Juampa Rodríguez aka UnD3sc0n0c1d0

1 exploit Active since Aug 2020
CVE-2020-24186 EXPLOITDB CRITICAL bash WORKING POC
wpDiscuz 7.0-7.0.4 - Unauthenticated Remote Code Execution via File Upload
A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action.
CVSS 10.0