Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-24926 PoC — WordPress Brooklyn Theme <= 4.9.7.6 is vulnerable to PHP Object Injection

Source
https://github.com/moften/CVE-2024-24926
Associated Vulnerability
Title:WordPress Brooklyn Theme <= 4.9.7.6 is vulnerable to PHP Object Injection (CVE-2024-24926)
Description:Deserialization of Untrusted Data vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through 4.9.7.6.
Description
Vulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress
Readme
# CVE-2024-24926
Vulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress

Description: 
La vulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress (versiones hasta 4.9.7.6) y está relacionada con la deserialización de datos no confiables (CWE-502). Esto permite que un atacante envíe objetos maliciosos al servidor, potencialmente logrando ejecución remota de código. Según la evaluación de CVSS v3.1, tiene una puntuación de 7.5 (Alta), con un vector de ataque basado en red, alta complejidad, privilegios bajos requeridos, y sin interacción del usuario.
File Snapshot

 [4.0K]  /data/pocs/857768d083b80c3aecbc67b79b7bd39dec934c97
├── [ 188]  CVE-2024-24926.json
└── [ 587]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →