Gurjot Singh

3 exploits Active since Jul 2023
CVE-2023-3460 NOMISEC CRITICAL WORKING POC
Ultimate Member <2.6.7 - Privilege Escalation
The Ultimate Member WordPress plugin before 2.6.7 does not prevent visitors from creating user accounts with arbitrary capabilities, effectively allowing attackers to create administrator accounts at will. This is actively being exploited in the wild.
1 stars
CVSS 9.8
CVE-2024-28623 EXPLOITDB MEDIUM text WORKING POC
RiteCMS 3.0.0 - Cross-site Scripting
RiteCMS v3.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component main_menu/edit_section.
CVSS 6.1
CVE-2023-3460 EXPLOITDB CRITICAL python WORKING POC
Ultimate Member <2.6.7 - Privilege Escalation
The Ultimate Member WordPress plugin before 2.6.7 does not prevent visitors from creating user accounts with arbitrary capabilities, effectively allowing attackers to create administrator accounts at will. This is actively being exploited in the wild.
CVSS 9.8