[0xdaniii]

Where is that SSRF?

idk but i guess user needs to upload image to get ssrf

[potato_moose]

Maybe this article will help...
https://medium.com/tenable-techblog/word...ecb5575ed8

Has anybody tried this?

[StingEm]

Maybe this article will help...
https://medium.com/tenable-techblog/word...ecb5575ed8

Has anybody tried this?

Yes - but so far I just keep getting errors - I am going thru the code now.

[kokot0kokot0kokot0]

Maybe this article will help...
https://medium.com/tenable-techblog/word...ecb5575ed8

Has anybody tried this?

Tried not work for me

[maggi]

Maybe this article will help...
https://medium.com/tenable-techblog/word...ecb5575ed8

Has anybody tried this?

Yes....
I am thinking its get admin dash then upload plugin then deserialize?

[samuelballsiu1]

{"status":"FAILED","response":"File type  is not allowed."}

[testex]

http://blog.bigbang.htb/wp-login.php/ login page

---

http://blog.bigbang.htb/wp-login.php/ login page

[pyfffe]

Maybe this article will help...
https://medium.com/tenable-techblog/word...ecb5575ed8

Has anybody tried this?

It seems, but I didn't find a public call chain for insecure deserialization. phpggc didn't help

[thedubb1313]

there's this

https://www.ambionics.io/blog/iconv-cve-2024-2961-p1

I think we have to go after the file read vuln

[nothing0112358]

there's this

https://www.ambionics.io/blog/iconv-cve-2024-2961-p1

I think we have to go after the file read vuln

Agreed, big question is how to write his binary to web exploit ...  We need to adapt cnext-exploit.py

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.