Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-29009 PoC — WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability

Source
https://github.com/joshs-code/CVE-2025-29009-POC
Associated Vulnerability
Title:WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability (CVE-2025-29009)
Description:Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce medical-prescription-attachment-plugin-for-woocommerce allows Upload a Web Shell to a Web Server.This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through <= 1.2.3.
Description
Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Unauthenticated Arbitrary File Upload.
Readme
# CVE-2025-29009-POC
Medical Prescription Attachment Plugin for WooCommerce &lt;= 1.2.3 - Unauthenticated Arbitrary File Upload. 

Watch demo here:
https://youtu.be/WvW2shDBIFs
File Snapshot

 [4.0K]  /data/pocs/798c7b123224161842a15861cf49a093dbf4a86f
├── [1.1K]  exploit.py
└── [ 177]  README.md

1 directory, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →