Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-5487 PoC — WordPress 安全漏洞

Source
https://github.com/ndr-repo/CVE-2017-5487
Associated Vulnerability
Title:WordPress 安全漏洞 (CVE-2017-5487)
Description:wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 does not properly restrict listings of post authors, which allows remote attackers to obtain sensitive information via a wp-json/wp/v2/users request.
Description
PoC for CVE-2017-5487 - WordPress User Enumeration via REST
Readme
## PoC - CVE-2017-5487 - WordPress User Enumeration via REST

<img width="1047" alt="WPUserEnum_ExploitRedacted" src="https://github.com/user-attachments/assets/82ce1aae-19be-4881-89dc-bf174fc8cecb" />
 
### Setup
```
git clone https://github.com/ndr-repo/CVE-2017-5487.git
powershell -noexit -ExecutionPolicy Bypass -File <path-to-script>.ps1
```

### Usage
```
.\Enumerate-WordPressOrgMembersREST.ps1 <target-domain>
```

### Alternate Route 1 (for WAF Bypass)


<img width="1052" alt="WPUserEnum_Exploit_AltForWAFBypass1_Redacted" src="https://github.com/user-attachments/assets/f66c68d9-620a-4f10-9fd7-e00e60f8c4de" />
File Snapshot

 [4.0K]  /data/pocs/cec32ab33055efcabd68fd38dfda963f586bac58
├── [1.1K]  Enumerate-WordPressOrgMembersREST-Bypass1.ps1
├── [1.1K]  Enumerate-WordPressOrgMembersREST.ps1
├── [ 34K]  LICENSE
└── [ 623]  README.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →