.0K]  LICENSE
├── [ 553]  payload.php
└── [ 952]  README.md

1 directory, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!