CVE-2023-47668 PoC — WordPress Restrict Content Plugin <= 3.2.7 is vulnerable to Sensitive Data Exposure

Source

Associated Vulnerability

Readme

# CVE-2023-47668

## Description
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StellarWP Membership Plugin – Restrict Content plugin <= 3.2.7 versions.


## Usage:
```
 python CVE-2023-47668.py <site_url>
```
## Example of the result

```
Log file content:
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003311 successful.
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003312 successful.
2024-12-24 20:47:19 - wp_rcp_discounts table upgrade to 202003313 successful.
2024-12-24 21:01:46 - Starting rcp_check_for_expired_users() cron job.
2024-12-24 21:01:46 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-24 21:01:46 - Starting rcp_check_member_counts() cron job.
2024-12-24 21:01:46 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-25 21:09:09 - Starting rcp_check_for_expired_users() cron job.
2024-12-25 21:09:09 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-25 21:09:09 - Starting rcp_check_member_counts() cron job.
2024-12-25 21:09:09 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-27 01:46:14 - Starting rcp_check_for_expired_users() cron job.
2024-12-27 01:46:14 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-27 01:46:14 - Starting rcp_check_member_counts() cron job.
2024-12-27 01:46:14 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-27 21:02:13 - Starting rcp_check_for_expired_users() cron job.
2024-12-27 21:02:13 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-27 21:02:13 - Starting rcp_check_member_counts() cron job.
2024-12-27 21:02:13 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-28 22:44:43 - Starting rcp_check_for_expired_users() cron job.
2024-12-28 22:44:43 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-28 22:44:43 - Starting rcp_check_member_counts() cron job.
2024-12-28 22:44:43 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-31 07:09:27 - Starting rcp_check_for_expired_users() cron job.
2024-12-31 07:09:27 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-31 07:09:27 - Starting rcp_check_member_counts() cron job.
2024-12-31 07:09:27 - Starting rcp_mark_abandoned_payments() cron job.
2024-12-31 22:14:16 - Starting rcp_check_for_expired_users() cron job.
2024-12-31 22:14:16 - Starting rcp_check_for_soon_to_expire_users() cron job.
2024-12-31 22:14:16 - Starting rcp_check_member_counts() cron job.
2024-12-31 22:14:16 - Starting rcp_mark_abandoned_payments() cron job.
2025-1-01 21:00:32 - Starting rcp_check_for_expired_users() cron job.
2025-1-01 21:00:33 - Starting rcp_check_for_soon_to_expire_users() cron job.
2025-1-01 21:00:33 - Starting rcp_check_member_counts() cron job.
2025-1-01 21:00:35 - Starting rcp_mark_abandoned_payments() cron job.

[+] Result saved to log.txt
```

File Snapshot

 [4.0K]  /data/pocs/15a1e94ec9034d9fef386268bd7b00f66f204025
├── [2.4K]  CVE-2023-47668.py
└── [2.8K]  README.md

0 directories, 2 files

Remarks