{"uuid": "f1e06eab-33da-436a-a41d-f639e9704cd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4290", "type": "published-proof-of-concept", "source": "https://t.me/CivilityBreaches/1844", "content": "CVE ID : CVE-2024-4290\nSystem : wordpress\nType : Stored XSS\n\nExploit :\n1. Go to https://example.com/wp-admin/options-general.php?page=sailthru&action=options\n\n2. Enter the payload \">alert(2) for any of the inputs\n\n3. Save and see the XSS\n\n\nNote : you must\u00a0 be a high prvilage user such as admin to perform this attack", "creation_timestamp": "2024-06-06T17:19:33.000000Z"}